Welcome to Scribd!

Skip carousel

Penetration Document Format Slides

Uploaded by

chepimanca

0% found this document useful (0 votes)

48 views27 pages

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Attribution Non-Commercial (BY-NC)

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

48 views27 pages

Penetration Document Format Slides

Uploaded by

chepimanca

Copyright:

Attribution Non-Commercial (BY-NC)

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 27

Search inside document

Penetration Document Format

Didier@DidierStevens.com
Didier@DidierStevens.com
Didier@DidierStevens.com
Identification and Analysis

Didier@DidierStevens.com
Didier@DidierStevens.com
PDFiD
PDFiD 0.0.9 hello-world.pdf
PDF Header: %PDF-1.1
obj 7
endobj 7
stream 1
endstream 1
xref 1
trailer 1
startxref 1
/Page 1
/Encrypt 0
/ObjStm 0
/JS 0
/JavaScript 0
/AA 0
/OpenAction 0
/AcroForm 0
/JBIG2Decode 0
/RichMedia 0
/Colors > 2^24 0

Didier@DidierStevens.com
/Name Obfuscation

Didier@DidierStevens.com
PDFiD Demo

Didier@DidierStevens.com
http://www.Virustotal.com

Didier@DidierStevens.com
Didier@DidierStevens.com
http://blog.rootshell.be

Didier@DidierStevens.com
In-The-Wild PDF

Didier@DidierStevens.com
PoC Pure ASCII PDF

Didier@DidierStevens.com
pdf-parser Demo

Didier@DidierStevens.com
Protection

Didier@DidierStevens.com
Foxit Reader

Didier@DidierStevens.com
Sumatra PDF

Didier@DidierStevens.com
Know Your Enemy ...

Didier@DidierStevens.com
Disable JavaScript?

Didier@DidierStevens.com
… Find His Achilles Heel

Didier@DidierStevens.com
Access Tokens

Didier@DidierStevens.com
Use Restricted Tokens

● Windows >= Vista + UAC

● DropMyRights
● StripMyRights
● SAFER SRP

Didier@DidierStevens.com
Restricted Token in Action

Didier@DidierStevens.com
Disclosure CVE-2009-2979

Didier@DidierStevens.com
XML-Bomb in Metadata

Didier@DidierStevens.com
Questions?
And hopefully some answers...

