rootedcon 2016 - broker & mq injection
TRANSCRIPT
![Page 1: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/1.jpg)
Broker&MQinjectionDanielGarcía(cr0hn)
@ggdaniel
![Page 2: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/2.jpg)
<spam>Me(cr0hn)</spam>
• Auditordeseguridadyhackingético.• ProgramadorPython.• Organizadorde“saraos”.• Creador/co-creador de más de 16herramientasdeseguridad.
• TrabajoenAbirtone:• Formaciónmuyespecializada.• Herramientasdehackingamedida.
https://www.linkedin.com/in/garciagarciadaniel
@ggdaniel
![Page 3: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/3.jpg)
CapítuloI
NuestrosamigoslosbrokersylasMQ(MessageQueues)
![Page 4: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/4.jpg)
¿QuéesunaMQ?
“Incomputerscience,messagequeuesandmailboxesaresoftware-engineeringcomponentsusedforinter-processcommunication(IPC),orforinter-threadcommunicationwithinthesameprocess.Theyuseaqueueformessaging–the
passingofcontrolorofcontent”
https://en.wikipedia.org/wiki/Message_queue
![Page 5: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/5.jpg)
¿QuéesunaMQ?
“Incomputerscience,messagequeuesandmailboxesaresoftware-engineeringcomponentsusedforinter-processcommunication(IPC),orforinter-threadcommunicationwithinthesameprocess.Theyuseaqueueformessaging–the
passingofcontrolorofcontent”
https://en.wikipedia.org/wiki/Message_queue
![Page 6: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/6.jpg)
¿QuéesunaMQ?…versiónhumanos:)
![Page 7: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/7.jpg)
¿QuéesunaMQ?…versiónhumanos:)
![Page 8: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/8.jpg)
¿Quéesunbroker?
“Messagebrokerisanintermediaryprogrammodulethattranslatesamessagefromthe
formalmessagingprotocolofthesendertotheformalmessagingprotocolofthereceiver”
https://en.wikipedia.org/wiki/Message_broker
![Page 9: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/9.jpg)
¿Quéesunbroker?
“Messagebrokerisanintermediaryprogrammodulethattranslatesamessagefromthe
formalmessagingprotocolofthesendertotheformalmessagingprotocolofthereceiver”
https://en.wikipedia.org/wiki/Message_broker
![Page 10: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/10.jpg)
¿Quéesunbroker?versionpara…frikis?:)
![Page 11: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/11.jpg)
¿Quéesunbroker?versionpara…frikis?:)
![Page 12: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/12.jpg)
¿Quéesunbroker?versionpara…frikis?:)
![Page 13: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/13.jpg)
BrokersvsMQ
Broker MessageQueue
Centralizado Sí No
Toleranciaafallos Sielbroker(ysusréplicas)caen,lacomunicacióncae
Siunelementocae,puedeseguirfuncionando
Localización Ubicacióncentralizadayconocida
Cadaelementohadesaberdóndeestánelrestodenodos(directoriode
servicios)
Transformaciones Sí No(Implementaciónmanual)
Desacoplado Sí Sepuedeimplementar
Complejidad Media(introduceunnuevoelemento) Sencillo
![Page 14: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/14.jpg)
CapítuloII
Quientieneunamigo…
![Page 15: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/15.jpg)
Pongamoscaras…
¿CuálessonlosBrokers/MQOpenSourcemásusados?
