'HTTP'에 해당되는 글 23건

  1. 2011.06.20 안드로이드 앱을 통한 로그인 세션 가로채기 (Session Hijacking)
  2. 2011.06.08 Android Usb Port Forwarding (1)
  3. 2010.08.22 BEST TOOLS EVER (UPDATED)
2011.06.20 10:14

안드로이드 앱을 통한 로그인 세션 가로채기 (Session Hijacking)

동일 네트워크(공유기)에 연결된 PC 및 스마트폰에서 접속한 로그인 세션을 가로채어 별도 로그인 없이
불특정 사용자의 개인정보 및 대부분의 권한을 가지게 됩니다.

ARP Spoofing 공격으로 세션 가로채기 (Session Hijacking) 를 안드로이드 스마트폰에서 간편하게
누구나 손쉽게 가능한 앱이 등장했습니다.

스마트폰에서 사용되는 SNS 등 대부분 사이트는 세션을 통해 로그인을 유지하고 있어 세션만 가로채면
로그인 사용자의 동일한 권한을 가지게 됩니다.

초반에 트위터와 페이스북이 HTTP 통신을 사용하여 손쉽게 가능한 것이 확인되었는데..
당시에는 스마트폰으로 직접하기는 좀 어려움이 있었는데 앱으로 손쉽게 가능합니다.

트위터와 페이스북 같이 HTTPS 보안 통신 옵션을 제공하는 사이트의 경우
반드시 HTTPS 보안 통신을 선택하여 보다 안전한 사용을 권장합니다.
하지만 아직 많은 사이트가 HTTP 통신을 하고 있어 우려가 되며 이는 PC도 마찬가지입니다.
동일 네트워크(공유기)를 사용하는 경우 PC에서 사용되는 로그인 정보도 가로채기가 가능합니다.

FaceNiff - Session Hijacker for Android


사용 가능 스마트폰 단말기 :

HTC Desire - CM7/MIUI/LeeDroid3

Original Droid/Milestone - CM7

SE Xperia X10

Samsung Galaxy S - Stock/Darky/CM7

Samsung Galaxy S2 - KE7

Samsung Galaxy 3 - Stock

Samsung Galaxy Tab - Stock

Samsung Galaxy Mini - Stock

Nexus 1 - CM7

HTC Desire HD - CM7 Nightly

LG Swift 2X

Optimus Black - Stock

LG Optimus 3D - Stock

LG Optimus 2x - MODACO

Samsung Infuse

Droid X - Stock

Motorola Atrix - OLYEM 2.1.1

HTC Hero GSM - CM7/FroydVillain 1.7/Villian 13/Villain 1.7.1

Droid Incredible

Huawei Ascend M860 - Icarus 1.1

HTC Evo - Evo Deck

Sprint Evo - Warm 2.2 

Metro PCS

Nexus S - CM7

Droid 2 - ZombieStomped/Liberty2

Moto Xoom - Stock

G1 - CM6

ZTE v9 tablet - alphasxMOD-2.2.1

HTC Droid Eris - GSB v3.5

HTC Aria - CM7

Archos 32 - Stock

HTC ThunderBolt - Stock


알약 공지사항 : http://alyac.altools.co.kr/SecurityCenter/Analysis/NoticeView.aspx?id=99

Trackback 1 Comment 0
2011.06.08 20:33

Android Usb Port Forwarding

Introduction  

The Android architecture does not allow to start communication from the Android to the host through the USB cable.The opposite is possible, using the Google "Android Debug Bridge" (ADB in short).    

This tool will act as a tunnel between the Android client application and the host server. It is a software implementation of a router doing IP port forwarding.



On the Host part, you have to declare the ports you want to be opened on the Android and the tunnel will transfer communications between the android and the host. The host can be any server on the network or your local host. 

Prerequisits   

  • Enable "Usb debuging" on your Android
  • Install "Usb Tunnel" on your Android (see donwnload link on top of the article) or from the market :
  • Screenshot - market.jpg
  • Install the host windows application (see download link on top of the article) or this skydrive link or this GDoc link   
  • On the configuration panel, enter the path to the ADB program. ADB is part of the Android SDK. The installation includes the minimum files required.
  • Add tunnels. Each tunnel is composed of a name, an Android port (low port like 80 can't be used), a host IP and a host port (can be different from the android port)  


HTTP proxy 

If Tethering is a technology that allows you to use the mobile internet connection on your PC, this tool gives you the opposite. It's a sort of Reverse Tethering.   

You can now surf on your mobile (using the internet connection on your PC) through the Usb tunnel and via a proxy. 

If you are on a company network, ask your administrator what IP adddress and port he is using for the proxy. In some cases it can be the default gateway (run ipconfig command at the DOS prompt to find out what the default gateway is). 

If you are on a private network and you have no clue about the proxy adress and port, you can use a public proxy (do search for "Public proxy" on the internet). To help you out, here is link to a list of proxies. 

Another possibility is to install a local http proxy server like squid.  

Step 1 : configure the windows part. Since low ports can't be used, you should use a different high port for the android and another port for the host.  

