0wn1ng the Enterprise 2.0 - Enforcer Network Security
Transcript
0wn1ng the Enterprise 2.0 - Enforcer Network Security
0wn1ng the Enterprise 2.0 relatore: Igor Falcomatà nuove tipologie di attacco alle reti aziendali nell'epoca dei social network e del web 2.0 Broadband Business Forum 25 nov 09 - Roma free advertising > 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma http://creativecommons.org/licenses/by-sa/2.0/it/deed.it © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 1 about: aka “koba” • attività professionale: •analisi delle vulnerabilità e penetration testing •security consulting •formazione • altro: •sikurezza.org •(Er|bz)lug Relatore: Igor Falcomatà Chief Technical Officer [email protected] 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 2 0wn1ng the Enterprise 1.0 in una Internet remota, molti anni fa .. web server mail server db server ext. router file server utente remoto dep. server utente remoto terminale desktop desktop utente remoto wan router terminale dep. server desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 3 Discovery... 0wn1ng the Enterprise 1.0 web server mail server db server Mr. Malicious 1.0 ext. router file server dep. server utente remoto terminale desktop desktop utente remoto wan router terminale dep. server desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 4 Discovery... 0wn1ng the Enterprise 1.0 web server mail server db server Mr. Malicious 1.0 ext. router file server dep. server utente remoto terminale desktop desktop utente remoto wan router terminale dep. server desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 5 Discovery... 0wn1ng the Enterprise 1.0 web server mail server db server Mr. Malicious 1.0 ext. router file server dep. server utente remoto terminale desktop desktop utente remoto wan router terminale dep. server desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 6 Exploiting... 0wn1ng the Enterprise 1.0 web server mail server db server Mr. Malicious 1.0 ext. router file server dep. server utente remoto terminale desktop desktop utente remoto wan router terminale dep. server desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 7 Exploiting... 0wn1ng the Enterprise 1.0 web server mail server db server Mr. Malicious 1.0 ext. router file server dep. server utente remoto terminale desktop desktop utente remoto wan router terminale dep. server desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 8 0wn1ng the Enterprise 1.5 web applications, WiFi, VPNs, ... web server mail server db server ext. router file server utente remoto firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 9 wifi user 0wn1ng the Enterprise 1.5 web applications, WiFi, VPNs, ... web server mail server db server ext. router file server utente remoto firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 10 wifi user Discovery... 0wn1ng the Enterprise 1.5 web server mail server db server Mr. Malicious 1.5 ext. router file server firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 11 wifi user Discovery... 0wn1ng the Enterprise 1.5 web server mail server db server Mr. Malicious 1.5 ext. router file server firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 12 wifi user Discovery... 0wn1ng the Enterprise 1.5 web server mail server db server Mr. Malicious 1.5 ext. router file server firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 13 wifi user Exploiting... 0wn1ng the Enterprise 1.5 1.0 web server mail server db server Mr. Malicious 1.5 ext. router file server firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 14 wifi user Exploiting... 0wn1ng the Enterprise 1.5 1.0 web server mail server db server Mr. Malicious 1.5 ext. router file server firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 15 wifi user 0wn1ng the Enterprise 2.0 0wn1ng the Enterprise 2.0 web server mail server db server Mr. Malicious 2.0 ext. router file server firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 16 wifi user Discovery... see mom.. no direct traffic.. web server mail server db server Mr. Malicious 2.0 ext. router file server firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 17 wifi user Discovery... 0wn1ng the Enterprise 2.0 web server mail server db server Mr. Malicious 2.0 ext. router file server firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 18 wifi user Exploiting... 0wn1ng the Enterprise 2.0 web server 3rd party mail server db server Mr. Malicious 2.0 ext. router file server firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 19 wifi user Exploiting... 0wn1ng the Enterprise 2.0 web server 3rd party mail server db server Mr. Malicious 2.0 ext. router file server firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 20 wifi user Social engineering 2.0 img src: http://bits.blogs.nytimes.com/2007/10/30/bill-gates-has-joined-facebook-he-has-friends/ 3rd party Mr. Malicious 2.0 vittima Hey, sono Bill, il collega di Canicattì... ti ricordi? Hey Bill.. come va? sei ancora al marketing? ... 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 21 Phishing ...non solo verso siti di banking 3rd party Mr. Malicious 2.0 vittima 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 22 Tinyurl & co.. ..come offuscare un link con un semplice click 3rd party Mr. Malicious 2.0 vittima 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 23 un semplice XSS? http://www.bindshell.net/tools/beef/ 3rd party Mr. Malicious 2.0 vittima 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 24 xss-proxy http://xss-proxy.sourceforge.net/ 3rd party Mr. Malicious 2.0 vittima 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 25 xss shell http://labs.portcullis.co.uk/application/xssshell 3rd party Mr. Malicious 2.0 vittima 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 26 Exploiting... the good ol'way.. web server 3rd party mail server db server Mr. Malicious 2.0 ext. router file server firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 27 wifi user Exploiting... messenger/browser/clients 0 days.. 3rd party Mr. Malicious 2.0 vittima 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 28 Command & Conquer “Welcome, master!” web server 3rd party mail server db server Mr. Malicious 2.0 ext. router file server firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 29 wifi user Command & Conquer http://voices.washingtonpost.com/securityfix/assets_c/2009/05/hackdpc1.html web server 3rd party mail server db server Mr. Malicious 2.0 ext. router file server firewall dep. server access point utente remoto desktop desktop utente remoto desktop wifi user VPN gw dep. server desktop desktop 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 30 wifi user 0wn1ng the Enterprise 2.0 relatore: Igor Falcomatà grazie Broadband Business Forum 25 nov 09 - Roma free advertising > 0wn1ng the Enterprise 2.0 – Broadband Business Forum – 25 nov 09 – Roma http://creativecommons.org/licenses/by-sa/2.0/it/deed.it © Igor Falcomatà <[email protected]>, alcuni diritti riservati: http://creativecommons.org/licenses/by-sa/2.0/it/deed.it - Pagina 31