•Redis
•RabbitMQ
•ZeroMQ
![Page 16: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/16.jpg)
CasoI:envíodemails
WebApp
send_mail(…)
…
…
• Modelosimple
![Page 17: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/17.jpg)
CasoI:envíodemails
WebApp
send_mail(…)
…
…
• Modelosimple
![Page 18: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/18.jpg)
CasoI:envíodemails
WebApp
send_mail(…)
…
…
• Modelosimple
![Page 19: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/19.jpg)
CasoI:envíodemails
Problema
Elusuariotienequeesperarhastaqueelcorreoseaenviado
• Modelosimple
![Page 20: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/20.jpg)
CasoI:envíodemails
WebApp
send_thread()
…
…
• Modeloconhilos
![Page 21: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/21.jpg)
CasoI:envíodemails
WebApp
send_thread()
…
…
• Modeloconhilos
![Page 22: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/22.jpg)
CasoI:envíodemails
Problema
Crearemostantoshiloscomocorreos->creacióninciertadenumerodehilos
• Modeloconhilos
![Page 23: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/23.jpg)
CasoI:envíodemails
WebApp
send_thread()
…
…
• Modeloconhilos:problema
![Page 24: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/24.jpg)
CasoI:envíodemails
WebApp
send_thread()
…
…
• Modeloconhilos:problema
send_mail(…)send_mail(…)send_mail(…)send_mail(…)send_mail(…)send_mail(…)send_mail(…)
![Page 25: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/25.jpg)
CasoI:envíodemails
WebApp
send_thread()
…
…
• Modeloconhilos:problema
send_mail(…)send_mail(…)send_mail(…)send_mail(…)send_mail(…)send_mail(…)send_mail(…)
![Page 26: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/26.jpg)
CasoI:envíodemails
WebApp
send_thread()
…
…
• Modeloconbroker-I
send_mail(…)
![Page 27: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/27.jpg)
CasoI:envíodemails
WebApp
send_mail()…
…
• Modeloconbroker-I
![Page 28: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/28.jpg)
CasoI:envíodemails
WebApp
send_mail()…
…
• Modeloconbroker-I
mail(…)
Worker
Broker
![Page 29: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/29.jpg)
CasoI:envíodemails
WebApp
send_mail()…
…
• Modeloconbroker-I
mail(…)
Worker
Broker
![Page 30: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/30.jpg)
mail(…)
Worker
CasoI:envíodemails
WebApp
send_mail()…
…
• Modeloconbroker-II
mail(…)
Worker
Broker
![Page 31: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/31.jpg)
mail(…)
Worker
CasoI:envíodemails
WebApp
send_mail()…
…
• Modeloconbroker-II
mail(…)
Worker
Broker
![Page 32: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/32.jpg)
mail(…)
Worker
CasoI:envíodemails
WebApp
send_mail()…
…
• Modeloconbroker-II
mail(…)
Worker
Broker
![Page 33: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/33.jpg)
mail(…)
Worker
CasoI:envíodemails
WebApp
send_mail()…
…
• Modeloconbroker-III
mail(…)
Worker
Broker
![Page 34: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/34.jpg)
mail(…)
Worker
CasoI:envíodemails
WebApp
send_mail()…
…
• Modeloconbroker-III
mail(…)
Worker
Broker
![Page 35: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/35.jpg)
CapítuloIII
“Sirevelastussecretosalviento,noculpesalvientoporrevelarlosalosárboles”
JalilGibran
![Page 36: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/36.jpg)
Brokerinjection:Concepto
• AligualqueexisteSQLInjection,CrossSiteInjectionoDLLinjection…porquéno:
¿Broker/MQInjection?
![Page 37: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/37.jpg)
Brokerinjection:Definición
Lograr interceptar, alterar, interferir oinyectar nueva información en sistemas yentornosqueusansistemasdebrokeringyMessage Queues como e lementosfacilitadoresdelacomunicación.
![Page 38: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/38.jpg)
Brokerinjection:Definición
Lograr interceptar, alterar, interferir oinyectar nueva información en sistemas yentornosqueusansistemasdebrokeringyMessage Queues como e lementosfacilitadoresdelacomunicación.
![Page 39: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/39.jpg)
Brokerinjection:Explicaciónvisual
WebApp
send_mail()…
…
mail(…)
Worker
Broker
![Page 40: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/40.jpg)
Brokerinjection:Explicaciónvisual
WebApp
send_mail()…
…
mail(…)
Worker
Broker
![Page 41: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/41.jpg)
Brokerinjection:Explicaciónvisual
Broker
TCP/IP
5672/TCP
3679/TCP
5555/TCP
![Page 42: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/42.jpg)
Brokerinjection:Explicaciónvisual
Broker
TCP/IP
5672/TCP
3679/TCP
