Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Do you think you are secure?
Search
Jakub Gadkowski
April 07, 2016
Technology
0
93
Do you think you are secure?
Talk given during Emerce eRecruitment on April 7th 2016, with my co-speaker Gerard Arall.
Jakub Gadkowski
April 07, 2016
Tweet
Share
More Decks by Jakub Gadkowski
See All by Jakub Gadkowski
Software Architecture Anti-patterns
jakubgg
1
190
I want to be a Hacker v3.0
jakubgg
0
210
I want to be a hacker... but I only look good in a white hat v2.0
jakubgg
0
75
I want to be a hacker... but I only look good in a white hat
jakubgg
0
190
Other Decks in Technology
See All in Technology
Uniting Rust Servers and Clients through OpenAPI
ahl
0
430
layerx-0-to-1-product-development-in-compound-startups
shnjtk
1
520
すべてが #Zenoh になる
takasehideki
0
100
【Cyber-sec+】ログの森で出会ったCloudTrail との奇妙な旅
hssh2_bin
1
230
あなたの知らないバグバウンティの世界
eurekaberry
1
1.4k
新卒1年目がプロジェクトを進めるときにコケたポイント
ryunakayama
1
110
滑空スポーツ講習会2023 航空安全講習会 第4回 日常整備に役立ちそうな雑情報 / JSA Safety Seminar 2023 glider maintenance
jsaseminar
0
110
Automate your changelogs! Release Drafter
onenashev
PRO
2
410
調整さんの調整結果をカレンダーへ登録するGPTsを作った話
hrsano645
1
160
ChatGPTのLT会-メモソフトにChatGPT入れると結構便利
okada_fuutass
0
160
GitHub composite actions
hkusu
1
120
OCI Data Science Service 製品概要
oracle4engineer
PRO
0
110
Featured
See All Featured
Side Projects
sachag
451
41k
Product Roadmaps are Hard
iamctodd
43
9.6k
How To Stay Up To Date on Web Technology
chriscoyier
781
250k
Docker and Python
trallard
33
2.6k
No one is an island. Learnings from fostering a developers community.
thoeni
14
2k
The Art of Programming - Codeland 2020
erikaheidi
40
12k
Principles of Awesome APIs and How to Build Them.
keavy
119
16k
Fantastic passwords and where to find them - at NoRuKo
philnash
35
2.4k
Building Your Own Lightsaber
phodgson
97
5.6k
Large-scale JavaScript Application Architecture
addyosmani
501
110k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
111
35k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
28
5.9k
Transcript
Do you think you are secure?
Who are we?
Of course I am
None
Passwords
I changed all my passwords to “incorrect” So whenever I
forget, it will tell me “Your password is incorrect.”
Passwords
Passwords I’m about to tell you a secret
Passwords - common sense Image © 2015 BBC
Passwords Source: https://haveibeenpwned.com/
Weak Passwords Image © 2015 Carlaton White (Creative Commons BY-ND
2.0) https://www. flickr.com/photos/92054945@N08/
PIN
Encryption ndPmgSsX6jyMdnb4wfoG DPdxVBWvpTP1XE2m3cKp mriRHefThSqohygZO5Pu mmxqNxY0tIjlmySpYNSz CMZgl2bDBUjqoGmWefKK aTv8rPhiz6PzUHtyv8mx tgVzfFmzKeSSpOSQrUho Qm5v9eyq2wlGkycx5HaU fTWh5DbBeFVHD0aupOWi
ERTLn1XDxPBTQJScVJwg Hi Jakub, Below you will find an info on our new amazing product. I do not have to tell you that this is highly confidential. If this leaks we are in big trouble. Regards
Software
None
Vulnerabilities Operative System Vulnerabilities Microsoft Windows 7 538 Microsoft Windows
8 254 Microsoft Windows 10 84 Apple OS X 10.9 580 Apple OS X 10.10 282 Apple OS X 10.11 158 Ubuntu 13 81 Ubuntu 14 314 Ubuntu 15 137
Vulnerabilities
Mobiles
Browsers
I don’t care, I have an antivirus
Antivirus
Antivirus Reference: http://krebsonsecurity.com/2014/05/antivirus-is-dead-long-live-antivirus/
Antivirus
None
Antivirus - common sense
Physical access
Unlocked devices
Hacker USBs
USB Killer
Physical Access / Keys
Trust issues
LIST OF WI-FI’s I TRUST
Untrusted networks
Untrusted networks
HTTP Data Data
HTTPS
Untrusted networks
VPN
Sniffing around
Emerce Attendees
Emerce Attendees
Emerce Attendees
Emerce Attendees
Emerce Attendees
Pentests Unvalidated Redirects and Forwards
Thank you!
Question time