Philippe Caturegli
Chief Hacking Officer at Seralys
Actions
Philippe has over 25 years of professional experience in building, defending, and attacking across different areas of Information Security. He started his hacking career in the 1990s by operating a multi-node hacking/phreaking BBS in his parents' basement, and naturally moved into performing penetration tests in the early 2000s.
Prior to founding his own penetration testing boutique, he was a Senior Manager at a Big 4 firm, leading Security & Privacy engagements for major financial institutions. Earlier in his career, he worked in the information security department of a global pharmaceutical company, managing a heterogeneous network of over 100,000 users under strict regulatory requirements.
Throughout his hacking career, Philippe has always enjoyed vulnerability research and exploring overlooked attack surfaces.
Internal Domain Name Collision 2.0
The proliferation of new Top-Level Domains (TLDs) has sparked security concerns primarily around phishing and social engineering attacks. However, the emergence of these new TLDs has broadened the attack surface, making it easier for threat actors to exploit other domain-related vulnerabilities. Our research explored another critical but often overlooked vulnerability: Internal Domain Name Collision. During our research, we examined how legacy systems configured before the TLD boom can become susceptible to these collisions, potentially allowing threat actors to redirect or intercept sensitive internal traffic. This vulnerability can have a ripple effect, impacting even newly installed systems that rely on configurations from those legacy systems (e.g. DHCP, DNS Suffix, etc.). This presentation will showcase our methodology for identifying vulnerable domains and present real-world examples of high-value targets at risk, including a major European city, a US Police Department, and critical infrastructure companies.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top