Категории

Routopsy: Modern Routing Protocol Vulnerability Analysis and Exploitation

Опубликовано: 06 Октябрь 2024
на канале: Black Hat
1,670
39

An often-overlooked area of network security are the routing and redundancy protocols used between routing endpoints. Specifically, Dynamic Routing Protocols (DRP) such as OSPF, RIP, EIGRP, and First Hop Redundancy Protocols (FHRP) such as VRRP and HSRP are poorly understood by InfoSec attackers and defenders, have limited tooling that is either aging and unmaintained or hard to understand without first having a mastery of the protocols. This talk will showcase several common misconfigurations of these protocols on networks, and how this can be used for Person-in-the-Middle attacks and network discovery.

By Szymon Ziolkowski and Tyron Kemp

Full Abstract & Presentation Materials: https://www.blackhat.com/us-20/briefi...

play_arrow
17
0

Из чего состоит страница подписки

Из чего состоит страница подписки
play_arrow
4,111
33

15 Common Proverbs, Set Phrases, Idioms Used in Daily English Life|1|Grow English Skills|Grow.Eng

15 Common Proverbs, Set Phrases, Idioms Used in Daily English Life|1|Grow English Skills|Grow.Eng
play_arrow
264
4

ABG Laki-Laki dan Perempuan Digerebek Warga saat Asyik Pesta Miras di Kamar Kos

ABG Laki-Laki dan Perempuan Digerebek Warga saat Asyik Pesta Miras di Kamar Kos
play_arrow
6,243
134

Египет. Отель 5⭐️ REHANA Royal Beach Resort. Как здесь?

Египет. Отель 5⭐️ REHANA Royal Beach Resort. Как здесь?
play_arrow
450
6

Лучший плагин INSTABUILDER 2.0. Чумовая страница подписки за 5 минут.

Лучший плагин INSTABUILDER 2.0. Чумовая страница подписки за 5 минут.
play_arrow
156
7

Страница подписки | Сделать страницу подписки

Страница подписки | Сделать страницу подписки
play_arrow
878
36

Из каких элементов состоит страница подписки, как ее усилить и где создать?

Из каких элементов состоит страница подписки, как ее усилить и где создать?
play_arrow
4
2

5 новых морфов в [🙌NEW] Backrooms Morph

5 новых морфов в [🙌NEW] Backrooms Morph
Похожие видео
play_arrow
Keynote - Securing Our Cyberspace Together

Keynote - Securing Our Cyberspace Together
play_arrow
Fireside Chat: Jeff Moss and Ruimin He

Fireside Chat: Jeff Moss and Ruimin He
play_arrow
LinkDoor: A Hidden Attack Surface in the Android Netlink Kernel Modules

LinkDoor: A Hidden Attack Surface in the Android Netlink Kernel Modules
play_arrow
Emerging Frontiers: Insights from the Black Hat Asia Review Board

Emerging Frontiers: Insights from the Black Hat Asia Review Board
play_arrow
What the TrustZone-M Doesn't See, the MCU Does Grieve Over: Lessons Learned

What the TrustZone-M Doesn't See, the MCU Does Grieve Over: Lessons Learned
play_arrow
The Hack@DAC Story: Learnings from Organizing the World's Largest Hardware Hacking Competition

The Hack@DAC Story: Learnings from Organizing the World's Largest Hardware Hacking Competition
play_arrow
Privacy Detective: Sniffing Out Your Data Leaks for Android

Privacy Detective: Sniffing Out Your Data Leaks for Android
play_arrow
Debug7: Leveraging a Firmware Modification Attack for Remote Debugging of Siemens S7 PLCs

Debug7: Leveraging a Firmware Modification Attack for Remote Debugging of Siemens S7 PLCs
play_arrow
The Final Chapter: Unlimited ways to bypass your macOS privacy mechanisms

The Final Chapter: Unlimited ways to bypass your macOS privacy mechanisms
play_arrow
One Flip is All It Takes: Identifying Syscall-Guard Variables for Data-Only Attacks

One Flip is All It Takes: Identifying Syscall-Guard Variables for Data-Only Attacks
play_arrow
Faults in Our Bus: Novel Bus Fault Attack to Break Trusted Execution Environments

Faults in Our Bus: Novel Bus Fault Attack to Break Trusted Execution Environments
play_arrow
You Shall Not PASS - Analysing a NSO iOS Spyware Sample

You Shall Not PASS - Analysing a NSO iOS Spyware Sample