Closer to 0-day
Find » Understand » Exploit » Mitigate. No Patches or Fixes: Last year I argued 1days (or ndays) is as close to 0-day as you can come without being the actual finder your self. Let me challenge that statement this year and take you one step closer to 0-day as we hack our way through some serious vulnerabilities where there are no patches or fixes. Quick Recap: We start with a quick recap. I’ll set a new world record in fast patch diffing by diffing a recent vulnerability affecting over 4 million sites with complete site take over. That’s another “n-day” and the rest of the talk will be me moving closer to 0-day on the time line with new vulnerabilities. Easy to follow walk through / live hack: Let’s not spend too much time in Powerpoint but rather take some time to understand what is happening in the terminal. We will look at some custom tools that will be helpful finding stuff like this and how to start exploiting them when there is no patch to diff against. As usual: it’s open source, it’s web related, I write the exploits live and walk you through the process in an easy to follow manner. I might also add a few jokes and we will probably end up a push of a button from disaster =)
Presented at Security Fest 2025.
Speaker: Emil TrägårdhAbout Emil Trägårdh
Emil Trägårdh is a Swedish hacker, entrepreneur and Blueteamer. At the age of 14 he created his first botnet and in high school he hacked a small city. At the age of 20 he founded a web dev agency and four years later he did his first large scale government contract with the Swedish authorities. In between, he traveled the world with his family for a year and he no longer works like regular people. Instead he devotes most of his time to security because it's fun!
