Upload File

advanced xxe exploitation exercise 1 : simple xxe (app

  • Home
  • Documents
  • Advanced XXE Exploitation Exercise 1 : Simple XXE (App
9
Advanced XXE Exploitation Exercise 1 : Simple XXE (App port 8021) Philippe Arteau GoSecure Countertack 19/06/2019 Slides: http://bit.ly/xxeparis

Upload: others

Post on 09-May-2022

13 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Advanced XXE Exploitation Exercise 1 : Simple XXE (App

Advanced XXE ExploitationExercise 1 : Simple XXE (App port 8021)

Philippe ArteauGoSecure Countertack

19/06/2019Slides: http://bit.ly/xxeparis

http://bit.ly/xxeparis
Page 2: Advanced XXE Exploitation Exercise 1 : Simple XXE (App
Page 3: Advanced XXE Exploitation Exercise 1 : Simple XXE (App
Page 4: Advanced XXE Exploitation Exercise 1 : Simple XXE (App

Running an HTTP server

$ python –m http.server 8888

(pick a port that is unused)

Page 5: Advanced XXE Exploitation Exercise 1 : Simple XXE (App

Normal XML file

Page 6: Advanced XXE Exploitation Exercise 1 : Simple XXE (App

Malicious XML file

Page 7: Advanced XXE Exploitation Exercise 1 : Simple XXE (App
Page 8: Advanced XXE Exploitation Exercise 1 : Simple XXE (App

Directory listing

Page 9: Advanced XXE Exploitation Exercise 1 : Simple XXE (App

QuestionS ?

[email protected]/blog/@h3xStream @GoSecure_Inc


Questions pour comprendre le XXe siècle HISTOIRE

Littérature Française Du XXe Siècle

Victimes des guerres du XXe siècle

XXE: advanced exploitation - DefCon-UA

Paypal XXE via Ektron

SSRFvs.$Business-cri0cal$ applicaons: XXE$tunneling$in$SAP$ · XXE$tunneling$in$SAP$ $ $ Alexander$Polyakov$–CTO$at$ ERPScan$ ... – hNp://blog.spiderlabs.com/2012/05/too,xxe,for,my,shirt.html!

Maisons XXe siècle : quel confort ?

Hack pra 05-12-blind-xxe

Overexploitation Tokyo Tuna Market. Types of Overexploitation Commercial exploitation Subsistence exploitation Recreational exploitation Incidental exploitation

Advanced XXE Exploitation Exercise 5: Local DTD (App port ......Can we do a concatenation trick without external DTD ? Yes We Can ! 1. Initialize local DTD 2. Overrides one of its

XXE: How to become a Jedi

Les positivismes juridiques au XXe siècle

Xml external entities [xxe]

Hacking Classes - QA · PDF file2 DAY CLASS FOUNDATION TRACK Web ... • XXE Attacks • OS Code Injection ... OSINT, DVCS Exploitation Advanced OSINT Data gathering

Butz Arthur - La Mystification Du XXe Siecle

MARTINIQUE LABEL « PATRIMOINE DU XXe SIECLE

Histoire Monde Du XXe Siecle

Les grands espions du XXe siècle

Vivre la neige au XXe siècle

XXe siècle - WebMuseo

XXE Exposed: SQLi, XSS, XXE and XEE against Web Services

EXPLOITING XXE IN FILE UPLOAD FUNCTIONALITY - · PDF fileEXPLOITING XXE IN FILE UPLOAD FUNCTIONALITY BLACKHAT USA - 2015 Will Vandevanter - @_will_is_

ARTS DU XXE SIÈCLE

HISTOIRE DU XXe SIÈCLE

Xxe advanced exploitation

XXE injection - Nguyễn Tăng Hưng

La Mystification Du XXe Siècle

Exploitation @nirav4peace XXE @owasp puneBoring Theories :-P Extensible Markup Language (XML) is a markup language that defines a set of rules for encoding documents in a format that

L’architecture des musées au XXe siècle

XXe Sicle Evano

De la poésie du XXe siècle

DEfcon15 XXE XXS

Maurice Boulanger, illustrateur, France, début XXe

LECTURES au XXe siècle

Advanced XXE Exploitation · RCE with XSLT This vector is not XXE related but, needed for the last exercise. XSLT is a text format that describe the transformation applied to XML