Web and Mobile Vulns We Exploited on

Поделиться
HTML-код
  • Опубликовано: 12 сен 2024
  • 🛝 Slides for this webcast -
    www.blackhills...
    🔗 Register for future webcasts on our BHIS Stadium Hub -
    blackhillsinfo...
    Web and Mobile Vulns We Exploited on Pentests w/ Sean Verity
    In this free one-hour Black Hills Information Security (BHIS) webcast, Sean Verity - Security Analyst, will share a mixed bag of high-impact web and mobile vulnerabilities that we found during assessments last year.
    We walk through a blind XSS that opened a door to steal password hashes, a couple of leaky password reset features that led to account take over, some IDORs, and more.
    Our testers also found a handy mobile feature that lets us export cookies and files from phones, using a web browser -
    no jailbreak or rooting necessary.
    Sean will be sharing testing take-aways so that you can be a returning champion throughout your pentests this year.
    Chat with your fellow attendees in the Black Hills Infosec Discord server here: / discord -- in the #webcast-live-chat channel.
    #infosec #pentesting #pentest #redteam

Комментарии • 1

Следующие
Автовоспроизведение
How to Not Get Burned in the Year of the Dragon w/ Jordan & Kent1:23:14How to Not Get Burned in the Year of the Dragon w/ Jordan & Kent
How to Not Get Burned in the Year of the Dragon w/ Jordan & KentBlack Hills Information Security
Просмотров 2,9 тыс.
How to Annoy Attackers so They Cry w/ John Strand | 1-Hour1:09:58How to Annoy Attackers so They Cry w/ John Strand | 1-Hour
How to Annoy Attackers so They Cry w/ John Strand | 1-HourBlack Hills Information Security
Просмотров 4,3 тыс.
Using Controllers for Keyboard Accessibility - Nikki Massaro (A11yTalks - September 2024)40:57Using Controllers for Keyboard Accessibility - Nikki Massaro (A11yTalks - September 2024)
Using Controllers for Keyboard Accessibility - Nikki Massaro (A11yTalks - September 2024)Accessibility Talks
Просмотров 56
LL COOL J - Murdergram Deux ft. Eminem03:10LL COOL J - Murdergram Deux ft. Eminem
LL COOL J - Murdergram Deux ft. EminemLLCoolJVEVO
Просмотров 1,6 млн
Watch the full Second Presidential Debate Hosted by ABC1:45:00Watch the full Second Presidential Debate Hosted by ABC
Watch the full Second Presidential Debate Hosted by ABCCNN
Просмотров 3,3 млн
Introducing iPhone 16 | Apple02:00Introducing iPhone 16 | Apple
Introducing iPhone 16 | AppleApple
Просмотров 5 млн
GLOVES OFF: CANELO vs. BERLANGA | Episode 212:23GLOVES OFF: CANELO vs. BERLANGA | Episode 2
GLOVES OFF: CANELO vs. BERLANGA | Episode 2Premier Boxing Champions
Просмотров 280 тыс.
How Logging Strategies Can Affect Cyber Investigations w/ Kiersten & James1:31:35How Logging Strategies Can Affect Cyber Investigations w/ Kiersten & James
How Logging Strategies Can Affect Cyber Investigations w/ Kiersten & JamesBlack Hills Information Security
Просмотров 953
Cybersecurity Certs that ARE NOT Worth It | Which Cybersecurity Certs AREN'T Worth It to Get?13:49Cybersecurity Certs that ARE NOT Worth It | Which Cybersecurity Certs AREN'T Worth It to Get?
