jetlib.sec » Tags » exploitation-activities

Feeds

133360 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

4 items tagged "exploitation activities"

Related tags: teensy [+], nikhil mittal [+], kautilya [+], human interface devices [+], human interface device [+], device [+], abu dhabi [+], pentesters [+], passive network [+], order [+], meterpreter [+], memory [+], david kerb [+], colin ames [+], coldfusion server [+], coldfusion [+], boston [+], administrative interface [+], access [+]

• April 11, 2012
• 11:10

  ColdFusion for Pentesters at SOURCE Boston

   » ‎ Carnal0wnage
  I'll be giving my ColdFusion for Pentesters talk at SOURCE Boston next week.
  
  Here is the info from the abstract:
  
  "ColdFusion is one of those technologies where organizations are either ColdFusion shops or they won't touch it on a bet. Similarly, I find that pentesters have either been exposed to it and have a few tricks to attack it or not. Aside from common web application issues, ColdFusion can also be attacked on the network level and many times used to obtain remote access on the host. This talk will cover what is ColdFusion, common ColdFusion issues, finding useful ColdFusion URLs, identifying specific ColdFusion version and components, and verifying if common vulnerabilities are present in the ColdFusion server you are targeting. If access to the ColdFusion administrative interface can be obtained, you can perform post exploitation activities that will typically yield you remote access to the operating system supporting the ColdFusion install."
  
  
  Like the other talks, i'll do the what it is, why you care (?), and some ways to go after it.  Hopefully useful/interesting.
  
  Hope to see people there.
  
  -CG
  
  

  Tags:  access pentesters coldfusion boston coldfusion-server exploitation-activities administrative-interface  

• February 05, 2012
• 3:04

  [Slides] Kautilya: Teensy Beyond Shell

   » ‎ SecDocs
  Authors: Nikhil Mittal
  Tags: penetration testing embedded
  Event: Black Hat Abu Dhabi 2011
  Abstract: As hackers, we have been exploiting the inherent trust by Operating System on Human Interface Devices for some time now. Teensy is a USB Micro-controller; a device which can act as a Human Interface Device when connected to a computer and is able to do the job pre-programmed in it. Many interesting things have been done using Teensy as a keyboard. We have mostly seen shells, many types of them. It is time we start looking at Teensy as a pentesting device capable of doing much more than popping shells. Introducing Kautilya, a toolkit which can be used to perform various pre-exploitation and post-exploitation activities. Kautilya aims on easing the use of attack vectors which traditionally require human intervention but can be automated using Teensy. Kautilya contains some nice customizable payloads which may be used for enumeration, info gathering, disabling countermeasures, keylogging and using Operating System against itself for much more. The talk will be full of live demonstrations.

  Tags:  teensy kautilya device nikhil-mittal abu-dhabi human-interface-devices human-interface-device exploitation-activities  

• 3:02

  [Paper] Kautilya: Teensy Beyond Shell

   » ‎ SecDocs
  Authors: Nikhil Mittal
  Tags: penetration testing embedded
  Event: Black Hat Abu Dhabi 2011
  Abstract: As hackers, we have been exploiting the inherent trust by Operating System on Human Interface Devices for some time now. Teensy is a USB Micro-controller; a device which can act as a Human Interface Device when connected to a computer and is able to do the job pre-programmed in it. Many interesting things have been done using Teensy as a keyboard. We have mostly seen shells, many types of them. It is time we start looking at Teensy as a pentesting device capable of doing much more than popping shells. Introducing Kautilya, a toolkit which can be used to perform various pre-exploitation and post-exploitation activities. Kautilya aims on easing the use of attack vectors which traditionally require human intervention but can be automated using Teensy. Kautilya contains some nice customizable payloads which may be used for enumeration, info gathering, disabling countermeasures, keylogging and using Operating System against itself for much more. The talk will be full of live demonstrations.

  Tags:  teensy kautilya device nikhil-mittal abu-dhabi human-interface-devices human-interface-device exploitation-activities  

• May 12, 2010
• 1:25

  [Paper] Neurosurgery With Meterpreter

   » ‎ SecDocs
  Authors: Colin Ames David Kerb
  Tags: Metasploit meterpreter
  Event: Black Hat DC 2010
  Abstract: A crucial step in post-exploitation technology is memory manipulation. Metasploit's Meterpreter provides a robust platform and API on which to build memory exploitation tools to assist the attacker in post-exploitation tasks. This talk will cover several examples of memory manipulation using meterpreter and introduce an extension to aid post-exploitation activities. We will demonstrate the extraction of unique process memory to analyze for valuable information such as passwords. We will also demonstrate the injection of utilities into a processes memory in order to alter execution flow to provide new "features" like Putty Hijack. Another example that will be covered is interacting with the lsass process memory in order to steal windows session hashes required for pass the hash. Finally we will discuss the use of meterpreter to patch process memory in order to introduce vulnerabilities which can be leveraged for things such as persistence. Another form of "memory" is the knowledge a host has about its network environment. This presentation will discuss the utilization of a meterpreter extension to automate and facilitate passive network reconnaissance over time, allowing for smart network data acquisition and analysis.

  Tags:  memory order meterpreter colin-ames david-kerb exploitation-activities passive-network