Attack Chaining: Advanced Maneuvers for Hack Fu

SPEAKERS:: Rob Ragan and Oscar Salazar (Stach & Liu)

ABSTRACT::
Just as a good chess player thinks five moves ahead, a great penetration tester should be able to visualize their attack in order to compromise high-value targets. This presentation will explore how a penetration tester can learn to leverage attack chaining for maximum impact. A penetration test is supposed to be a simulation of a real-world attack. Real-world attackers do not use expensive automated tools or a checklist. Nor do they use a single technique or exploit to compromise a target. More commonly they combine several techniques, vulnerabilities, and exploits to create a “chained” attack that achieves a malicious goal. Chained attacks are far more complex and far more difficult to defend against. We want to explore how application vulnerabilities relate to one another and build a mind map that guides penetration testers through various attack scenarios. Prepare to be blown away on this roller coaster ride with real-world examples of massive compromises. If you are not a thrill seeker, this presentation may leave you a bit queasy.

BIOS::
Rob Ragan is a Senior Security Associate at Stach & Liu, a specialized security consulting firm serving the Fortune1000 and high-tech startups. We protect our clients from the bad guys by breaking-in and bending the rules before the hackers do. From critical infrastructure to credit cards, popular websites to mobile games, and flight navigation systems to frozen waffle factories, we’re there. Before joining Stach & Liu, Rob served as a Software Engineer with the Application Security Center team of Hewlett-Packard (formerly SPI Dynamics) where he developed automated web application security testing tools, performed penetration tests, and researched vulnerability assessment and identification techniques. Rob has presented his research at leading conferences such as BlackHat, DEFCON, InfoSec World, SummerCon, HackCon, OuterZ0ne, and HackerHalted. He has published several white papers and is a contributing author to the Hacking Exposed: Web Applications 3rd edition. (@sweepthatleg)
Oscar Salazar is a Security Associate at Stach & Liu where he specializes in penetration testing, source code review, network assessments, and secure development training. Prior to joining Stach & Liu, Oscar served as a Web Security Research Engineer at Hewlett‑Packard’s Application Security Center where he developed security checks for one of the leading web application security scanners, as well as researched techniques for automated scanning of Web 2.0 Applications.

GoToMeeting 411::

1. Please join my meeting.

https://www3.gotomeeting.com/join/995548566

2. Use your microphone and speakers (VoIP) - a headset is recommended. Or, call in using your telephone.

Argentina (toll-free): 0 800 444 2465

Australia (toll-free): 1 800 852 293

Australia: +61 (0) 3 9008 7863

Austria (toll-free): 0 800 802015

Austria: +43 (0) 7 2088 1049

Belarus (toll-free): 8 820 0011 0211

Belgium (toll-free): 0 800 26113

Belgium: +32 (0) 28 08 4370

Brazil (toll-free): 0 800 761 1759

Canada (toll-free): 1 877 739 5905

Canada: +1 (647) 723-3283

China (toll-free): 4001 482644

Czech Republic (toll-free): 800 040088

Denmark (toll-free): 8090 1900

Denmark: +45 (0) 69 91 89 30

Finland (toll-free): 0 800 552041

Finland: +358 (0) 942 41 5793

France (toll-free): 0 800 906 857

France: +33 (0) 182 880 174

Germany (toll-free): 0 800 589 0050

Germany: +49 (0) 811 8899 6927

Hong Kong SAR China (toll-free): 800 905 504

Iceland (toll-free): 800 9871

India (toll-free): 000 800 650 1698

Indonesia (toll-free): 007 803 011 0399

Ireland (toll-free): 1 800 947 676

Ireland: +353 (0) 19 030 012

Israel (toll-free): 1 809 212 877

Italy (toll-free): 800 132383

Italy: +39 0 247 92 13 03

Japan (toll-free): 00 531 122 099

Luxembourg (toll-free): 800 22114

Malaysia (toll-free): 1 800 81 5381

Mexico (toll-free): 01 800 607 0314

Netherlands (toll-free): 0 800 265 9038

Netherlands: +31 (0) 208 080 221

New Zealand (toll-free): 0 800 45 2192

New Zealand: +64 (0) 9 280 6304

Norway: +47 21 04 30 54

Panama (toll-free): 00 800 226 8837

Peru (toll-free): 0 800 54684

Philippines (toll-free): 1 800 1651 0714

Poland (toll-free): 00 800 1213978

Portugal (toll-free): 800 180 010

Russia (toll-free): 810 800 29604011

Singapore (toll-free): 800 120 5612

South Africa (toll-free): 0 800 983 864

South Korea (toll-free): 00 798 6517 478

Spain (toll-free): 0 900 804 768

Spain: +34 911 82 9908

Sweden (toll-free): 0 200 439 962

Sweden: +46 (0) 852 500 188

Switzerland (toll-free): 0 800 740 392

Switzerland: +41 (0) 435 0167 69

Taiwan (toll-free): 00 806 651 906

Thailand (toll-free): 001 800 658 129

Ukraine (toll-free): 0 800 50 0637

United Kingdom (toll-free): 0 800 014 8113

United Kingdom: +44 (0) 207 151 1808

United States (toll-free): 1 877 739 5902

United States: +1 (213) 289-0021

Uruguay (toll-free): 000 413 598 4109

Vietnam (toll-free): 120 65 159

Access Code: 995-548-566

Audio PIN: Shown after joining the meeting

Meeting Password: OWASPATL

Meeting ID: 995-548-566

GoToMeeting®

Online Meetings Made Easy™

COST:: Free to all. Bring a Friend. However, please look to join our chapter. Only $50. No pressure, but greatly appreciate. Non-profit and good cause.