Upgrade to Pro — share decks privately, control downloads, hide ads and more …

CVE Hunting by @c0nqu3ror

Owasp
September 11, 2021
Technology
0
110

CVE Hunting by @c0nqu3ror

Owasp

September 11, 2021
Tweet

More Decks by Owasp

See All by Owasp
Hacking & Securing iOS Application for beginners
dkte
0
110
Attacking Thick Client Application by @j33n1k4
dkte
0
540
Pentesting API TOP 10 by @vk_tushar
dkte
0
220
Offensive Analysis of Android Application OWASP DKTE
dkte
0
170

Other Decks in Technology

See All in Technology
地理空間データ可視化・解析・活用ソリューション Pacific Spatial Solutions (PSS)
pacificspatialsolutions
0
260
ココがすごいぜ!Playwright Component Test
rakus_fe
0
120
Meta Quest 3 で動く桜マシマシ WebXR アプリを IBM Cloud Code Engine と Babylon.js で作った話
1ftseabass
PRO
0
120
チームでロジカルシンキングに改めて向き合っている話 〜学習環境と実践⽅法〜
sansantech
PRO
3
2.4k
MySQL の SQL クエリチューニングの要所を掴む勉強会
andpad
2
6.3k
VSCodeの拡張機能を作っている話
ebarakazuhiro
1
390
web-application-security
matsuihidetoshi
0
170
データベース02: データベースの概念
trycycle
0
160
プロトタイピングによる不確実性の低減 / Reducing Uncertainty through Prototyping
ohbarye
5
380
AWSに詳しくない人でも始められるコスト最適化ガイド
yuhta28
1
230
Kernel MemoryでAzure OpenAI Serviceとお手軽データソース連携
mitsuzono
1
250
JAWS-UG Bedrock Claude Night
yamahiro
3
590

Featured

See All Featured
Web development in the modern age
philhawksworth
202
10k
Scaling GitHub
holman
457
140k
A Tale of Four Properties
chriscoyier
151
22k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
14
1.5k
Let's Do A Bunch of Simple Stuff to Make Websites Faster
chriscoyier
501
140k
Done Done
chrislema
178
15k
We Have a Design System, Now What?
morganepeng
43
6.7k
Building a Scalable Design System with Sketch
lauravandoore
456
32k
Typedesign – Prime Four
hannesfritz
36
2.1k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
25
2.3k
StorybookのUI Testing Handbookを読んだ
zakiyama
13
4.6k
Fireside Chat
paigeccino
21
2.6k

Transcript

  1. Getting Your First CVE OWASP DKTE

  2. Whoami? • I am Suraj Bhosale and I go online

    by the alias @c0nqu3ror • Application Security Mentor @eClinicalWorks Pvt Ltd • Bug hunter @hackerone @synack • I focus on Web application, API and Network VAPT.

  3. Agenda • CVE Overview • How to Get CVE IDs

    • Approach • Hints for CVE Hunting • Questions and Answers

  4. CVE Overview • Common Vulnerabilities and Exposures (CVE) is a

    database of publicly disclosed information security issues. • CVE provides a convenient, reliable way for vendors, enterprises, and all other interested parties to exchange information about cyber security issues. • Enterprises typically use CVE, and corresponding CVSS scores, for planning and prioritization in their vulnerability management programs. Example CVE ID : CVE-2021-28294

  5. How to Get CVE IDs • You have identified a

    new or previously unassigned vulnerability in any product. • You have attempted to contact the vendor/developer of the affected product. 1. If the vendor is a CNA: they will assign the CVE ID for you. 2. If the vendor is not a CNA: to verify whether the issue has already been reported or if another CVE ID has already been assigned for the issue. https://cveform.mitre.org/

  6. How to Get CVE IDs • If you are working

    with a Coordination Center (like CERT/PSIRT), they will direct you to contact CVE at the right time. • The vulnerability does not have to be public before you request a CVE ID, but it does need to be public to be included in the CVE List.

  7. Approach • Find a vulnerability in a product. • Request

    to Vendor with Responsible Disclosure. • Publish your exploit on your blog or by sending an email to [email protected] (exploit-db) • Share the published link to CVE Mitre. • Take a follow-up after 48 hrs.

  8. Hints For CVE Hunting • Content Management System(CMS) 1) Wordpress

    2) Joomla 3) Drupal 4) Magento (e-commerce) • Product Web Portal(Wifi router, Network Firewall etc) • Finding products on exploit-db • Finding products on CVE Mitre.

  9. Hints For CVE Hunting • sourcecodester.com • phpgurukul.com

  10. Question & Answer

  11. None