|
Web Services: Enumeration and Profiling
|
|
Hits: 0 |
|
Date added: 08/05/2005 |
|
Web services assessment can begin with a corporate name or some other such bit of information. This simple hint offers a wealth of information that needs to be unearthed. Focus first on locating single or multiple access points for a particular corporate. The methodology, which includes web services footprinting, discovery and search, is described in another paper (http://packetstormsecurity.org/papers/web/Defense_using_mod_security.pdf). Once an access point for a web service is uncovered, the next obvious step is to extract information from it.
Web services are deployed to invoke remote calls over HTTP/HTTPS. To make calls such as these, requires that information about the calls be shared with the end client. In the past, during the days of CORBA, developers used to share IDL (Interface Definition Language) files providing the required information over the network. Now, in the days of web services this has changed to WSDL (Web Services Definition Language). WSDL is a major source for information and can help in the enumeration process. We shall go over the enumeration process in subsequent sections. |
|
|
|
|
|
|
Stealing Passwords Via Browser Refresh
|
|
Hits: 0 |
|
Date added: 08/05/2005 |
|
Browsers have the ability to maintain a recent record of pages that were visited by a user. The back and forward button on browsers use this functionality to display the pages recently browsed. In addition browsers also keep track of variables that were POSTed to the server while fetching the page.
The refresh feature immensely increases the functionality of the browsers and makes it convenient for users. Moreover it is done transparently so that users do not need to be aware that the variables are automatically posted to the server. All that a user has to do is to click on the “yes” button of a dialog box prompted by the browser before re-posting. This lets a user view the same pages that he had visited before.
Considering functionality, this is a very powerful feature but it can also be used to capture important user credentials from a browser. Here the inherent feature of the browser to store POST variables is exploited to gain access to important user credentials.
We will also be discussing another variation of the attack. These attacks are very simple to execute and require medium level of skills. For each variation of the attack we have proposed the solution used to address the issue. |
|
|
|
|
|
|
Instant Paranoia: Instant Messenger Security
|
|
Hits: 0 |
|
Date added: 08/05/2005 |
|
There are many instant messaging systems with different features and capabilities. Their security properties are also different and it’s obvious that one are more secure than others. We’ll take a look at the major players on the IM market, see what vulnerabilities they have and using which of them you must be the most paranoid.
This article was a contribution from a popular European magazine called 'Hackin9'. For further information, please go to http://www.hakin9.org |
|
|
|
|
|
|
Building and Implementing a Successful Informat...
|
|
Hits: 0 |
|
Date added: 08/16/2005 |
|
Building and Implementing a Successful Information Security Policy |
|
|
|
|
|
|
Sending IPv6 Packets to Check Firewall Rules
|
|
Hits: 0 |
|
Date added: 08/23/2005 |
|
Looks at how firewall rules can be tested by sending specifically configured (IPv6) packets via the multifunctional “Netwox” utility. |
|
|
|
