DLL Preloading AKA DLL Hijacking, we talked about the steps on how to do an exploit:
-Create 'Evil Twin' of DLL
-Place DLL with binary
-Execute binary
Could load from a remote location (WebDav, SMB Share), but microsoft released KB2264107 which prevents DLLs from loading from remote locations
We also looked at a very useful tool called Firesheep. Its a firefox extension SideJacking, Harvests credentials for twitter, google, facebook, flickr.
Also talked about Pass-the-Hash.
No comments:
Post a Comment