11
Christopher M. Shields r00t0v3rr1d3 Ma1hew M. Toussain 0sm0s1z

DefCon 2012 - Subterfuge - Automated MITM Attacks

Embed Size (px)

DESCRIPTION

 

Citation preview

Page 1: DefCon 2012 - Subterfuge - Automated MITM Attacks

Christopher  M.  Shields    r00t0v3rr1d3  

   Ma1hew  M.  Toussain    

 0sm0s1z    

Page 2: DefCon 2012 - Subterfuge - Automated MITM Attacks

Chris – Custom Attack Tools and Project Management

Matt – Interface Design and Framework Development

Page 3: DefCon 2012 - Subterfuge - Automated MITM Attacks

Basic ARP Poison

Page 4: DefCon 2012 - Subterfuge - Automated MITM Attacks

Heavy Network Traffic

Periods of MITM Loss

Python Tool With Scapy

Intelligent Network

Poison

Dynamic Poison Retention

Page 5: DefCon 2012 - Subterfuge - Automated MITM Attacks

Ø HTTPS Downgrade Attack Ø Use as a Web Proxy Ø Customizations for Subterfuge

Page 6: DefCon 2012 - Subterfuge - Automated MITM Attacks
Page 7: DefCon 2012 - Subterfuge - Automated MITM Attacks

A New MITM Tool –

Ø  Intuitive Interface Ø  Easy to use Ø  Silent and Stealthy Ø  Open Source

Page 8: DefCon 2012 - Subterfuge - Automated MITM Attacks

Ø  Server/Client Architecture Ø  MITM Utilities Ø  Module Builder Ø  Configuration Options

Page 9: DefCon 2012 - Subterfuge - Automated MITM Attacks

Ø Credential Harvesting Ø HTTP Code Injection Ø Denial of Service Ø Network View

Page 10: DefCon 2012 - Subterfuge - Automated MITM Attacks
Page 11: DefCon 2012 - Subterfuge - Automated MITM Attacks

? ? ?


MITM attack demov2

MITM attack demov2

Documents
DEFCOn - cdn.cloudflare.steamstatic.com

DEFCOn - cdn.cloudflare.steamstatic.com

Documents
Download - Defcon

Download - Defcon

Documents
Pointer Subterfuge

Pointer Subterfuge

Documents
Defcon Docsis

Defcon Docsis

Documents
MITM Attacks on HTTPS: Another Perspective · - A. stops the MitM attack 4. JS can interact with HostA in a usual way Browser knows nothing about MitM! ... MITM Attacks on HTTPS:

MITM Attacks on HTTPS: Another Perspective · - A. stops the MitM attack 4. JS can interact with HostA in a usual way Browser knows nothing about MitM! ... MITM Attacks on HTTPS:

Documents
Subterfuge and Sabotage: Evasion of Host Innate Defenses

Subterfuge and Sabotage: Evasion of Host Innate Defenses

Documents
SELF STUDY REPORT - MITM

SELF STUDY REPORT - MITM

Documents
Defcon Indice2014

Defcon Indice2014

Documents
MITM countermeasures Up by Aion

MITM countermeasures Up by Aion

Documents
mitm - Man in the midle

mitm - Man in the midle

Documents
SECURE PROGRAMMING Chapter 3 Pointer Subterfuge

SECURE PROGRAMMING Chapter 3 Pointer Subterfuge

Documents
30035782 Judicial Uses of Subterfuge

30035782 Judicial Uses of Subterfuge

Documents
MITM ARP Poison Attack - simms-teach.com · CIS 76 MITM via ARP Poisoning MITM ARP Poison Attack 1 DRAFT Last updated 9/4/2017

MITM ARP Poison Attack - simms-teach.com · CIS 76 MITM via ARP Poisoning MITM ARP Poison Attack 1 DRAFT Last updated 9/4/2017

Documents
MitM attacks on multi-platform banking applications · MitM attacks on multi-platform banking applications ... This attack was not successfully ... MitM attack provide an own DNS

MitM attacks on multi-platform banking applications · MitM attacks on multi-platform banking applications ... This attack was not successfully ... MitM attack provide an own DNS

Documents
Ev Ssl Mitm Slides

Ev Ssl Mitm Slides

Documents
Snow and Subterfuge

Snow and Subterfuge

Documents
Ssl Mitm Attacks

Ssl Mitm Attacks

Documents
Mitm Presentation

Mitm Presentation

Documents
Defcon - Manual

Defcon - Manual

Documents
Pointer Subterfuge COEN 296A. Pointer Subterfuge Pointer Subterfuge is a general expression for exploits that modify a pointer’s value. Function pointers

Pointer Subterfuge COEN 296A. Pointer Subterfuge Pointer Subterfuge is a general expression for exploits that modify a pointer’s value. Function pointers

Documents
DEFCON Presentation

DEFCON Presentation

Documents
2011 Defcon

2011 Defcon

Documents
FOX GROUP · 2021. 3. 22. · Nasce DEFCON 5. DEFCON 5 is born. DEFCON 5 diventa fornitore ufficiale NATO. DEFCON 5 becomes official NATO dealer. Fondazione di Euroknives: produzione

FOX GROUP · 2021. 3. 22. · Nasce DEFCON 5. DEFCON 5 is born. DEFCON 5 diventa fornitore ufficiale NATO. DEFCON 5 becomes official NATO dealer. Fondazione di Euroknives: produzione

Documents
BeEF Injection MITM

BeEF Injection MITM

Documents
Seccubus - Defcon

Seccubus - Defcon

Documents
Simulation of MITM in PEAP with hostap - … · Introduction Cryptobinding PEAP with MSCHAPv2 oTols analysis MitM attack and its code Simulation of MITM in PEAP with hostap Siarhei

Simulation of MITM in PEAP with hostap - … · Introduction Cryptobinding PEAP with MSCHAPv2 oTols analysis MitM attack and its code Simulation of MITM in PEAP with hostap Siarhei

Documents
Snow and Subterfuge - Seeking Solis · 2017-10-06 · Snow and Subterfuge A low level MERP adventure By Andy Warner Snow and Subterfuge is an introductory adventure for low level

Snow and Subterfuge - Seeking Solis · 2017-10-06 · Snow and Subterfuge A low level MERP adventure By Andy Warner Snow and Subterfuge is an introductory adventure for low level

Documents
DefCon 14 DefCon Network Team. Do what?! The Networks –Public (wireless) –Speakers –Press –Goons –Public Servers DefCon TV

DefCon 14 DefCon Network Team. Do what?! The Networks –Public (wireless) –Speakers –Press –Goons –Public Servers DefCon TV

Documents
Uncommon MiTM in uncommon conditions

Uncommon MiTM in uncommon conditions

Education