Steph Cliche, profile picture
Uploaded bySteph Cliche
364 views

Penetration document format slides

Embed presentation

Download to read offline
Didier@DidierStevens.com Penetration Document Format
Didier@DidierStevens.com
Didier@DidierStevens.com
Didier@DidierStevens.com Identification and Analysis
Didier@DidierStevens.com
Didier@DidierStevens.com PDFiD 0.0.9 hello-world.pdf PDF Header: %PDF-1.1 obj 7 endobj 7 stream 1 endstream 1 xref 1 trailer 1 startxref 1 /Page 1 /Encrypt 0 /ObjStm 0 /JS 0 /JavaScript 0 /AA 0 /OpenAction 0 /AcroForm 0 /JBIG2Decode 0 /RichMedia 0 /Colors > 2^24 0 PDFiD
Didier@DidierStevens.com /Name Obfuscation
Didier@DidierStevens.com PDFiD Demo
Didier@DidierStevens.com http://www.Virustotal.com
Didier@DidierStevens.com
Didier@DidierStevens.com http://blog.rootshell.be
Didier@DidierStevens.com In-The-Wild PDF
Didier@DidierStevens.com PoC Pure ASCII PDF
Didier@DidierStevens.com pdf-parser Demo
Didier@DidierStevens.com Protection
Didier@DidierStevens.com Foxit Reader
Didier@DidierStevens.com Sumatra PDF
Didier@DidierStevens.com Know Your Enemy ...
Didier@DidierStevens.com Disable JavaScript?
Didier@DidierStevens.com … Find His Achilles Heel
Didier@DidierStevens.com Access Tokens
Didier@DidierStevens.com Use Restricted Tokens ● Windows >= Vista + UAC ● DropMyRights ● StripMyRights ● SAFER SRP
Didier@DidierStevens.com Restricted Token in Action
Didier@DidierStevens.com Disclosure CVE-2009-2979
Didier@DidierStevens.com XML-Bomb in Metadata
Didier@DidierStevens.com Questions? And hopefully some answers...
Didier@DidierStevens.com Thank you http://blog.DidierStevens.com

More Related Content

PDF
Promart corp ppt feb 2013 changes made
byPromart Retail India Pvt. Ltd.
 
PDF
Tempo October 2014
byTempoplanet
 
PDF
CT-2085B EUR WIFI 2.4ghz 5ghz 3.5gz wimax cdam gsm 2g 3g 4g 8 antennas 18w br...
byShop-WiFi - Wireless RF Technology R&R Group Jammers4u
 
PPTX
10. jesús en jerusalén
byA L
 
DOCX
2.isi materi
byAnnisak QC
 
PDF
SCA Group Brief February 2013 - Access (Scaffold and Rope Access), Containmen...
byClaudine Cross
 
PPT
Johnanna adm
byjohanna1886
 
PDF
Airtherm product range
byAirtherm Engineering
 
Promart corp ppt feb 2013 changes made
byPromart Retail India Pvt. Ltd.
 
Tempo October 2014
byTempoplanet
 
CT-2085B EUR WIFI 2.4ghz 5ghz 3.5gz wimax cdam gsm 2g 3g 4g 8 antennas 18w br...
byShop-WiFi - Wireless RF Technology R&R Group Jammers4u
 
10. jesús en jerusalén
byA L
 
2.isi materi
byAnnisak QC
 
SCA Group Brief February 2013 - Access (Scaffold and Rope Access), Containmen...
byClaudine Cross
 
Johnanna adm
byjohanna1886
 
Airtherm product range
byAirtherm Engineering
 

Viewers also liked

PDF
flue dilution solution
byAirtherm Engineering
 
PDF
The busy author's guide to popularity and profit on pinterest
byBestsellerSociety
 
