Professional Documents
Culture Documents
Tactical Exploitation Black Hat 2007
Tactical Exploitation Black Hat 2007
hdm / valsmith
Black Hat USA 2007
• Newsgroups
• SensePost tools
• Evolution from Paterva.com
DEMO
ftp.microsoft.com [node]
SITE STATS / Uptime: 47 days
Las Vegas – August 2007
process discovery
IP ID Monitoring / HACKER.COM
Las Vegas – August 2007
15 Minute Break
• Come back for the exploits!
• Dirs
• Backup files
• VHOSTS
• http://www.host.com/cgi-bin/vuln.cgi/../../../../dirname%00.html
• CALICENSE
DEMO
•
Las Vegas – August 2007
Hijacking SSH
• Idea is to abuse legitimate users access
over SSH
• If user can access other systems, why
can't you? (even without users password)
• One time passwords? No problem!
• Intel gathering
Las Vegas – August 2007
Hijacking SSH
• Available tools
Metalstorm ssh hijacking
•
• TTYWatcher
DEMO
DEMO