Sample configuration for a company network : (192.168.xxx.xxx) on port 80 


Sample configuration for a public internet proxy on port 8080 

Step 2 : Connect he USB cable (of course).  Click the refresh button to display your device in the device list then click connect. The Android Usb tunnel service will start in the background. A connection icon will be added on the notification pannel.  

Step 3 : Setup your browser to use a proxy. Depending on the version of your Android OS, it's possible to define a http proxy in the advanced wifi settings menu (Not tested, available in Android 2.2). 

If you don't want to change the proxy each time (or have an older Android), it's perhaps better to install another browser that lets you specify a proxy.  

I tested it with Opera mobile ( Here is an article with some screenshots) :  

  • Enter about:config in the address bar 
  • Expand the proxy line  
  • Enter 127.0.0.1:8080 in the HTTP server and HTTPS server text box 
  • Click "Save" 

It may work with Firefox (not tested). I didn't find any information for proxy settings for skyfire 

Step 4 : Enjoy! enter any URL on your browser. Your firewall may detect that AndroidTool.exe is trying to access the internet. Give him the rights to access the proxy. 

In this screenshot, you can see the number of active connections , closed connections, total bytes transfered (to and from) 

I checked with an internet speed test. It's just a little bit slower. 

History 

May 2011 : First version 

License

This article, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

About the Author
Thierry Parent


Trackback 0 Comment 1
  1. 2011.06.08 20:36 address edit & del reply

    비밀댓글입니다

2010.08.22 02:52

BEST TOOLS EVER (UPDATED)

OpenVPN
OpenVPN is a full-featured SSL VPN solution which can accomodate a wide range of configurations, including remote access, site-to-site VPNs, WiFi security, and enterprise-scale remote access solutions with load balancing, failover, and fine-grained access-controls. GUI-version for Windows!
http://uploading.com/files/GTWU6PHX/open...l.zip.html


BlueFTP
This is an old tool which will helps you to hack mobiles throw bluetooth. Try it by yourself.
http://uploading.com/files/KTR3ONRF/BlueFTP.zip.html


DELmE's Batch Virus Generator v1.0
This tool is a virus creater. It will create very proffesional virus. Never test any virus on your PC. Very effective for bad hackers. All credits go to DELmE
http://uploading.com/files/CS02T8P6/DELm...1.rar.html


DELmE's Batch Virus Generator v2.0
This tool is a virus creater. It will create very proffesional virus. I would say it is best virus creater i have ever saw. Never test any virus on your PC. Very effective for bad hackers. All credits go to DELmE
http://uploading.com/files/0BPU0ZCP/DELm...0.rar.html


Windows command list
This is a list for most of the windows operator commands. It can very useful for virus programmers.
http://uploading.com/files/SG3CU3V8/wind...t.rar.html


THC-Hydra 5.4
This tool is a really good one to hack websites.This tool supports: TELNET, FTP, HTTP, HTTPS, HTTP-PROXY, SMB, SMBNT, MS-SQL, MYSQL, REXEC,RSH, RLOGIN, CVS, SNMP, SMTP-AUTH, SOCKS5, VNC, POP3, IMAP, NNTP, PCNFS, ICQ, SAP/R3, LDAP2, LDAP3, Postgres, Teamspeak, Cisco auth, Cisco enable, LDAP2 and Cisco AAA. It is worth to try it.
http://uploading.com/files/WWZGWNJG/hydr...n.zip.html


John the ripper
This tool is should crack password
http://uploading.com/files/S06PAFJJ/john171w.zip.html


Rainbowcrack 1.2
This tool will helps you to crack the PC users and administartors passwords. This is really good. Tutorial on how to use it is included.
http://uploading.com/files/5R4T4YPI/rain...n.zip.html


Konboot
This tool should recover your lost passwords for your PCs users accounts. This is an iso file so you have to burn it on a CD so it works. Work for Windows/Linux
http://uploading.com/files/7VQ5MFN4/pass...o.zip.html
For more information


Firefox Master Password Remover
This tool will remove the Master password on firefox. I create it and test it on my PC and works fine. I got this idea since i saw many people begging for master password on their firefox browser. Very effective
http://uploading.com/files/7KII7524/Fire...r.rar.html


Rapidshare Points Generator v2.4
This tool should generate points for your rapidshare accounts. Clean but not test it. Try it and let us know if it works
http://uploading.com/files/K2IC5Z4G/Rapi...4.rar.html


Icon changer
I noticed that some people asking for ful version icon changer. I couldn't bring the full version but i bring this. A very simple tool to add/remove icons for any application. It is shareware.
http://uploading.com/files/TG37XPXE/Icon...r.rar.html


Icons Extract
The Icons Extract utility scans the files and folders on your computer, and extract the icons and cursors stored in EXE, DLL, OCX, CPL, and in other file types. You can save the extracted icons to ICO files (or CUR files for cursors), or copy the image of a single icon into the clipboard. Very useful
http://uploading.com/files/XDHT9FPG/icon...r.zip.html