PDF
Spyddr
bySteph Cliche
 
PPTX
8. jesús mostraba simpatía
byA L
 
PPTX
2. crisis en el edén
byA L
 
PDF
WordPress 3.6 New Features
bymasmanx
 
PPTX
Social Media for Business
byDeborah Deras, M.S., ALSP
 
PDF
Велопрокат в парке "Сокольники"
byEvent-agency C4group
 
PDF
Chimney & Flue Systems MF Brocure
byAirtherm Engineering
 
PPT
Rachel Fullmer-portfolio
byskeez0526
 
PDF
76216 99253-1-pb
byRolando Calle
 
PDF
Plafons colonies la sinia
bymeganuke94
 
PPTX
12. los últimos días de jesús
byA L
 
PPSX
Coal train fact_check
byBentonFranklin
 
flue dilution solution
byAirtherm Engineering
 
The busy author's guide to popularity and profit on pinterest
byBestsellerSociety
 
Spyddr
bySteph Cliche
 
8. jesús mostraba simpatía
byA L
 
2. crisis en el edén
byA L
 
WordPress 3.6 New Features
bymasmanx
 
Social Media for Business
byDeborah Deras, M.S., ALSP
 
Велопрокат в парке "Сокольники"
byEvent-agency C4group
 
Chimney & Flue Systems MF Brocure
byAirtherm Engineering
 
Rachel Fullmer-portfolio
byskeez0526
 
76216 99253-1-pb
byRolando Calle
 
Plafons colonies la sinia
bymeganuke94
 
12. los últimos días de jesús
byA L
 
Coal train fact_check
byBentonFranklin
 

More from Steph Cliche

PDF
7 1-system plus-evolution_spares_eng_6.0
bySteph Cliche
 
PDF
013 50001-001 spy-elite_operators_manual_rev_e
bySteph Cliche
 
PDF
718001 000 en
bySteph Cliche
 
PDF
Satellite hacking
bySteph Cliche
 
PDF
Ieee project-2014-2015-context-based-access-control-systems
bySteph Cliche
 
PDF
Le petit livre_du_hacker_2013
bySteph Cliche
 
PDF
Spy pack
bySteph Cliche
 
PDF
Future war
bySteph Cliche
 
PDF
2010 12-03 a-lawyers_guidetodata
bySteph Cliche
 
PDF
09 09 2014
bySteph Cliche
 
PDF
Hack.lu 09 ip-morph
bySteph Cliche
 
PDF
12
bySteph Cliche
 
PDF
Sat howto
bySteph Cliche
 
PDF
Public wifi
bySteph Cliche
 
PDF
Safes locking device-_mechanical_locks_versus_electronic_locks
bySteph Cliche
 
PDF
Tmplab hostile wrt-5-hacklu
bySteph Cliche
 
PDF
Guardi final report
bySteph Cliche
 
PDF
Sc2014 proceedings
bySteph Cliche
 
PDF
Ieee interference-measurements-802.11n
bySteph Cliche
 
PDF
Global maritime-security
bySteph Cliche
 
7 1-system plus-evolution_spares_eng_6.0
bySteph Cliche
 
013 50001-001 spy-elite_operators_manual_rev_e
bySteph Cliche
 
718001 000 en
bySteph Cliche
 
Satellite hacking
bySteph Cliche
 
Ieee project-2014-2015-context-based-access-control-systems
bySteph Cliche
 
Le petit livre_du_hacker_2013
bySteph Cliche
 
Spy pack
bySteph Cliche
 
Future war
bySteph Cliche
 
2010 12-03 a-lawyers_guidetodata
bySteph Cliche
 
09 09 2014
bySteph Cliche
 
Hack.lu 09 ip-morph
bySteph Cliche
 
12
bySteph Cliche
 
Sat howto
bySteph Cliche
 
Public wifi
bySteph Cliche
 
Safes locking device-_mechanical_locks_versus_electronic_locks
bySteph Cliche
 
Tmplab hostile wrt-5-hacklu
bySteph Cliche
 
Guardi final report
bySteph Cliche
 
Sc2014 proceedings
bySteph Cliche
 
Ieee interference-measurements-802.11n
bySteph Cliche
 
Global maritime-security
bySteph Cliche
 

Penetration document format slides