Hacking Web File Servers for iOS

Post on 06-Feb-2016

31 views 0 download

Preview:

Click to see full reader

Tags:

Report this document
SHARE

description

Hacking Web File Servers for iOS. Bruno Gonçalves de Oliveira Senior Security Consultant – Trustwave’s SpiderLabs. About Me. # whoami Bruno Gonçalves de Oliveira Senior Security Consultant @ Trustwave’s SpiderLabs MSc Candidate Computer Engineer Offensive Security Talks: - PowerPoint PPT Presentation

Transcript of Hacking Web File Servers for iOS

Hacking Web File Servers for iOS

Bruno Gonçalves de Oliveira

Senior Security Consultant – Trustwave’s SpiderLabs

About Me

#whoami• Bruno Gonçalves de Oliveira• Senior Security Consultant @ Trustwave’s SpiderLabs

• MSc Candidate• Computer Engineer• Offensive Security• Talks:

Silver Bullet, THOTCON, SOURCE Boston, Black Hat DC, SOURCE Barcelona, DEF CON, Hack In The Box Malaysia, Toorcon, YSTS e H2HC.

Hosted by OWASP & the NYC Chapter

INTRO• Smartphones

– A LOT OF information– iPhone is VERY popular

• Mobile Applications– (MOST) Poorly designed

• Old fashion vulnerabilities

Hosted by OWASP & the NYC Chapter

What are those apps?

• Designed to provide a storage system to iOS devices.

• Data can be transferred utilizing bluetooth, iTunes and FTP.

• Easiest way: HTTP protocol.

• They are very popular.

Examples

Features

• Manage/Storage files

• Create Albums, etc.

• Share Data

VULNERABILITIES

• No encryption (SSL):

• No authentication (by default):

• (Reflected) XSS

• (Persistent) XSS

• (Persistent) XSS

http://www.vulnerability-lab.com/get_content.php?id=932

• Vulnerability-Lab Advisories:http://www.vulnerability-lab.com/show.php?cat=mobile

Disclaimer

• Trustwave (me) did this research on March/13 and just now we are disclosing these advisories.

• Path Traversal

• WiFi HD Free Path Traversal (CVE-2013-3923)• FTPDrive Path Traversal (CVE-2013-3922)• Easy File Manager Path Traversal (CVE-2013-

3921)

You probably want to test the app that you use.

• Path Traversal (DEMO)

• Easy File Manager

• Unauthorized Access to File System (CVE-2013-3960)

• Unauthorized Access to File System (CVE-2013-3960)

• Getting worst with a jailbroken device.

• Remote Command Execution: Unauthorized Access to File System (CVE-2013-3960) – Jailbroken Device

• iOS 7 Security Improvement

How to find vulnerable systems

<= mDNS Watch for iOS

mDNS Queries

• Conclusions

• Mobile Apps (already) are the future.• Mobile Apps designers still don’t care too

much about security.• Too many apps, we have to take care.• Old fashion vulnerabilities still rock.

Top related

Hacking from iOS 8 to iOS 9 - pangublog.pangu.io/wp-content/uploads/2015/11/POC2015_RUXCON2015.pdf · Who We Are Team Pangu is known for releasing jailbreak tools for iOS 7.1, iOS
 Documents
Ce hv6 module 42 hacking database servers
 Documents
Hacking Pebble on iOS
 Technology
CEHv6 Module 16 Hacking Web Servers
 Documents
Hacking phones from 2013 to 2016 - Power Of Communitypowerofcommunity.net/poc2016/keen.pdf · Hacking phones from 2013 to 2016 ... iOS hacking • Part 2: Android hacking ... •
 Documents
Hacking apple accessories to pown iDevices2013.hackitoergosum.org/presentations/Day3-04.Hacking apple accessories to pown... · – HACK.lu 2012 • Hacking iOS Application . 3 ...
 Documents
CrikeyCon 2015 - iOS Runtime Hacking Crash Course
 Mobile
Hacking and Securing iOS Apps : Part 1
 Technology
Ethical Hacking - sevenmentor.com1.0 Introduction to Ethical Hacking 2.0 Footprinting, Scanning, and Enumeration 3.0 Hacking Web servers and Web applications 4.0 DoS, SQL injection,
 Documents
CEH Module 16: Hacking Web Servers
 Documents
Hands-On Ethical Hacking and Network Defense Chapter 10 Hacking Web Servers.
 Documents
CNIT 128 Hacking Mobile Devices · 2020-04-29 · Hacking Mobile Devices 3. Attacking iOS Apps Part 1. Topics: Part 1 ... apps •Must install the ...
 Documents
Hacking ios-on-the-run-using-cycript-viaforensics-rsa-conference-2014
 Education
CONFidence 2015: iOS Hacking: Advanced Pentest & Forensic Techniques - Omer S. Coskun
 Software
Hands-On Ethical Hacking and Network Defense 3rd … · Hands-On Ethical Hacking and Network Defense 3rd Edition Chapter 10 Hacking Web Servers Revised 1-11-17
 Documents
Ch 10: Hacking Web Servers
 Education
Hacking and Securing iOS Applications Resources/Hacking an… · HACKING AND SECURING IOS APPLICATIONS -Satish B . ... Verifies the integrity of the app code at rest & runtime ...
 Documents
Information About Cisco IOS SLB · Information About Cisco IOS SLB ... By distributing user requests across a cluster of servers, IOS SLB optimizes responsiveness and system capacity,
 Documents
Hacking iOS on the Run: Using Cycript - Where The … · SESSION ID: Hacking iOS on the Run: Using Cycript . HTA-R04A . Sebastián Guerrero . Mobile Security Analyst . viaForensics
 Documents
Hacking from iOS 8 to iOS 9 - PUT.ASWho We Are Team Pangu is known for releasing jailbreak tools for iOS 7.1, iOS 8, and iOS 9 We have broad security research interests Our research
 Documents

Copyright © 2022 FDOCUMENTS