Scribd Logo
Upload

Welcome to Scribd!

  • Offsec OSCE

    Uploaded by

    nokturnalboris5439
    455 views2 pages
    Offensive Security Cracking the Perimeter Syllabus v.1. Mati Aharoni MCT, MCSE + security, CCNA, CCSA, HPOV, CISSP. 4 Cross Site Scripting Attacks. 4 Directory traversal - Scenario #2. 16 The Backdoor angle. 28 Backdooring PE files under Windows Vista. 28 advanced exploiting techniques.

    Original Description:

    Original Title

    offsec-OSCE

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Offensive Security Cracking the Perimeter Syllabus v.1. Mati Aharoni MCT, MCSE + security, CCNA, CCSA, HPOV, CISSP. 4 Cross Site Scripting Attacks. 4 Directory traversal - Scenario #2. 16 The Backdoor angle. 28 Backdooring PE files under Windows Vista. 28 advanced exploiting techniques.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    455 views2 pages

    Offsec OSCE

    Uploaded by

    nokturnalboris5439
    Offensive Security Cracking the Perimeter Syllabus v.1. Mati Aharoni MCT, MCSE + security, CCNA, CCSA, HPOV, CISSP. 4 Cross Site Scripting Attacks. 4 Directory traversal - Scenario #2. 16 The Backdoor angle. 28 Backdooring PE files under Windows Vista. 28 advanced exploiting techniques.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 2

    Offensive Security

    Cracking the Perimeter


    Syllabus
    v.1.0

    Mati Aharoni

    MCT, MCSE + Security, CCNA, CCSA, HPOV, CISSP

    1 © All rights reserved to Offensive Security, 2009


    Syllabus
    Introduction ....................................................................................................................................................................... 3

    The Web Application angle ................................................................................................................................................ 4

    Cross Site Scripting Attacks – Scenario #1 .................................................................................................................... 4

    Real World Scenario................................................................................................................................................ 4

    Directory traversal – Scenario #2 ................................................................................................................................ 16

    Real World Scenario.............................................................................................................................................. 16

    The Backdoor angle ......................................................................................................................................................... 28

    Backdooring PE files under Windows Vista ................................................................................................................ 28

    Advanced Exploitation Techniques................................................................................................................................... 53

    MS07-017 – Dealing with Vista .................................................................................................................................. 53

    Cracking the Egghunter .............................................................................................................................................. 62

    The 0Day angle ................................................................................................................................................................ 77

    Windows TFTP Server – Case study #1 ...................................................................................................................... 77

    HP Openview NNM – Case study #2 .......................................................................................................................... 88

    The Networking Angle - Attacking the Infrastructure. ..................................................................................................... 112

    Bypassing Cisco Access Lists using Spoofed SNMP Requests ................................................................................... 112

    GRE Route-Map kung fu .......................................................................................................................................... 115

    Sniffing Remote Traffic via GRE tunnel.................................................................................................................... 120

    Compromised Router Config .................................................................................................................................... 123

    2 © All rights reserved to Offensive Security, 2009

    You might also like