https://www.htbridge.com/publications/enThu, 31 May 2012 15:27:42 +0200Thu, 31 May 2012 15:27:42 +0200HTBridge RSS Generator 0.9560https://www.htbridge.com/images/high_tech_bridge_logo2.gifhttps://www.htbridge.comhttps://www.htbridge.com/publications/xss_csrf_practical_exploitation_of_post_authentication_vulnerabilities_in_web_applications.htmlThese days many people do not consider post-authentication vulnerabilities dangerous, such as Stored XSS in the administrator’s portion of a web application.https://www.htbridge.com/publications/xss_csrf_practical_exploitation_of_post_authentication_vulnerabilities_in_web_applications.htmlWed, 18 Jan 2012 19:32:51 +0100https://www.htbridge.com/publications/cybercrime_in_nowadays_businesses_a_real_case_study_of_targeted_attack.htmlThe time where information threats were mostly limited to blind attacks of random targets has gone. Nowadays, many costly compromises are due to highly targeted attacks and require various skills, from web application hacking to singletons coding and botnets leveraging through the uncovering and exploitation of 0-day vulnerabilities. Cybercrime has therefore evolved to adapt the market, and criminal groups are now organized into highly specialized entities who collaborate to provide global underground services, such as attacking one’s competitors. Through a real case study, we will explore the complexity of such attacks which endanger today's businesses.https://www.htbridge.com/publications/cybercrime_in_nowadays_businesses_a_real_case_study_of_targeted_attack.htmlWed, 02 Nov 2011 15:39:26 +0100https://www.htbridge.com/publications/spying_internet_explorer_8_0.htmlMalicious software also known as "Malcode" or "Malware" can compromise the security and functionality of a program. Once "installed" it monitors the user’s habits. This documents introduces this kind of threats by spying a widespread internet browser.https://www.htbridge.com/publications/spying_internet_explorer_8_0.htmlWed, 28 Sep 2011 19:39:26 +0200https://www.htbridge.com/publications/frontal_attacks_from_basic_compromise_to_advanced_persistent_threat.htmlNowadays, there is a renewed interest in server-side attacks for hackers. According to SANS, attacks against web applications constitute more than 60% of the total attack attempts observed on the Internet. Victims may be the website owners (e.g. intellectual property theft or loss of customer confidence), their clients (e.g. bank transfer fraud or identity theft) as well as any Internet user, since web application vulnerabilities are now widely exploited to convert trusted websites into malicious ones, thus serving client-side exploits contents to Internet users. This document addresses the major threats which face today's companies, from database exfiltration in DMZ to the Advanced Persistent Threats recently undergone inmany international organizations.https://www.htbridge.com/publications/frontal_attacks_from_basic_compromise_to_advanced_persistent_threat.htmlFri, 16 Sep 2011 16:14:01 +0200https://www.htbridge.com/publications/inline_hooking_in_windows.htmlThis document is the second of a series of five articles relating to the art of hooking. As a test environment we will use an english Windows Seven SP1 operating system distribution.https://www.htbridge.com/publications/inline_hooking_in_windows.htmlTue, 06 Sep 2011 17:41:19 +0200https://www.htbridge.com/publications/passive_information_gathering.htmlThe aim of this paper is to present the P.I.G. software, a private tool developed by High-Tech Bridge to optimize the information gathering phase during penetration tests. This paper only contains few technical information in order to provide a global view of the software implementation, which may be useful to people willing to automate such a process. https://www.htbridge.com/publications/passive_information_gathering.htmlTue, 16 Aug 2011 17:22:08 +0200https://www.htbridge.com/publications/userland_hooking_in_windows.htmlThis document is the first of a series of five articles relating to the art of hooking. As a test environment, we will use an English Windows Seven SP1 operating system distribution. https://www.htbridge.com/publications/userland_hooking_in_windows.htmlThu, 04 Aug 2011 17:18:09 +0200https://www.htbridge.com/publications/defeating_data_execution_prevention_and_aslr_in_windows_xp_sp3.htmlData prevention Execution (DEP) and Address space layout randomization (ASLR) are two protection mechanisms integrated in Windows operating system to make more complicated the task of exploiting software. This document show how these two features can be bypassed using different techniques.https://www.htbridge.com/publications/defeating_data_execution_prevention_and_aslr_in_windows_xp_sp3.htmlMon, 27 Jun 2011 12:49:51 +0200https://www.htbridge.com/publications/structured_exception_handler_exploitation.htmlThe SEH exploitation technique was publicly documented by David Litchfield in September of 2003. At a high-level, the SEH overwrite technique uses a software vulnerability to execute arbitrary code by abusing the 32-bit exception dispatching facilities provided by Windows. At a functional level, an SEH overwrite is generally accomplished by using a stack-based buffer. This document explains SEH details while exploiting a real case.https://www.htbridge.com/publications/structured_exception_handler_exploitation.htmlWed, 15 Jun 2011 00:00:00 +0200https://www.htbridge.com/publications/fake_malware_and_virus_scanners.htmlRogue security software reports a virus infection, even if your computer is clean. This kind of "software" could also fail to report viruses when your computer is infected. This document show what are the mechanisms to obfuscate this process.https://www.htbridge.com/publications/fake_malware_and_virus_scanners.htmlFri, 20 May 2011 15:23:37 +0200https://www.htbridge.com/publications/become_fully_aware_of_the_potential_dangers_of_activex_attacks.htmlExploiting ActiveX components vulnerabilities in Windows has become a favored method of attackers aiming to compromise specific computers. Such targeted attacks have increasingly become a threat to companies and government agencies. This talk will explain this kind of attack and show how this flaw could be discovered while going through exploitation.https://www.htbridge.com/publications/become_fully_aware_of_the_potential_dangers_of_activex_attacks.htmlThu, 12 May 2011 00:00:00 +0200https://www.htbridge.com/publications/client_side_threats_anatomy_of_reverse_trojan_attacks.htmlClient-side vulnerabilities are among the biggest threats facing users. Attackers are going after weaknesses in desktop applications such as browsers, media players, common office applications and e-mail clients to install malicious software, often Trojan horses and rootkits. This document explains in detail these threats while how to prevent them.https://www.htbridge.com/publications/client_side_threats_anatomy_of_reverse_trojan_attacks.htmlThu, 02 Dec 2010 00:00:00 +0100