1 / 65

I Own Your Web App

I Own Your Web App. Oct 10, 2014. OWASP. OWASP.org Security tips, tools, and coding guidance for Web applications. `. Cross-Site Request Forgery. Login Secured with HTTPS. Authenticated Traffic Not Encrypted. Authentication Cookie. Blanket Solution: HTTPS.

kirk-armstrong
Download Presentation

I Own Your Web App

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. I Own Your Web App Oct 10, 2014 All materials posted at samsclass.info and free to use

  2. All materials posted at samsclass.info and free to use

  3. OWASP All materials posted at samsclass.info and free to use

  4. OWASP.org Security tips, tools, and coding guidance for Web applications All materials posted at samsclass.info and free to use

  5. ` All materials posted at samsclass.info and free to use

  6. All materials posted at samsclass.info and free to use

  7. All materials posted at samsclass.info and free to use

  8. Cross-Site Request Forgery All materials posted at samsclass.info and free to use

  9. Login Secured with HTTPS All materials posted at samsclass.info and free to use

  10. Authenticated Traffic Not Encrypted All materials posted at samsclass.info and free to use

  11. Authentication Cookie All materials posted at samsclass.info and free to use

  12. All materials posted at samsclass.info and free to use

  13. Blanket Solution: HTTPS • Use HTTPS for all transactions • But that might be • Expensive • Complicated • Slow All materials posted at samsclass.info and free to use

  14. All materials posted at samsclass.info and free to use

  15. All materials posted at samsclass.info and free to use

  16. CSRF Demo All materials posted at samsclass.info and free to use

  17. Cookie Cadger All materials posted at samsclass.info and free to use

  18. Homework Project All materials posted at samsclass.info and free to use

  19. Vulnerable Sites Amazon.com AOL.com siliconvalley-codecamp.com All materials posted at samsclass.info and free to use

  20. Amazon Sends Authentication Token Unencrypted All materials posted at samsclass.info and free to use

  21. HTTPS-Only Sites Google and Gmail Live.com (Microsoft) Yahoo.com Paypal.com All materials posted at samsclass.info and free to use

  22. Partially Vulnerable Sites Tigerdirect.com Wordpress.com All materials posted at samsclass.info and free to use

  23. SQL Injection All materials posted at samsclass.info and free to use

  24. All materials posted at samsclass.info and free to use

  25. SQL Injection Vulnerability caused by using input from the user which can be misinterpreted as active code Weak defense: filter out special characters Strong defense: parameterized queries All materials posted at samsclass.info and free to use

  26. All materials posted at samsclass.info and free to use

  27. SQLi on Pastebin All materials posted at samsclass.info and free to use

  28. URL for Live Demo http://app.ocp.dc.gov/RUI/information/awards/detail.asp?award_id=4279%27%20AND%20999=991%20AND%20%27AEEs%27=%27AEEs All materials posted at samsclass.info and free to use

  29. All materials posted at samsclass.info and free to use

  30. Extracting Data No apostrophe required All materials posted at samsclass.info and free to use

  31. PharmaInfections at Colleges All materials posted at samsclass.info and free to use

  32. All materials posted at samsclass.info and free to use

  33. 19 Colleges Infected with Pharma 5 Fixed within a few weeks 7 Fixed within 8 months 7 Still Infected on 7-19-14 http://samsclass.info/125/proj11/subtle-infect.htm#19more All materials posted at samsclass.info and free to use

  34. All materials posted at samsclass.info and free to use

  35. Infections at UC Santa Cruz All materials posted at samsclass.info and free to use

  36. UCSC cleaned their server Re-infected a week later NEED ROOT CAUSE ANALYSIS All materials posted at samsclass.info and free to use

  37. Many More Pharma Infections Dozens of other schools, businesses, foreign sites, etc. http://samsclass.info/125/proj11/subtle-infect.htm#19more All materials posted at samsclass.info and free to use

  38. Exposed Data All materials posted at samsclass.info and free to use

  39. Exposed Error Logs Can leak cookies Even when secured by HTTPS All materials posted at samsclass.info and free to use

  40. Google Dork for Exposed ELMAH Pages All materials posted at samsclass.info and free to use

  41. Exposed Student Data All materials posted at samsclass.info and free to use

  42. Exposed Password Hash All materials posted at samsclass.info and free to use

  43. Open FTP Server with Medical Data All materials posted at samsclass.info and free to use

  44. Libel by SC Magazine All materials posted at samsclass.info and free to use

  45. Plaintext Login Pages at Colleges All materials posted at samsclass.info and free to use

  46. Insecure Login Pages at Colleges 90 colleges notified in Dec, 2013 All materials posted at samsclass.info and free to use

  47. Big Names Cornell Johns Hopkins Stanford UC Berkeley All materials posted at samsclass.info and free to use

  48. Results 7 months after notification: 16/57 plaintext login pages fixed or improved (28%) 8/33 mixed login pages fixed or improved (24%) All materials posted at samsclass.info and free to use

  49. Other Problems All materials posted at samsclass.info and free to use

  50. ActiveMQ Free open-source middleware from Apache A Defcon talk said it was often insecure, so I looked on SHODAN to see All materials posted at samsclass.info and free to use

More Related