Hi! <br><br>
The following are from the presentation "Exploit XXE in File Upload Functionality" presented at BlackHat USA 2015.
<br>

&nbsp;&nbsp;&nbsp;&nbsp;<a href="/reveal.js/slides.html">Slides</a><br><br>
<br>

&nbsp;&nbsp;&nbsp;&nbsp;<a href="/notes.txt">Notes, discussion points, and References</a><br><br>
<br>

&nbsp;&nbsp;&nbsp;&nbsp;<a href="https://github.com/BuffaloWill/oxml_xxe">Tool</a><br><br>

<u>Update 1 (08/16/15):</u><br>
In the final presentation I left out XXE attacks via XMP in PDF (gif, etc.) though it is still in the slide deck. This support is added in oxml_xxe. For example:<br>
<t>ruby oxml_xxe.rb --poc pdf --ip 192.168.14.1:8000

<br><br><br><u>Update 2 (11/19/15):</u><br>
Recently presented updated material as part of the <a href="https://www.blackhat.com/html/webcast/11192015-exploiting-xml-entity-vulnerabilities-in-file-parsing-functionality.html">Blackhat Webcast Series</a><br>
Additional material was added discussing XXE via PDF, GIF, PNG, and JPG. Updates have been pushed to the tool.<br>

&nbsp;&nbsp;&nbsp;&nbsp;<a href="/reveal.js/bh_webcast.html">Updated Slides from 11/19/15</a><br><br>