Didier@DidierStevens.com
Thank you

http://blog.DidierStevens.com

Didier@DidierStevens.com

Ethical Hacking Tricks Guides Tools How To
Document5 pages
Ethical Hacking Tricks Guides Tools How To
muna cliff
100% (7)
Free PDF Unlocker To Unlock PDF Files
Document1 page
Free PDF Unlocker To Unlock PDF Files
fejalsmith
No ratings yet
Dork Carding (Part 3)
Document7 pages
Dork Carding (Part 3)
Byn Tikiwarige
No ratings yet
The Si: E Dds
Document41 pages
The Si: E Dds
Agenor Jose Polo Zabaleta
No ratings yet
Scribd-Dl PyPI
Document4 pages
Scribd-Dl PyPI
Ahmed Mohamed
No ratings yet
Open Id Support
Document1 page
Open Id Support
cheboncruz
No ratings yet
How To Use PyDbg As A Powerful Multitasking Debugger
Document38 pages
How To Use PyDbg As A Powerful Multitasking Debugger
High-Tech Bridge
No ratings yet
Scribd-Dl PyPI
Document4 pages
Scribd-Dl PyPI
5 2
No ratings yet
LFI To RCE Via Access - Log Injection PDF
Document14 pages
LFI To RCE Via Access - Log Injection PDF
cesar augusto palacio echeverri
No ratings yet
De-Obfuscation Report
Document2 pages
De-Obfuscation Report
r8899814
No ratings yet
ESET NOD32 Complete Software
Document21 pages
ESET NOD32 Complete Software
Sravan Addanki
No ratings yet
1415 Toda-1
Document27 pages
1415 Toda-1
UserTest
No ratings yet
Understanding PDF File Types
Document4 pages
Understanding PDF File Types
sudha
No ratings yet
JavaScript Deobfuscation (Spiffy)
Document35 pages
JavaScript Deobfuscation (Spiffy)
mohamed harir
0% (1)
Outbound Idoc Through ALE
Document14 pages
Outbound Idoc Through ALE
kulkarnih
100% (1)
Digital Media
Document24 pages
Digital Media
Aron paul San Miguel
No ratings yet
Acrobat PDF Format: 20. Other Formats of This Document
Document3 pages
Acrobat PDF Format: 20. Other Formats of This Document
Ted Chow
No ratings yet
Sdig Monitor: Open Source Container Ou Leshooting Tool Check Out Our Enterprise Monitoring Product
Document5 pages
Sdig Monitor: Open Source Container Ou Leshooting Tool Check Out Our Enterprise Monitoring Product
Sandro Melo
No ratings yet
Malicious PDF Analysis Ebook
Document23 pages
Malicious PDF Analysis Ebook
descargador_1
No ratings yet
Registered Software List
Document1 page
Registered Software List
Chetra Thon
No ratings yet
Anypdf - Google Search
Document2 pages
Anypdf - Google Search
paunikarkedar
No ratings yet
Android Bluetooth - BNEP Bnep - Data - Ind Remote Heap Disclosure
Document7 pages
Android Bluetooth - BNEP Bnep - Data - Ind Remote Heap Disclosure
Gerah
No ratings yet
Dojo Quickstart
Document32 pages
Dojo Quickstart
vijaykumar015
No ratings yet
PDF Crowd Keep This Document Private
Document4 pages
PDF Crowd Keep This Document Private
thehagiasophia
No ratings yet
Digispark HID Attacks 2020
Document68 pages
Digispark HID Attacks 2020
Carlos Alberto Mendes Betinho
No ratings yet
Exploit Win32 PDFJSC Ex
Document2 pages
Exploit Win32 PDFJSC Ex
Rodrick
No ratings yet
Convertir D - 1682969091018
Document7 pages
Convertir D - 1682969091018
Mzo
No ratings yet
PDF Creator Options
Document5 pages
PDF Creator Options
Cory Deppen
100% (1)
Vanilla Skype Part 1: Fabrice Desclaux Kostya Kortchinsky
Document84 pages
Vanilla Skype Part 1: Fabrice Desclaux Kostya Kortchinsky
Anonymous EzUofHt
No ratings yet
Image Security 3 Des Project Code
Document2 pages
Image Security 3 Des Project Code
naveen
No ratings yet
Fido Article v01
Document3 pages
Fido Article v01
Bram Van Der Werf
No ratings yet
Solar Eclipse: Tiny PE
Document10 pages
Solar Eclipse: Tiny PE
triafffii
No ratings yet
The Quick Brown Fox Jumps Over The Lazy Dog. 0123456789
Document1 page
The Quick Brown Fox Jumps Over The Lazy Dog. 0123456789
DarilCoy
No ratings yet
How To Convert Idx-Sub Files Into SRT
Document5 pages
How To Convert Idx-Sub Files Into SRT
Dimitris Veternalis
No ratings yet
razzaq
Document12 pages
razzaq
Aicha Laa
No ratings yet
Visual Forensic Analysis and Reverse Engineering of Binary Data PDF
Document63 pages
Visual Forensic Analysis and Reverse Engineering of Binary Data PDF
Guilherme do Valle
No ratings yet
Bug Bounty Cheatsheet
Document53 pages
Bug Bounty Cheatsheet
Michel Edi
No ratings yet
Inpi Company Documents PDF Ws July2020 v3.0
Document7 pages
Inpi Company Documents PDF Ws July2020 v3.0
gior
No ratings yet
Exploit PDF B
Document2 pages
Exploit PDF B
Tony
0% (1)
Clarion Programming Language Introduction
Document3 pages
Clarion Programming Language Introduction
kero7
No ratings yet
U C S o I N: Random Documents
Document4 pages
U C S o I N: Random Documents
Ernest Kwan
No ratings yet
A05-01-003 Fundamental of Moldex3D Studio Interface
Document66 pages
A05-01-003 Fundamental of Moldex3D Studio Interface
Vo Tran Minh Dinh
No ratings yet
Dork Carding (Part 3)
Document7 pages
Dork Carding (Part 3)
Byn Tikiwarige
100% (1)
Thesis A
Document12 pages
Thesis A
Ramesh Ponnampalam
No ratings yet
Secure PL SQL Coding
Document33 pages
Secure PL SQL Coding
