.

Question!

<<

KrisTeason

User avatar

Hero Member
Hero Member

Posts: 515

Joined: Sat Sep 08, 2007 7:48 pm

Location: /dev/null

Post Sun Feb 03, 2008 11:40 pm

Question!

Sup EH-Network, Hope Everyone's Doing Well, How Bout That Super Bowl Eh.
Anyway, Just Trying To Spark A Conversation, I Was Wondering, What Is Your Personal Favorite Client Side Exploit & Why?
Last edited by KrisTeason on Sun Feb 03, 2008 11:44 pm, edited 1 time in total.
eCPPT (Silver/Gold), eWPT, GSEC, GISP, GCIH, OSCP, OSWP
<<

jimbob

Post Mon Feb 04, 2008 5:34 am

Re: Question!

I don't have a specific favourite, whatever works is good with me :-)

The rise in the popularity of client side exploits, particularly web browser exploits, was that it debunked the age-old reasoning that you cannot get 0wned simply by looking at an email/web page/other data source. It was likely that this thinking contributed to proliferation of client side flaws.

The lesson? Never trust the data. Code like all data coming in is potential malicious and should be treated as suspect. Or is the lesson don't let the world's most popular web client rended your email?

Jimbob
<<

venom77

User avatar

Hero Member
Hero Member

Posts: 1905

Joined: Mon Dec 11, 2006 3:23 pm

Post Mon Feb 04, 2008 10:27 am

Re: Question!

Yeah, I'd have to agree with jimbob. No particular favorite, just whatever can get the job done for that target.
<<

KrisTeason

User avatar

Hero Member
Hero Member

Posts: 515

Joined: Sat Sep 08, 2007 7:48 pm

Location: /dev/null

Post Mon Feb 04, 2008 4:42 pm

Re: Question!

Ight Thanks For The Feedback.
eCPPT (Silver/Gold), eWPT, GSEC, GISP, GCIH, OSCP, OSWP
<<

Kev

Sr. Member
Sr. Member

Posts: 428

Joined: Sat Sep 29, 2007 12:26 pm

Post Mon Feb 04, 2008 6:38 pm

Re: Question!

With out a doubt my favorite client side attack is web browser exploits. Many computer savvy people know you should not download attachments but most feel safe to go and browse. If you can make someone feel like you are credible, say something like getting  them to click on the link in your email that might look like a page on ebay of something you are selling, etc... you are going to get in if they are vulnerable to the exploit.
<<

KrisTeason

User avatar

Hero Member
Hero Member

Posts: 515

Joined: Sat Sep 08, 2007 7:48 pm

Location: /dev/null

Post Mon Feb 04, 2008 6:47 pm

Re: Question!

Thanks For The Info Kev. Now I Was Wondering, What's Your Favorite Client Side Exploit Offered In Metasploit? (Ex: ms06_001_wmf_setabortproc)
eCPPT (Silver/Gold), eWPT, GSEC, GISP, GCIH, OSCP, OSWP
<<

Kev

Sr. Member
Sr. Member

Posts: 428

Joined: Sat Sep 29, 2007 12:26 pm

Post Mon Feb 04, 2008 10:26 pm

Re: Question!

My favorite metaspolit exploit? I really respect the metasploit project and in many ways I thinks it an awesome piece of code, but I rarely use it on a pentest.  In fact, all most never.  I still prefer to compile my own exploits and launch them.  This is still the way of the hard core hacker and this is the way exploits are traded. I believe this is a must for the serious hacker.  Say for instance someone  sends you some new 0-day and you want to use it? But guess what, its not part of metaspoit? What do you do then? 
Last edited by Kev on Mon Feb 04, 2008 10:29 pm, edited 1 time in total.
<<

KrisTeason

User avatar

Hero Member
Hero Member

Posts: 515

Joined: Sat Sep 08, 2007 7:48 pm

Location: /dev/null

Post Tue Feb 05, 2008 1:25 am

Re: Question!

True True. Gotta Love That Its Free Too. Unlike Canvas, Core Impact, ect. I've never really looked into exploit development personally though, I will for sure sometime in the future. Was Just Asking Folks What Their Favorite Client Side Exploit In Metasploit Was.
eCPPT (Silver/Gold), eWPT, GSEC, GISP, GCIH, OSCP, OSWP

Return to Network Pen Testing

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software