Search This Blog

SharingSec

My 2 cents to the infosec community!

Hash Spraying Attack

Get link
Facebook
Twitter
Pinterest
Email
Other Apps

- September 03, 2020

Hello folks,

A couple of weeks ago I put together a Medium Story about the Hash Spraying Attack. Enjoy it!

Get link
Facebook
Twitter
Pinterest
Email
Other Apps

Comments

The forgotten JBOSS Admin Console and CVE 2010-1871

- February 17, 2013

Well, we are in 2013 and It’s amazing how many JBOSS administration interfaces (jmx-console, web-console, invokers etc) are still exposed on the internet, however we are not going to talk about it. A couple of days ago I was performing a penetration testing and I found an environment with JBOSS AS 6. The JMX-Console wasn’t password protected but one console in special attracted my attention: the Admin Console. It seems that this console, I do not know the reason, is kind of forgotten by the security community as an attack vector. The default access credential for this console is admin/admin and it is also built upon a vulnerable version of Seam framework CVE 2010-1871 . This console provides a powerful JBOSS administration allowing a user to check the server’s configuration, to deploy and to delete applications, to read datasources etc. I checked out for the default credential but they were changed. There were other ways to hack this JBOSS but I was quite interes

Man in the middle attack through a web shell

- November 21, 2012

Hello all. Let’s talk today about Man in the middle attack . No, this isn’t a post talking about what it is and how to perform a MITM attack. The proposal of this blog is to share experience with you, then most of the posts (at least until now) are about things that happened in real environments. Recently performing a penetration testing it was possible to get a web shell through a combination of vulnerabilities. That’s good… a web shell right? But how about to going deep and explore more of the environment? Yes, if you thought about reverse web shell you are right, but, in this case, I couldn’t establish an outbound connection (this is a subject for another post). I did a lot of things in such environment and one of the things done was a MITM attack through a web shell. Let’s go to some important details. First of all, it was a Windows box. There are some tools you can perform a MITM attack on Windows box such as Cain & Abel , but remember, we had a web shell and thi

Symantec Protection Engine (SPE) - ICAP bypass

- November 13, 2020

Hello folks! A couple of weeks ago I found a security issue on Symantec Protection Engine which could lead to ICAP inspection bypass. Check it out here !

Labels

Apache
Application Security
arpspoofing windows
Attack
AWS
Brute Force
Cloud Security
CSP
CVE 2010-1871
DoS

Enumeration
GCP
Google Accounts
Google Cloud
hacking
Hacking JBOSS Admin Console
hash-spray
HPKP
HTTP Security Headers
http-digest
Information disclosure
JBOSS Penentration Testing
JWT hacking
JWT security
JWT Token
Man in the middle
Microsoft AD
MITM
MS17-010
office 365
Oracle SQL Injection
OWA
OWASP
OWASP Testing Guide
Pass-the-hash
Password Auditing
Penetration Testing
Pentesting
PortScanner
Post Exploitation
Privilege Escalation
RedTeam
Seam exploit
security mindset
Server Side Request Forgery
Slow HTTP DoS
slowdos_detector
slowhttptest
SQL Injection
SQLMap
SSRF. bug bounty
User Enumeration
Vulnerability Disclosure
web shell
Wildfly
winarp_sk
winpcap uninstaller silently
X-Frame-Options
XSS
ZAP

Show more Show less