Your SlideShare is downloading. ×
Bogdan Alecu: Playing buggy Codecamp
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

Bogdan Alecu: Playing buggy Codecamp

383
views

Published on

Codecamp Iasi 2013 - Playing buggy …

Codecamp Iasi 2013 - Playing buggy
Bogdan Alecu presents some real world examples of bugs, specially the ones related to mobile security
For more info go to www.m-sec.net

Published in: Technology

0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
383
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
4
Comments
0
Likes
1
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. Playing boogie buggyBogdan ALECU
  • 2. Topics▪ About me▪ The buggy world▪ Where does your data go?Bogdan ALECU
  • 3. About meBogdan ALECU▪ Independent security researcher▪ Sysadmin @ LEVI9▪ Passionate about security, specially when it’s related tomobile devices, CISSP, CEH, CISA,CCSP▪ #infosec conferences: DeepSec, DefCamp, EUSecWest▪ Started with NetMonitor, continued with VoIP and finallyGSM networks / mobile phones▪ @msecnet / www.m-sec.net / alecu@m-sec.net
  • 4. The buggy worldBogdan ALECU▪Developers▪Testers▪Customers▪How do you test?▪But is it enough?
  • 5. The buggy worldBogdan ALECUREADY FOR SOMEREAL LIFE EXAMPLES?
  • 6. The buggy worldBogdan ALECU
  • 7. The buggy worldBogdan ALECU
  • 8. The buggy worldBogdan ALECU
  • 9. The buggy worldBogdan ALECU© Prisacaru Anatolie
  • 10. The buggy worldBogdan ALECUNEVER trust the user’s input!
  • 11. The buggy worldBogdan ALECU
  • 12. The buggy worldBogdan ALECUNEVER trust the user’s input!
  • 13. The buggy worldBogdan ALECU
  • 14. The buggy worldBogdan ALECUNEVER trust the user’s input!
  • 15. The buggy worldBogdan ALECU
  • 16. The buggy worldBogdan ALECU▪ 20K application▪ Two factor authentication▪ ACL IP▪ User authenticated automatically if …… coming from the right internal IP
  • 17. The buggy worldBogdan ALECUPLEASE CHECK YOURERS
  • 18. The buggy worldBogdan ALECU▪How was the IP address checked?
  • 19. The buggy worldBogdan ALECU▪ X-FORWARDED-FOR HTTP header
  • 20. The buggy worldBogdan ALECU▪ Modify Headers – Firefox Extension▪ https://addons.mozilla.org/en-US/firefox/addon/modify-headers/
  • 21. The buggy worldBogdan ALECU
  • 22. The buggy worldBogdan ALECU▪ Try accessing the website while pretendingto be browsing from your mobile device▪ You would be surprised of the instantaccess you get▪ No luck? Try Googlebot!▪ If your log shows a sensitive access beingmade by GoogleBot, will you worry ?
  • 23. The buggy worldBogdan ALECU▪ Those damn headers …DEMO time
  • 24. The buggy worldBogdan ALECU
  • 25. The buggy worldBogdan ALECU▪ Having the right headers (security byobscurity) can open a lot of doors
  • 26. The buggy worldBogdan ALECU▪ Those damn headers … AGAIN!Yet another demo
  • 27. The buggy worldBogdan ALECU
  • 28. The buggy worldBogdan ALECU▪ Don’t bullshit me: admit your weakness!
  • 29. The buggy worldBogdan ALECU▪Implementation gone wild▪ How many of you use the Internet onyour mobile device?▪ Do you know what DNS is?
  • 30. The buggy worldBogdan ALECUSetup a VPN server on port 53, UDP (DNSport)… and connect to your server… pass the traffic to the InternetUNLIMITEDMOBILE DATA TRAFFIC!
  • 31. The buggy worldBogdan ALECU
  • 32. The buggy worldBogdan ALECU▪ The standard itself may have issues
  • 33. The buggy worldBogdan ALECU▪SIM Toolkit
  • 34. The buggy worldBogdan ALECU▪SIM Toolkit
  • 35. The buggy worldBogdan ALECU▪ SIM Toolkit▪ Vulnerability discovered in June 2010▪ Reported on August 26 2010▪ CVE-2010-3612
  • 36. The buggy worldBogdan ALECU
  • 37. The buggy worldBogdan ALECU
  • 38. The buggy worldBogdan ALECU▪ SIM Toolkit… and the demo
  • 39. The buggy worldBogdan ALECU▪ FIX THIS NOW!
  • 40. Where does your data go?Bogdan ALECU
  • 41. Where does your data go?Bogdan ALECU▪Is the data securely transferred?▪What info is the app sending?▪When does it sends the info?▪Does the app accept any certificate?▪What is it stored locally?
  • 42. Where does your data go?Bogdan ALECU▪Mallory gatewayhttp://intrepidusgroup.com/insight/2010/12/mallory-and-me-setting-up-a-mobile-mallory-gateway/
  • 43. Where does your data go?Bogdan ALECU▪ Short demo
  • 44. Where does your data go?Bogdan ALECU
  • 45. Call to actionBogdan ALECU▪ Don’t rely on thing that most users have noidea how to check if your app is secure.You might meet someone like me and itwill get ugly ▪ Write your code in a secure way▪ Testers: learn how to really tests mobileapps. It’s not all about the usageexperience!
  • 46. The end?!?Bogdan ALECUThank you all!Don’t forget about feedbackformswww.m-sec.net / @msecnet

×