One Request to Kill Them All: Amplification, Data Landmines and Parser Killers - Patrik Jokela
Disobey 2026 · Main Stage
Patrik Jokela, also known as Queso, delivered a compelling presentation at Disobey, dissecting the often-underestimated threat of **application-level denial of service (DoS)** attacks. Titled "One Request to Kill Them All," the talk provided a practical and in-depth exploration of how seemingly innocuous application misconfigurations and design quirks can be weaponized by attackers to bring down services with minimal effort. Jokela, an offensive security researcher recently joined Cipherix, demonstrated six distinct attack vectors, categorizing them under a "kill vector model" that includes response size amplifications, data landmines, and parser killers.
AI review
Competent, well-organized survey of application-layer DoS vectors with live demos that land the point cleanly. Nothing here will surprise a seasoned AppSec researcher, but the kill-vector taxonomy and the concrete amplification math make it a genuinely useful primer for the audience Disobey actually draws.