Saturday, 5 November 2011

Week8

Security Randomness

DLL Preloading AKA DLL Hijacking, we talked about the steps on how to do an exploit:

-Create 'Evil Twin' of DLL
-Place DLL with binary
-Execute binary

Could load from a remote location (WebDav, SMB Share), but microsoft released KB2264107 which prevents DLLs from loading from remote locations

We also looked at a very useful tool called Firesheep. Its a firefox extension SideJacking, Harvests credentials for twitter, google, facebook, flickr.

Also talked about Pass-the-Hash.

No comments:

Post a Comment