XSS_Scanner_1.0
This tool have been posted twice before but looks it is lost in the forum so i took the initiative to post it in my list. This tool will scan the web using google and will search for vulnerable XSS website.
http://uploading.com/files/HU7BBAYR/XSS_...0.zip.html


k9 web protection
This tool will let you control your browsers by control what types of websites to block or what particulary websites to block. It is very effective for parental control to limit what there children can access including hacking . Also ability to protect from infected websites. A full list of websites already exist. Very effective
http://uploading.com/files/7RVR98TU/k9%2...n.rar.html


72389 Mass Bomber
This tool will let you to send messages to multiple emails from a signle email at the same time. very effective. All credit go to Nathan72389
http://uploading.com/files/PS93X57M/7238...r.rar.html


Nsis 2.45
This contain some really good scripts that can be used in your websites and ability to create the script you want. Very good for java writers
http://uploading.com/files/F0CY0R6K/nsis...g.rar.html


Password door
This tool will helps you to restrict access to applications installed on your PC. This tool will put a password that you choose on the application that you choose so no one can open it without a password. Very effective
http://uploading.com/files/SL389H3D/Pass...r.rar.html


Security administrator
This tool will give control on all tasks that all user account have. Block what you don't want them to have as tasks and options eg: block downloading
http://uploading.com/files/Z497IJSP/Secu...r.zip.html


L337 Virus Creator
This tool is a fake virus generator. It looks like a virus generator while in fact it will infect the person himself. Use it to trick your victims. Let them think they can create virus using this one while they will get infected once they press any button. NEVER EVER test it on yourself. It will infect you. All credits go to Right Hand Man.
Code:
http://i275.photobucket.com/albums/jj299/s...titled-1-18.jpg
http://uploading.com/files/7KO7NNNW/L337...r.rar.html


Password generator 2.02
This tool will create complex passwords that you choose the type of the password and ability to personalize the person.
http://uploading.com/files/SQ1FGMAQ/PWGen-2.02.rar.html


Dork list
This is a list for some of the most used dorks in hacking websites.
http://uploading.com/files/7LVF2XEF/Dork...t.rar.html


Avast Virus removal pro v4
This is one of the best virus removal if not the best. It will search for virus on your system and remove them. Very effective
http://uploading.com/files/XPZGHUNA/Avas...4.rar.html


Password Zilla
This is the best password generator i have ever saw in my life. It will create the most complex and complicated passwords in the world. Choose the format of your password and what caracters to use and let it work. Also this tool can crack hashes. I am in love with this tool. My msn was hacked twice but a third time when i used a password generated by this one. Very effective
http://uploading.com/files/PKLLKB3V/Pass...a.rar.html


WinRar Password Remover v1.1
This tool will crack any protected winrar files.
http://uploading.com/files/PEXJGFBY/WinR...1.rar.html


GroundZero's Account Freezer V1.0
This tool will freeze facebook accounts.All credits go to GroundZero
http://uploading.com/files/TGKRE72N/Grou...0.zip.html
Tutorial


LC4
One of the most proffesional windows password crackers. very useful
http://uploading.com/files/H1M3LOB3/LC4.rar.html


1 million serials
This have been posted before and i think it is damn good that it shouldn't be lost with the other files. It will provide you with serials for over 1 million software.
http://uploading.com/files/CFO0UES9/1.Mi...s.rar.html


Forum auto poster
This was posted before in the forum but his owner was quicked out the forum.This tool will helps you to auto post in multiple forums in very few and easy steps.
http://uploading.com/files/J4U3KXUC/foru...r.rar.html


Autorun pro entreprise
This is the best autorun maker i have ever saw. It is damn pro. It can be very useful making your virus to autorun.
http://uploading.com/files/E24WUTUH/Auto...e.rar.html


File renamer
This tool will remane a very big number of files and folders at the same in only few clicks. Pro hackers can use this one to mess victims system.
http://uploading.com/files/S795U2M2/File...r.rar.html


Cheat Engine 55
This tool will helps to hack different things including flash games.
http://uploading.com/files/ZMJOZEIC/Chea...5.exe.html
Tutorial


Alpha editor
Alpha Editor is a Windows based text editor designed to make the creation and use of batch files by administrators easier. Alpha editor includes built in coding for login script creation.
http://uploading.com/files/C52TN3VM/Alph...r.zip.html


CSS Maker
Create stylesheets with no CSS knowledge! Don´t worry about the german intro, language can be adjusted in the program...;) very useful for websites writers
http://uploading.com/files/2R3S5TW0/CSS%...r.zip.html


Scour 2.3.7
I know that many people use scour.com to gain money and that they are getting tireds doing the searches by themself.This tool was posted before in the forum. Use theis tool to automate the searches on scour.com. Jsut input your informations in "Settings.ini" file and you are ready to use it and to win money.


Website Defacing Tools
Password Code:
www.avhackers.com


IP HIDER 3.7 Full + License Key


PS3 Jailbreak Trojan
http://www.f-secure.com/weblog/archives/00002014.html

Trackback 0 Comment 0