• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
Sergey Belov - NGinx Warhead
 

Sergey Belov - NGinx Warhead

on

  • 1,749 views

 

Statistics

Views

Total Views
1,749
Views on SlideShare
1,749
Embed Views
0

Actions

Likes
0
Downloads
2
Comments
0

0 Embeds 0

No embeds

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

    Sergey Belov - NGinx Warhead Sergey Belov - NGinx Warhead Presentation Transcript

    • Sergey Belov
    • • Pentester in Digital Security / ERPScan; • Writer (habrahabr.ru, “Xakep”); • CTF Player; • Bug bounty member (Google, Yandex); • bugscollector.com creator.
    • • Very easy • 0$ • Not mentioned in the wild
    • NGinx – reverse proxy
    • php-fpm Client Nginx Apache
    • attacker.com Client php-fpm Nginx Apache vuln.com ??? http server
    • Step 1 location / { proxy_pass http://vuln.com; proxy_set_header X-Real-IP $remote_addr; } }
    • Step 2    proxy_set_header Host “vuln.com"; sub_filter ‘vuln.com' ‘attacker.com'; sub_filter_once off;
    • Phishing
    • NGinx – tool for MitM/phishing?      + Identical design + Fully functional working + Logging all data (POST/GET) + Add custom JS/HTML - Another domain (DNS poising / router hacking, malware, evil apn config e.t.c.)
    • Pentest  Random exploit’s?  Change response data (rights of social networks apps)  Change apps swf -> java (exploit)  ???
    • DNS rebinding
    • • -Another domain • - Very unstable • + Can attack internal resources
    • Internal, not external!
    • C:UsersBeLove>ping www.ya.ru Обмен пакетами с ya.ru [87.250.250.203] с 32 байтами данных
    • Remove it from: • Pentester’s reports • Most famous security scanners
    • Thanks! demo: http://zn.sergeybelove.ru http://twitter.com/sergeybelove