Technique, Tool and Lecture #5

Technique:

Quick and Easy Bypass for Tomcat 8 on Windows

https://x.x.x.x/WEB-INF/web.xml -> 403 Forbidden
https://x.x.x.x/./WEB-INF/web.xml -> 403 Forbidden
https://x.x.x.x/.//WEB-INF/web.xml -> 200 OK

Haven’t had a chance to use this yet, but I’m sure I will soon

Source

Tool:

Karma

So awesome! Lets you search by username, domain or password.

For example I can search by username “gainsec” or “@gainsec.com” or “passwordforgainsec”

I’ve used this a bunch of times to find accounts that belong to the same person/organization even if they aren’t similar. Password reuse is bad! Their database isn’t especially huge but big enough to run things through. Especially if you get a hit in dehashed.

Link

Lecture:

Defcon 19: Don’t Drop the SOAP: Real World Web Service Testing for Web Hackers

Lots of great information for attacking Β Simple Object Access Protocol (SOAP)!

Link

Check out all the entries of this series!

END TRANSMISSION

Leave a Reply