Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Anton Lopanitsyn - Initial reconnaissance of web applications.

DC7499
November 10, 2018
Research
0
230

Anton Lopanitsyn - Initial reconnaissance of web applications.

Often, everything that is right in front of your eyes is being checked more meticulously than parts inaccessible to the average user. We are looking for hidden functionality of web applications for the subsequent search for vulnerabilities.

DC7499

November 10, 2018
Tweet

More Decks by DC7499

See All by DC7499
Sergey Sobko - Hackashop: Hackathon + Pentest + Workshop [RU]
defcon
0
350
Dmitry Sklyarov - Intel ME: Security keys Genealogy, Obfuscation and other Magic
defcon
0
200
Dmitry Volkov - Private messengers: without pain??
defcon
1
210
Andrey Skuratov and Sergey Migalin - DNS tunneling in 2018. What is that, and what to do with it?
defcon
1
170
Sergey Belov - Another side of Bug Bounty programs
defcon
0
220
Dmitry Sklyarov - Intel ME: Flash file system explained
defcon
0
340
Maxim Goryachiy & Mark Ermolov - Inside Intel Management Engine
defcon
0
410
Sergey Golovanov - Indecent Response 2018
defcon
0
330
Kupreev Oleg & Putin Vladimir - Your very own driver for the custom NVMe device from the scratch: reading of the flash memory of iPhone 7
defcon
1
430

Other Decks in Research

See All in Research
2023 東工大 情報通信系 研究室紹介 (すずかけ台) / [email protected], Tokyo Tech (Suzukakedai Campus) 2023
icttitech
0
5.1k
機械学習にもう一歩踏み込むための『最適輸送の理論とアルゴリズム』
joisino
3
640
Face Recognition @ ECCV2022
takarasawa_
1
840
場所参照表現と位置情報を紐付けるジオコーディングの概観と発展に向けての考察 / 言語処理学会第29回年次大会(NLP2023)
sorami
0
1.3k
CSC570 Lecture 03
javiergs
PRO
0
150
ChatGPTの国際的な動向と著作権・ガイドラインついて
otanet
0
540
RESEARCH Conference 2023/ユーザーに価値を届け続けるためのアジャイル開発とUXリサーチ
atamaplus
2
290
Introduction of NII S. Koyama's Lab (FY2023)
skoyamalab
0
460
最適輸送が遅すぎる(スライス法による解法)
joisino
2
1.5k
Win ratioとは何か?
shuntaros
0
810
自然言語処理による論文執筆支援
kuribayashi4
0
300
PAKDD2023 Tutorial 2: A Gentle Introduction to Technologies Behind Language Models and Recent Achievement in ChatGPT (Parts 3 and 4)
kyoun
6
930

Featured

See All Featured
Optimising Largest Contentful Paint
csswizardry
2
780
Keith and Marios Guide to Fast Websites
keithpitt
407
21k
Debugging Ruby Performance
tmm1
68
11k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
152
13k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
9
780
How GitHub (no longer) Works
holman
299
140k
Designing Dashboards & Data Visualisations in Web Apps
destraynor
225
50k
Optimizing for Happiness
mojombo
366
66k
Scaling GitHub
holman
453
140k
A Modern Web Designer's Workflow
chriscoyier
689
190k
Navigating Team Friction
lara
177
12k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
33
21k

Transcript

  1. Предварительная разведка
    веб-приложений
    Bo0oM

    View Slide

  2. subdomain enumeration
    • theharvester
    • recon-ng
    • aquatone
    • Sn1per
    • Massdns
    • Aquatone
    • Amass

    View Slide

  3. directory enumeration
    • Dirbuster
    • Dirsearch
    • Wfuzz
    • Hehdirb

    View Slide

  4. View Slide

  5. View Slide

  6. diff
    Length - 5
    Length - 5

    View Slide

  7. Расстояние Левенштейна

    View Slide

  8. SLIDE NAME

    View Slide

  9. Дерево DOM
    Document Object Model

    View Slide

  10. Обогащение словаря

    View Slide

  11. Обогащение словаря

    View Slide

  12. Обогащение словаря

    View Slide

  13. Обогащение словаря
    PARSE_JS = False:
    python3 ParamPP.py -u "https://vk.com/login"
    ['m', 'b', 'u', 'al’]
    PARSE_JS = True:
    python3 ParamPP.py -u "https://vk.com/login"
    ['b', 'm', 'al', 'async', 'u', 'ad_video']

    View Slide

  14. Ограничение веб-серверов

    View Slide

  15. Param-Pam-Pam
    https://github.com/Bo0oM/ParamPamPam
    #TODO
    • Json data
    • Keep-alive
    • Ченить-там-еще

    View Slide

  16. Param-miner

    View Slide

  17. Q?
    @i_bo0om
    @webpwn

    View Slide