Hung Dao
No ratings yet
Mario Heiderich Dissertation
Document6 pages
Mario Heiderich Dissertation
WhatAreTheBestPaperWritingServicesUK
100% (1)
RQDA Skill Building Presentation
Document65 pages
RQDA Skill Building Presentation
Miguel Lozano
100% (1)
SAP R3 IDoc Extract
Document26 pages
SAP R3 IDoc Extract
axime
100% (1)
Idoc Day 2
Document196 pages
Idoc Day 2
ray_supratim123
No ratings yet
Extraction of Text From CAD Files (DWG, DXF) - Yet Another Translator Blog
Document2 pages
Extraction of Text From CAD Files (DWG, DXF) - Yet Another Translator Blog
Amgad Alsisi
No ratings yet
Week 6 Session 1 F2F
Document49 pages
Week 6 Session 1 F2F
Cheez Nutz
No ratings yet
Introduction To PDF Programming: Leonard Rosenthol Lazerware
Document33 pages
Introduction To PDF Programming: Leonard Rosenthol Lazerware
Tony
No ratings yet
2
Document18 pages
2
Skye
No ratings yet
Encrypting
Document10 pages
Encrypting
corneil
No ratings yet
Detecting Malicious Activity in Windows Environments
Document100 pages
Detecting Malicious Activity in Windows Environments
Jimi
No ratings yet
Weaponizing Windows Virtual Ization
Document8 pages
Weaponizing Windows Virtual Ization
Baran Tekin
No ratings yet
XML and The Progress 4GL
Document25 pages
XML and The Progress 4GL
Fernando Soares
No ratings yet
Exploit PDF Dropper Gen Removal
Document2 pages
Exploit PDF Dropper Gen Removal
Jenny
No ratings yet
Visual Studio Code Distilled: Evolved Code Editing for Windows, macOS, and Linux
From Everand
Visual Studio Code Distilled: Evolved Code Editing for Windows, macOS, and Linux
Alessandro Del Sole
Rating: 3 out of 5 stars
3/5 (1)
Introducing Deno: A First Look at the Newest JavaScript Runtime
From Everand
Introducing Deno: A First Look at the Newest JavaScript Runtime
Fernando Doglio
No ratings yet
Jurnal Skripsi Komunikasi - Herwin Andhika-Libre
Document17 pages
Jurnal Skripsi Komunikasi - Herwin Andhika-Libre
chepimanca
No ratings yet
Speck Exhause Fan
Document1 page
Speck Exhause Fan
chepimanca
No ratings yet
SMA - Tata Negara 2006-Www - Examsworld.us
Document1 page
SMA - Tata Negara 2006-Www - Examsworld.us
chepimanca
No ratings yet
Ujian Nasional Bahasa Inggris SMA Tahun 2005
Document7 pages
Ujian Nasional Bahasa Inggris SMA Tahun 2005
Andhika A. Setiyono
No ratings yet
Graphics 4
Document1 page
Graphics 4
chepimanca
No ratings yet
Ujian Nasional Bahasa Inggris SMA Tahun 2004
Document7 pages
Ujian Nasional Bahasa Inggris SMA Tahun 2004
Andhika A. Setiyono
No ratings yet
1
Document1 page
1
chepimanca
No ratings yet
Sikap Lilin
Document2 pages
Sikap Lilin
chepimanca
No ratings yet
Ips
Document5 pages
Ips
chepimanca
No ratings yet
contoh-soal-UN SMA - Tata Negara 2007
Document1 page
contoh-soal-UN SMA - Tata Negara 2007
chepimanca
No ratings yet
Ujian Nasional Bahasa Inggris SMA Tahun 2006
Document6 pages
Ujian Nasional Bahasa Inggris SMA Tahun 2006
Andhika A. Setiyono
100% (1)
Ujian Nasional Bahasa Inggris SMA Tahun 2007
Document7 pages
Ujian Nasional Bahasa Inggris SMA Tahun 2007
Andhika A. Setiyono
No ratings yet
Ujian Nasional Bahasa Inggris SMA Tahun 2002
Document6 pages
Ujian Nasional Bahasa Inggris SMA Tahun 2002
Andhika A. Setiyono
No ratings yet
contoh-soal-UN SMA - Bahasa Inggris 2003
Document7 pages
contoh-soal-UN SMA - Bahasa Inggris 2003
chepimanca
No ratings yet
Windows7 Rot13 or Vigenere
Document8 pages
Windows7 Rot13 or Vigenere
chepimanca
No ratings yet
Ujian Nasional Bahasa Inggris SMA Tahun 2000
Document6 pages
Ujian Nasional Bahasa Inggris SMA Tahun 2000
Andhika A. Setiyono
No ratings yet
Various Hack
Document8 pages
Various Hack
chepimanca
No ratings yet
Ujian Nasional Bahasa Inggris SMA Tahun 2001
Document6 pages
Ujian Nasional Bahasa Inggris SMA Tahun 2001
Andhika A. Setiyono
No ratings yet
Tmplab HostileWRT 5
Document22 pages
Tmplab HostileWRT 5
chepimanca
No ratings yet
Temmingh Hack
Document29 pages
Temmingh Hack
chepimanca
No ratings yet
Picviz: Sébastien Tricaud
Document23 pages
Picviz: Sébastien Tricaud
chepimanca
No ratings yet
Smartcard Security Hack
Document4 pages
Smartcard Security Hack
chepimanca
100% (1)
Nufw Hacklu2008
Document55 pages
Nufw Hacklu2008
chepimanca
No ratings yet
Rustock.C - When A Myth Comes True
Document28 pages
Rustock.C - When A Myth Comes True
chepimanca
No ratings yet
Pastor - Cracking Into Embedded Devices - Hack - Lu2k8
Document58 pages
Pastor - Cracking Into Embedded Devices - Hack - Lu2k8
chepimanca
No ratings yet
Moxie-Marlinspike-Some Tricks For Defeating SSL in Practice
Document156 pages
Moxie-Marlinspike-Some Tricks For Defeating SSL in Practice
chepimanca
No ratings yet
Playing With SAT 1.2 - Hacklu
Document98 pages
Playing With SAT 1.2 - Hacklu
chepimanca
No ratings yet
New Advances in Ms Office Malware Analysis
Document38 pages
New Advances in Ms Office Malware Analysis
chepimanca
No ratings yet
Naxx Slides
Document63 pages
Naxx Slides
chepimanca
No ratings yet