Iván Martín
XSS persistent y DOM
Valderas
XSS persistent y DOM [
]
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
XSS persistent y DOM
Índice 1. DOM Inspector ………………………………….………. 2 2. Acceso a Gruyere ……………………………….……... 4 3. Funcionamiento de Gruyere ………………….….. 5 a. Ejemplo 1: Imagen ……………………….…... 5 b. Ejemplo 2: Texto ……………..………………. … …………..………………. 8 c. Ejemplo 3: Puntero ……..……………………. 9 d. Ejemplo 4: Ventanas …………………………. 10 e. Ejemplo 5: Web W eb …………………………….…… 11 4. Fase Final. Expansión ……………………..…………… 13 5. Gruyere como Víctima …………………..……………. 14
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
1. DOM Inspector Es un complemento para Firefox, para instalarlo basta con buscarlo en Google y añadirlo a firefox
Para arrancarlo Vamos al menú de Firefox > Desarrollador Web > DOM Inspector
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
XSS persistent y DOM
DOM es la estructura de objetos que genera el navegador cuando se carga un documento y se puede alterar mediante Javascript para cambiar dinámicamente los c ontenidos y aspecto de la página.
Su uso es simple, escribimos la URL y damos a Inspect:
En la parte izquierda tenemos un árbol d e nodos En la parte derecha tenemos la información de los objetos JavaScript de la web En la parte de abajo tenemos una vista de la web
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
2. Acceso a Gruyere Vamos a la URL sigui ente: http://google-gruyere.appspot.com/start
Aquí obtenemos nuestro ID, con el cual se nos identificará, además será el sufijo de nuestro Gruyere
Una vez aceptado, pulsamos en Sign up para registrarnos
Escribimos un Usuario y una Contraseña
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
XSS persistent y DOM
3. Funcionamiento de Gruyere El uso de Gruyere se basa en Snippets donde podemos colocar nuestro nuestro código y que la gente que nos visita interactúe con ello.
A) Creamos un Snippet
Escribimos código en él, por ejemplo para empezar:
aQuí">
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Si vamos a Mis Snippets nos encontramos con el gatito, pasando el cursor vemos que se puede picar y redirigir a otro sitio, con confianza de nuestro trabajo.
Si hacemos clic sobre la imag en nos encontramos con la sorpresa
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
XSS persistent y DOM
Ahora que ya vemos el funcionamiento del Snippet, lo creamos en un fichero html y lo subimos mediante upload.
Ahora tenemos tenemos nuestro link, el c ual podemos hacer circular por la red para hacer llegar nuestro código, siempre es más fácil si la víctima recibe una URL que si tiene que andar buscando por nuestra web: http://google-gruyere.appspot.com/227246112755/asirprincee/gatete.html
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
B) Creamos un snippet con trampa pero sólo texto:
Mira qué fuerte!!
Quien se dirija a nuestra web verá Mira qué fuerte!! Y como el ser humano es muy curioso…
¡¡Sorpresa!!
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
XSS persistent y DOM
C) Creamos también un snippet que con pasar el puntero, sin hacer clic, se ejecute:
Clic aqui para tu regalo
La víctima se encuentra en nuestra web con Clic aqui para tu regalo, y al igual que antes vamos a ver qué regalo nos ofrecen, pero no hace falta ni que hagamos clic en él, tan solo si pasamos sin querer porque estamos recorriendo la web:
¡¡Sorpresa!!
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
D) Vamos a crear ahora un Snippet con el cual se genere siempre una ventana de alerta, que por mucho que la queramos cerrar no podamos:
Mira cómo mola!!
La manera de solucionarlo es con el Administrador de Tareas y Finalizando el explor er, esto puede causar mucho daño ya que tienes t ienes que cerrar la
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
XSS persistent y DOM
E) Crear un sinfín de ventanas emergentes con tu web:
El atributo de color en el perfil no tiene validación por lo que podemos inyectar código JavaScript. Esto significa que un usuario puede editar su perfil e insertar un código que correrá en los ordenadores de los demás. Unos de los usos de éste “at aque” son: -
Hacer spam al usuario con advertencias adv ertencias
-
Incrementar las visitas de una web
-
Esparcir Malware
Vamos al Perfil y modificamos el Color de Perfil, pero no metemos un color cualquiera, vamos a meter nuestro color favorito y especial, código JavaScript inyectado:
red' onmouseout='window.open("http://arousaelite.es.tl", onmouseout='window.open("http://arousaelite.es.tl", "", "height=900,width=900");return "height=900 ,width=900");return
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Cada vez que alguien pase el puntero por aqu í tendrá una ventana nueva abierta hacia nuestra web http://arousaelite.es.tl
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
XSS persistent y DOM
4. Fase Final. La Expansión Por último sólo tenemos que copiar el código anterior a un fichero html y subirlo para obtener una URL de cada código diferente que dispongamos para hacer circular por la red nuestras URLs y listo: http://google-gruyere.appspot.com/227246112755/asirprincee/gatete.html http://google-gruyere.appspot.com/227246112755/asirprincee/text.html http://google-gruyere.appspot.com/227246112755/asirprincee/mouse.html http://google-gruyere.appspot.com/227246112755/asirprincee/nofin.html http://google-gruyere.appspot.com/227246112755
Ahora nuestra web del queso Gruyere se ha convertido en una expansión de quesos por la red llenos de trampas para ratones
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
5. Gruyere como Víctima Recibimos una URL de una página que según un amigo es muy interensate: http://google-gruyere.appspot.com/227246112755/
Si entramos, nos encontramos al Gato G ato con Botas, B otas, triste, porque odia los lunes… pobre…
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
XSS persistent y DOM
Vamos a ver si logramos encontrar algo interesante en la web, vamos a pulsar en el botón HomePage
Es la página principal asique asiqu e encontraremos más cosas, supongo…
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Seguimos buscando por la web, no sab emos ahora qué nos espera asique vamos a desplazarnos por el queso a ver qué nos encontramos, cuando…
Nos ha cambiado de repente la página en la que estábamos, nosotros estábamos en el queso, no en ésta web: http://seguridadasir2012.blogspot.com/
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
XSS persistent y DOM
Bueno, vamos a ver qué es eso de los Snippets que pone al lado de Homepage y no sabemos qué es, puede que sea de nuevo otra t rampa…
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
Trusted by over 1 million members
Try Scribd FREE for 30 days to access over 125 million titles without ads or interruptions! Start Free Trial Cancel Anytime.
1. Si picamos en la imagen de nuevo, llegamos al mensaje de nuestra sesión id 2. El primer enlace a Google que nos encontramos, con tan solo acercar el ratón se activa 3. El segundo enlace a Google ya debemos picarlo, pero nos lleva de nuevo al mensaje 4. El enlace prueba’s site también se ha de picar y nos vuelve a dar el mensajito que ahora ya tanto cariño hemos cogido.
Lo que nos demuestra esto es que hay muchas maneras de esconder el código “malicioso” y sin que nos demos cuenta lo carguemos en nuestro ordenador.