Cross Site Scripting (XSS) vulnerabilities are still one of the security problems you find in almost every web application. If the application’s interaction surface is reasonably large, it’s really just a matter of time.
For us, this means that in almost all web application pentests, we find XSS vulnerabilities to be documented. And there’s one thing [...]
When it comes to IT security, one of the things you tell every IT worker, be it the system administrator or the web application developer, is that they should thoroughly read the documentation for whatever they are working with. It doesn’t matter if it’s a new network component or a web application framework you’re [...]
Tagged dbal, documentation, sql_injection, typo3Apparently, the guys at Acunetix were tired of examining their JBoss Application Servers manually for vulnerabilities. In their Web Vulnerability Scanner from Version 6.5 build 20091215 on, they integrated various checks for the stuff from our JBoss paper.
To give you a little reminder: Always check for
http://www.example.com/jmx-console
http://www.example.com/web-console
http://www.example.com/web-console/Invoker
http://www.example.com/invoker/JMXInvokerServlet
and any open JBoss Remoting / RMI ports. See the [...]
Tagged acunetix, invoker, jboss, scanner, wvsAs promised, the TLS Renegotiation vulnerability Python PoC is now publicly available on our websites:
http://www.redteam-pentesting.de/publications/tls-renegotiation
RedTeam wishes you all a Merry Christmas. Be sure not to use the code for something naughty, Santa will know ;).
You might have noticed the SSL/TLS authentication gap vulnerability that was announced publicly in November. If not, you can find the original whitepaper at phonefactor.com. Thierry Zoller also published a detailed analysis and description of the problem.
Like many others, we have spent some time on that vulnerability. Unfortunately, the original Proof-of-Concept code is [...]
We finally came around to translate and release the 27+ pages of our JBoss paper (see also this post). That was quite some work, the first versions of my translations always read like a one-to-one translation from German. Then I read it again and correct those horribly sounding sentences to what I hope is [...]
Tagged english, jboss, PaperAs promised, we have released information about the attacks we developed against chipTAN comfort today. Have a look at our website:
http://www.redteam-pentesting.de/de/publications/MitM-chipTAN-comfort
You’ll find our press release (in German) and a paper (also in German) there, giving you all the details about the three attacks we came up with. I’m sorry that I didn’t get the [...]
RedTeam is on TV again:
Sunday, 22. November 2009, SAT1 Planetopia: Gefährliches Onlinebanking (Dangerous Online Banking)
Online banking is still a hot topic, with all the new systems cropping up after the traditional PIN/TAN and the more recent PIN/iTAN (indexed TAN) systems.
We already showed in 2005 that Man-in-the-Middle attacks on iTAN-based systems are possible and predicted that [...]
I have already mentioned in this blog post that there’s always standard stuff you have to do in a pentest. Finding all the standard security issues is important for the completeness of the pentest and should never be neglected. You will look rather stupid if you find the remote root exploit that can only be [...]
Tagged pentest, RedTeam, teamwork