5555/TCP
![Page 43: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/43.jpg)
Brokerinjection:Explicaciónvisual
Broker
TCP/IP
5672/TCP
3679/TCP
5555/TCP
![Page 44: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/44.jpg)
Brokerinjection:Explicaciónvisual
Broker
TCP/IP
5672/TCP
3679/TCP
5555/TCP
![Page 45: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/45.jpg)
Broker
Brokerinjection:ExplicaciónvisualTCP/IP
5672/TCP
3679/TCP
5555/TCP
![Page 46: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/46.jpg)
Broker
Brokerinjection:ExplicaciónvisualTCP/IP
5672/TCP
3679/TCP
5555/TCP
![Page 47: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/47.jpg)
Broker
Brokerinjection:ExplicaciónvisualTCP/IP
5672/TCP
3679/TCP
5555/TCP
![Page 48: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/48.jpg)
Brokerinjection:Quénospermite
• Lecturadeinformaciónenviada
![Page 49: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/49.jpg)
Brokerinjection:Quénospermite
• Lecturadeinformaciónenviada
send_mail(…)…
…Broker
![Page 50: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/50.jpg)
Brokerinjection:Quénospermite
• Lecturadeinformaciónenviada
send_mail(…)…
…Broker
![Page 51: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/51.jpg)
Brokerinjection:Quénospermite
• Lecturadeinformaciónenviada
send_mail(…)…
…Broker
![Page 52: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/52.jpg)
Brokerinjection:Quénospermite
• Listartareasremotas
![Page 53: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/53.jpg)
Brokerinjection:Quénospermite
• Listartareasremotas
send_mail(…)…
…
Broker
do_auth(…)…
…
Log(…)…
…send_alert(…)…
…
![Page 54: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/54.jpg)
Brokerinjection:Quénospermite
• Listartareasremotas
send_mail(…)…
…
Broker
do_auth(…)…
…
Log(…)…
…send_alert(…)…
…
![Page 55: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/55.jpg)
Brokerinjection:Quénospermite
• Listartareasremotas
send_mail(…)…
…
Broker
do_auth(…)…
…
Log(…)…
…send_alert(…)…
… - do_auth(p0:str)
- send_mail(p0:str, p1:str..)
- log(p0:str)
- send_alert(p0:str)
![Page 56: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/56.jpg)
Brokerinjection:Quénospermite
• Borrartareas
send_mail(…)…
…
Broker
do_auth(…)…
…
Log(…)…
…send_alert(…)…
…
![Page 57: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/57.jpg)
Brokerinjection:Quénospermite
• Borrartareas
send_mail(…)…
…
Broker
do_auth(…)…
…
Log(…)…
…send_alert(…)…
…
Intrusiondetectionalert
Trytoauthenticate
anuser
![Page 58: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/58.jpg)
Brokerinjection:Quénospermite
• Borrartareas
send_mail(…)…
…
Broker
do_auth(…)…
…
Log(…)…
…send_alert(…)…
…
Intrusiondetectionalert
Trytoauthenticate
anuser
![Page 59: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/59.jpg)
Brokerinjection:Quénospermite
• Borrartareas
send_mail(…)…
…
Broker
do_auth(…)…
…
Log(…)…
…send_alert(…)…
…
Trytoauthenticate
anuser
![Page 60: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/60.jpg)
Brokerinjection:Quénospermite
• Borrartareas
send_mail(…)…
…
Broker
do_auth(…)…
…
Log(…)…
…send_alert(…)…
…
![Page 61: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/61.jpg)
Brokerinjection:Quénospermite
• Inyectarnuevastareas
send_mail(…)…
…
Broker
do_auth(…)…
…
Log(…)…
…
![Page 62: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/62.jpg)
Brokerinjection:Quénospermite
• Inyectarnuevastareas
send_mail(…)…
…
Broker
do_auth(…)…
…
Log(…)…
…- send_mail(
- to:[email protected]
- from:[email protected]
- subject:Yousmellliketurtlebank)
![Page 63: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/63.jpg)
Brokerinjection:Quénospermite
• Inyectarnuevastareas
send_mail(…)…
…
Broker
do_auth(…)…
…
Log(…)…
…
![Page 64: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/64.jpg)
Brokerinjection:Quénospermite
• Inyectarnuevastareas
send_mail(…)…
…
Broker
do_auth(…)…
…
Log(…)…
…
![Page 65: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/65.jpg)
CapítuloIV
Jugando,enredando,trasteandoo…“enteletando”
![Page 66: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/66.jpg)
Brokerinjector:Enteletaor
• Un broker injector que nos permitirá realizardiversostiposdeinyeccionessobrelosbrokersmásconocidos:• RabbitMQ• Redis• ZeroMQ
• Presentadoporprimeravezjuntoaestacharla.
![Page 67: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/67.jpg)
Brokerinjector:Enteletaor
• Un broker injector que nos permitirá realizardiversostiposdeinyeccionessobrelosbrokersmásconocidos:• RabbitMQ• Redis• ZeroMQ
• Presentadoporprimeravezjuntoaestacharla.