Cybersecurity Certs that ARE NOT Worth It | Which Cybersecurity Certs AREN'T Worth It to Get?With Sandra
Просмотров 30 тыс.
How Hackers Bypass MFA? [2 Ways To Stop Them]8:34How Hackers Bypass MFA? [2 Ways To Stop Them]
How Hackers Bypass MFA? [2 Ways To Stop Them]Threatscape
Просмотров 7 тыс.
Self-Extracting Executables for Hackers41:06Self-Extracting Executables for Hackers
Self-Extracting Executables for HackersJohn Hammond
Просмотров 42 тыс.
Hacking Windows TrustedInstaller (GOD MODE)31:07Hacking Windows TrustedInstaller (GOD MODE)
Hacking Windows TrustedInstaller (GOD MODE)John Hammond
Просмотров 613 тыс.
Your 5 Year Path: Success in Infosec49:18Your 5 Year Path: Success in Infosec
Your 5 Year Path: Success in InfosecBlack Hills Information Security
Просмотров 66 тыс.
Solving a REAL investigation using OSINT19:03Solving a REAL investigation using OSINT
Solving a REAL investigation using OSINTGary Ruddell
Просмотров 165 тыс.
BHIS - Talkin' Bout [infosec] News 2024-09-91:05:16BHIS - Talkin' Bout [infosec] News 2024-09-9
BHIS - Talkin' Bout [infosec] News 2024-09-9Black Hills Information Security
Просмотров 1,2 тыс.
The Mark Of The Web27:46The Mark Of The Web
The Mark Of The WebJohn Hammond
Просмотров 68 тыс.
Good fragrance doesn’t have to come with a big price tag🏷️ #trending #shorts #catchysmells #itmaaz01:00Good fragrance doesn’t have to come with a big price tag🏷️ #trending #shorts #catchysmells #itmaaz
Good fragrance doesn’t have to come with a big price tag🏷️ #trending #shorts #catchysmells #itmaazIT Maaz
Просмотров 17 млн
INSANE Rally! 🤯🤯 #volleyball #europeanvolleyball #volleyballshorts #cevolleyball00:41INSANE Rally! 🤯🤯 #volleyball #europeanvolleyball #volleyballshorts #cevolleyball
INSANE Rally! 🤯🤯 #volleyball #europeanvolleyball #volleyballshorts #cevolleyballEuropean Volleyball
Просмотров 2,1 млн
УЗНАЮ СТРАШНЫЙ СЕКРЕТ ЗЛЫХ РОДИТЕЛЕЙ В SCHOOLBOY RUNAWAY В МАЙНКРАФТ!25:50УЗНАЮ СТРАШНЫЙ СЕКРЕТ ЗЛЫХ РОДИТЕЛЕЙ В SCHOOLBOY RUNAWAY В МАЙНКРАФТ!
УЗНАЮ СТРАШНЫЙ СЕКРЕТ ЗЛЫХ РОДИТЕЛЕЙ В SCHOOLBOY RUNAWAY В МАЙНКРАФТ!EdisonPts
Просмотров 1,1 млн
Когда ТАКТИКА оказалась ВАЖНЕЕ мастерства #shorts01:00Когда ТАКТИКА оказалась ВАЖНЕЕ мастерства #shorts
Когда ТАКТИКА оказалась ВАЖНЕЕ мастерства #shortsBalcevMMA_BOXING
Просмотров 630 тыс.
🚫✨ Dive into these satisfying hacks that you should NOT try at home! #DontTryThis #SatisfyingHacks00:19🚫✨ Dive into these satisfying hacks that you should NOT try at home! #DontTryThis #SatisfyingHacks
🚫✨ Dive into these satisfying hacks that you should NOT try at home! #DontTryThis #SatisfyingHacksThat Little Puff
Просмотров 1,1 млн
美味しい食べ物のASMR _ ASMR FOOD 🍜🍝🍜🥓🥢🍗#asmr #美味しい食べ物#食べ物#vlog00:57美味しい食べ物のASMR _ ASMR FOOD 🍜🍝🍜🥓🥢🍗#asmr #美味しい食べ物#食べ物#vlog
美味しい食べ物のASMR _ ASMR FOOD 🍜🍝🍜🥓🥢🍗#asmr #美味しい食べ物#食べ物#vlogASMR FOOD
Просмотров 998 тыс.
爸爸误以为钱生钱,怎料又被儿子套路了! #funny #萌娃 #comedy00:46爸爸误以为钱生钱,怎料又被儿子套路了! #funny #萌娃 #comedy
爸爸误以为钱生钱,怎料又被儿子套路了! #funny #萌娃 #comedy搞笑爸爸带俩娃
Просмотров 5 млн
Как потерять 500 т.р. на ремонте старой Шкоды51:12Как потерять 500 т.р. на ремонте старой Шкоды
Как потерять 500 т.р. на ремонте старой ШкодыИльдар Live
Просмотров 937 тыс.