Is your network

h@Cking pr00f?

Malik Mesellem

Malik Mesellem

Ethical Hacker

MME BVBA

° 2010

Security Audits

& Training

Objective

approach

Focus is

to advise

No-nonsense

mentality

What are we afraid of?

Buffer

Overflows

DoS

Port

Scans

Trojans

Spoofing

We all have

firewalls ;)

(since 1990)

I don’t think so…

Old skool

attacks✝

So WTH(ack) is the problem?

And who is

the enemy?

A new wave of client-side threats…

+ Complex application-level attacks

+ Complex application-level attacks

Your secure (?) infrastructure

Web server

Client

DC

App server

Firewall

Hacker’s attack plan?

ATTACK

the border

= web apps

Application-level attack

SQL injection

SELECT * FROM

… WHERE …

‘ OR 1=1--

Web server DOWN ;(

Hacker’s attack plan?

ATTACK

the weakest

= humans

Client-side attack

Spear phishing

email campaign

0-day

client-side

exploits

CVE-2014-0515

Client computer DOWN ;(

You’ve just lost 2 assets!

They are inside

the network…

Pivot, seek,

and pwn!

Network-level attack

Buffer overflow

Issues in OS or

application

Application server DOWN ;(

You’ve just lost 3 assets!

Keys to your

castle…

Now they go for the GOLD!

Pass-the-Hash

Token

impersonation

GAME OVER

You’ve lost

everything $$$

GAME OVER

You’ve lost

everything $$$

OMG… we definitely need heroes!

Secure email

gateway

UTM firewall

Endpoint AV

Mobile

control

Vulnerability & patch

management

Two-factor

authentication

Web application

firewall

Server

security

IDS/IPS

Security audits

Training

Two-factor

authentication

Web application

firewall

Server

security

IDS/IPS

What if…

Malik Mesellem

Q&A?

Thank you!

Is your network

h@Cking pr00f?