![Page 68: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/68.jpg)
Brokerinjector:Enteletaor
![Page 69: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/69.jpg)
Brokerinjector:Enteletaor
![Page 70: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/70.jpg)
Brokerinjector:Enteletaor
Inyectarnuevastareas
Listarprocesos/tareas
Detectarbrokersabiertos
Extraerinformacióndetareas
Borrartareasremotas
![Page 71: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/71.jpg)
Brokerinjector:Enteletaor
• Web:• https://github.com/cr0hn/enteletaor
• Autor:• DanielGarcía(cr0hn)
![Page 72: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/72.jpg)
Brokerinjector:Enteletaor
![Page 73: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/73.jpg)
Brokerinjector:Enteletaor
ESCENARIO:
![Page 74: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/74.jpg)
Brokerinjector:Enteletaor
ESCENARIO:
http://pupita-sana.com
![Page 75: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/75.jpg)
Brokerinjector:Enteletaor
ESCENARIO:
http://pupita-sana.com
WebApp
10.10.0.10
![Page 76: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/76.jpg)
Brokerinjector:Enteletaor
ESCENARIO:
http://pupita-sana.com
WebApp
10.10.0.10
10.10.0.20
Worker
![Page 77: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/77.jpg)
Brokerinjector:Enteletaor
ESCENARIO:
http://pupita-sana.com
WebApp
10.10.0.10
10.10.0.20
Worker
¡Demotime!
![Page 78: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/78.jpg)
CapítuloV
Másquebrokers…
![Page 79: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/79.jpg)
•Redis
•RabbitMQ
•ZeroMQ
Otrosusos
![Page 80: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/80.jpg)
•Redis
•RabbitMQ
•ZeroMQ
Otrosusos
![Page 81: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/81.jpg)
Redis:algunosejemplosdeuso
• Almacenamientodistribuidodesesiones.• Sistemadecachedeestáticos.• Sistemadecachedeobjetosdebasesdedatos.• Locks distribuidos -> solución para problemas deconcurrencia.
• Modeloproductor/consumidor.• AlternativadesencillaimplantaciónyusoasistemasNoSQL.• Sistemadegestióndecolas.• Contadoresdistribuidos.
![Page 82: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/82.jpg)
Redis:algunosejemplosdeuso
• Almacenamientodistribuidodesesiones.• Sistemadecachedeestáticos.• Sistemadecachedeobjetosdebasesdedatos.• Locks distribuidos -> solución para problemas deconcurrencia.
• Modeloproductor/consumidor.• AlternativadesencillaimplantaciónyusoasistemasNoSQL.• Sistemadegestióndecolas.• Contadoresdistribuidos.
![Page 83: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/83.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
• Modelosincache
![Page 84: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/84.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
Acacio
• Modelosincache
![Page 85: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/85.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
Acacio
• Modelosincache
![Page 86: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/86.jpg)
CasoII:Rediscomocache
Problema
Elaccesoadiscoyabasededatosescostosoentiempoyrecursos.
• Modelosincache
![Page 87: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/87.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
• Modelosincache
![Page 88: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/88.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
• Modelosincache
![Page 89: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/89.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
• Modelosincache
![Page 90: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/90.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
• Modelosincache
![Page 91: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/91.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
• ModeloconRedis
![Page 92: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/92.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
• ModeloconRedis
![Page 93: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/93.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
• ModeloconRedis
![Page 94: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/94.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
• ModeloconRedis
![Page 95: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/95.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
• ModeloconRedis
![Page 96: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/96.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
• ModeloconRedis
![Page 97: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/97.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
• ModeloconRedis
![Page 98: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/98.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
• ModeloconRedis
![Page 99: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/99.jpg)
CasoII:Rediscomocache
WebApp
http://pupita-sana.com
• ModeloconRedis
![Page 100: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/100.jpg)
CasoII:Rediscomocache• ModeloconRedis
Pero…¿Redisnoseríaentonceselcuellodebotella?
![Page 101: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/101.jpg)
CasoII:Rediscomocache• ModeloconRedis
![Page 102: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/102.jpg)
CasoII:Rediscomocache• ModeloconRedis
Midiendoelrendimientocon:
redis-benchmark
![Page 103: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/103.jpg)
CasoII:Rediscomocache• ModeloconRedis
Midiendoelrendimientocon:
redis-benchmark
![Page 104: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/104.jpg)
CasoII:Rediscomocache• ModeloconRedis
Pero…¿esoesmucho?
