Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
XSSER: From XSS to RCE 3.0
Search
Sponsored
·
Your Podcast. Everywhere. Effortlessly.
Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
→
Hans-Michael Varbaek
March 28, 2019
Technology
0
170
XSSER: From XSS to RCE 3.0
OWASP Copenhagen
Hans-Michael Varbaek
March 28, 2019
Tweet
Share
More Decks by Hans-Michael Varbaek
See All by Hans-Michael Varbaek
Attack & Defense Methods
varbaek
0
44
Attack and Defense Methods for Traffic Light Systems
varbaek
0
29
So you want to be a pentester?
varbaek
2
1.5k
From XSS to RCE 2.5 - Alt33c3
varbaek
0
200
XSSing Your Way to Shell
varbaek
2
2k
Botnets of the Web – How to Hijack One
varbaek
1
240
Other Decks in Technology
See All in Technology
22nd ACRi Webinar - NTT Kawahara-san's slide
nao_sumikawa
0
100
旅先で iPad + Neovim で iOS 開発・執筆した話
zozotech
PRO
0
100
データの整合性を保ちたいだけなんだ
shoheimitani
8
3.2k
プロポーザルに込める段取り八分
shoheimitani
1
630
Webhook best practices for rock solid and resilient deployments
glaforge
2
310
Greatest Disaster Hits in Web Performance
guaca
0
290
20260208_第66回 コンピュータビジョン勉強会
keiichiito1978
0
190
AIエージェントに必要なのはデータではなく文脈だった/ai-agent-context-graph-mybest
jonnojun
1
240
Amazon Bedrock Knowledge Basesチャンキング解説!
aoinoguchi
0
160
Oracle Base Database Service 技術詳細
oracle4engineer
PRO
15
93k
【Ubie】AIを活用した広告アセット「爆速」生成事例 | AI_Ops_Community_Vol.2
yoshiki_0316
1
120
マーケットプレイス版Oracle WebCenter Content For OCI
oracle4engineer
PRO
5
1.6k
Featured
See All Featured
Building the Perfect Custom Keyboard
takai
2
690
JAMstack: Web Apps at Ludicrous Speed - All Things Open 2022
reverentgeek
1
350
More Than Pixels: Becoming A User Experience Designer
marktimemedia
3
330
Breaking role norms: Why Content Design is so much more than writing copy - Taylor Woolridge
uxyall
0
170
Leveraging Curiosity to Care for An Aging Population
cassininazir
1
170
The untapped power of vector embeddings
frankvandijk
1
1.6k
Deep Space Network (abreviated)
tonyrice
0
64
Designing for Performance
lara
610
70k
Money Talks: Using Revenue to Get Sh*t Done
nikkihalliwell
0
150
A Soul's Torment
seathinner
5
2.3k
The Director’s Chair: Orchestrating AI for Truly Effective Learning
tmiket
1
99
We Analyzed 250 Million AI Search Results: Here's What I Found
joshbly
1
750
Transcript
XSSER: From XSS to RCE 3.0 OWASP Copenhagen Chapter 28
March 2019
About me ➢ ISP Red Team – Copenhagen ➢ Presented
at Black Hat Europe, Kiwicon, Hack in the Box, etc. ➢ Full-time security consultant career began in Sydney, Australia
Shodan: port:80
How many web servers globally? ➢ 85 million approximately (Shodan
– Port:80) How many of them run PHP? ➢ 8.1 million approximately (Shodan – PHP) However..
What about virtual hosting? ➢ 1.4 billion websites ➢ 232
million unique domains ➢ 27 million websites running WordPress That’s a lot more attack surface for adversaries (Netcraft March 2019 Survey)
Classic XSS Attacks ➢ Cookie Stealing ➢ Prevented by “HttpOnly”
flag ➢ Defacements ➢ Phishing ➢ Session Hijacking (e.g. BeEF, XSSER, etc.)
None
None
None
None
XSSER
XSSER What and why? ➢ Can automate XSS attacks to
obtain RCE ➢ Meant for educational purposes ➢ Fully open source and available on GitHub
Demo
References https://github.com/Varbaek/xsser https://shodan.io https://news.netcraft.com/archives/cat egory/web-server-survey/
Questions?
varbaek
nao_sumikawa
zozotech
shoheimitani
glaforge
guaca
keiichiito1978
jonnojun
aoinoguchi
oracle4engineer
yoshiki_0316
takai
reverentgeek
marktimemedia
uxyall
cassininazir
frankvandijk
tonyrice
lara
nikkihalliwell
seathinner
tmiket
joshbly
