GSecur
Jan 13 2004, 08:28 PM
Haven't used it yet but it looks promising.
| QUOTE |
I wrote last year a tool named JAB and allowing a Win32 PC to communicate with its master through the Internet Explorer OLE interface (à la Setiri from SensePost).
During pen-tests, it can be used to create a command/data channel between the compromised host and your server, even if the "client" must go through personnel firewalls, NAT, antivirus gateways and proxys (even authenticated). The only need of the client machine is that Internet Explorer can access the Internet. Features : upload and download of binary files, execution of command with result sent back to the attacker, authentication of "clients", ...
I made a presentation about this in June to the SSTIC'03 conference,and you can find the related PDF (in french), and the code, at :
http://www.sstic.org/presentations/JAB___N._Gregoire/
Regards,
--
Nicolas Gregoire ----- Consultant en Sécurité des Systèmes d'Information ngregoire@exaprobe.com ------[ ExaProbe ]------ http://www.exaprobe.com/ PGP KeyID:CA61B44F FingerPrint:1CC647FF1A55664BA2D2AFDACA6A21DACA61B44F
|
liquidSilver
Jan 13 2004, 08:33 PM
Hmm.. Sounds like it's something for me.. I'll test it right away.. Thanks bud.
Regards,
LS
SeNe
Jan 13 2004, 11:53 PM
thanks m8, im gonna test it too...!
RFlash
Jan 14 2004, 09:15 AM
Really interestin' solution, many thanks GSecur !
RFlash
wicked
Jan 14 2004, 09:39 AM
Cheers bud will have a browse over it ...
Wkd..
Nostra
Jan 15 2004, 10:19 AM
sounds interesting, i will give it a try
thx :]
FakoLy
Jan 15 2004, 03:17 PM
hmmm cool and this tool is in french that's my language
thanx a lot imma test it
++
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