![Page 105: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/105.jpg)
CasoII:Rediscomocache• ModeloconRedis
![Page 106: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/106.jpg)
CasoII:Rediscomocache• ModeloconRedis
http://www.internetlivestats.com/one-second/#google-band
![Page 107: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/107.jpg)
CasoII:Rediscomocache• ModeloconRedis
http://www.internetlivestats.com/one-second/#google-band
![Page 108: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/108.jpg)
CapítuloVI
Tucaché,micaché,nuestracaché…¡quémásda!
![Page 109: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/109.jpg)
CachepoisoningenRedis
WebApp
http://pupita-sana.com
![Page 110: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/110.jpg)
CachepoisoningenRedis
WebApp
http://pupita-sana.com
![Page 111: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/111.jpg)
CachepoisoningenRedis
WebApp
http://pupita-sana.com
![Page 112: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/112.jpg)
CachepoisoningenRedis
WebApp
http://pupita-sana.com
![Page 113: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/113.jpg)
CachepoisoningenRedis
WebApp
http://pupita-sana.com
![Page 114: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/114.jpg)
CachepoisoningenRedis
WebApp
http://pupita-sana.com
![Page 115: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/115.jpg)
CachepoisoningenRedis
WebApp
http://pupita-sana.com
![Page 116: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/116.jpg)
CachepoisoningenRedis
¡Demotime!
![Page 117: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/117.jpg)
CachepoisoningenRedis
¡Demotime!
![Page 118: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/118.jpg)
Capítulofinal
Conclusiones
![Page 119: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/119.jpg)
Elproblemareal…
WebApp
http://pupita-sana.com
![Page 120: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/120.jpg)
Elproblemareal…
WebApp
http://pupita-sana.com
![Page 121: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/121.jpg)
Elproblemareal…
WebApp
http://pupita-sana.com
![Page 122: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/122.jpg)
Nopongamospuertasalmar
WebApp
http://pupita-sana.com
![Page 123: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/123.jpg)
5672/TCP
3679/TCP
5555/TCP
Nopongamospuertasalmar
WebApp
http://pupita-sana.com
![Page 124: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/124.jpg)
5672/TCP
3679/TCP
5555/TCP
Nopongamospuertasalmar
WebApp
http://pupita-sana.com
![Page 125: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/125.jpg)
Consejosbásicosdesecurización
• Noexponerlosserviciosdebrokeringainternet,soloenredinterna.
• Sinoesposible:• Usarusuario/contraseña.• Nousarlasbasesdedatospordefecto.• Usar bases de datos diferentes, para serviciosdiferente.
• Usartransporteseguro(SSL).• Nousarpuertospordefecto.
![Page 126: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/126.jpg)
Ysi…(locura1)
![Page 127: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/127.jpg)
http://mrlooquer.com
Ysi…(locura1)
![Page 128: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/128.jpg)
http://mrlooquer.com
Ysi…(locura1)
![Page 129: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/129.jpg)
http://mrlooquer.com
Ysi…(locura1)
![Page 130: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/130.jpg)
Ysi…(locura++)
![Page 131: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/131.jpg)
Ysi…(locura++)
• ZeroMQesusadoporStorm Procesamientoentiemporealde
bigdata
![Page 132: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/132.jpg)
Ysi…(locura++)
• ZeroMQesusadoporStorm
• Stormesusadoparaanálisisdestocks
Procesamientoentiemporealde
bigdata
![Page 133: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/133.jpg)
Ysi…(locura++)
• ZeroMQesusadoporStorm
• Stormesusadoparaanálisisdestocks
• Siproporcionamosinformaciónincorrecta
Procesamientoentiemporealde
bigdata
![Page 134: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/134.jpg)
Ysi…(locura++)
• ZeroMQesusadoporStorm
• Stormesusadoparaanálisisdestocks
• Siproporcionamosinformaciónincorrecta
• Afectaralsistemafinanciero
Procesamientoentiemporealde
bigdata
![Page 135: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/135.jpg)
Ysi…(locura++)
• ZeroMQesusadoporStorm
• Stormesusadoparaanálisisdestocks
• Siproporcionamosinformaciónincorrecta
• Afectaralsistemafinanciero
Procesamientoentiemporealde
bigdata
![Page 136: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/136.jpg)
¿Preguntas?
![Page 137: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/137.jpg)
![Page 138: RootedCON 2016 - Broker & MQ injection](https://reader036.vdocuments.net/reader036/viewer/2022062503/5871991d1a28ab044e8b54c9/html5/thumbnails/138.jpg)
¡Muchasgracias!