Inglourious Hackerds: Targeting Web Clients
- Type
- Paper
- Tags
- web application
- Authors
- Laurent Oudot
- Event
- Black Hat DC 2011
- Indexed on
- Mar 27, 2013
- URL
- https://media.blackhat.com/bh-dc-11/Oudot/BlackHat_DC_2011_Oudot_Inglourious-Hackerds-wp.pdf
- File name
- BlackHat_DC_2011_Oudot_Inglourious-Hackerds-wp.pdf
- File size
- 1019.6 KB
- MD5
- d72389090e719a5e7a9fc80b0242205e
- SHA1
- 12dc8fdab8e73f0528083f3da9553010f008300d
This talk will propose to look at technical security issues related to multiple Internet Web Clients. While such tools are used to crawl the Net and retrieve information, there might exist many scenarios where evil attackers can abuse them. By studying the protocols (HTTP, etc), and by doing some kind of fuzzing operations, we will show how TEHTRI-Security was able to find multiple security issues on many handled devices and workstations. The offensive concepts explained during this talk, will show many different tricks, like how evil attackers can become anonymous and create cover channels based on web clients, or like how to own or crash most famous current web clients and devices.
About us
Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.
Statistics
Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.
Contribute
To support this site and keep it alive, you can click on the buttons below. Any help is really appreciated! This service is provided for free, but real money is needed to pay bills.
