by Dmitry Kirsanov
8. November 2011 11:46
Rather short note for pen-testers.
Sometimes you have software which is contacting some web services – especially interesting when it’s about transferring files.
Sometimes some software packages, especially custom ones, made for a small number of customers, may have web services open for consuming by that software.
Pay attention to it. Sometimes there are exposed functions which could be exploited in a way that developers were not able to imagine.
For example, during my most recent pen-test, I was able to put files, delete and execute on server using only functions of exposed web service. Needless to say, I wouldn’t need any hacking tools or social engineering to penetrate networks of their customers as well.
This topic is rather omitted in CEH and similar courses, but with some base knowledge of programming you could kill the whole family of rabbits with one shot.
Also, as a side note about pen-testing. I noticed that even when you’re using simplest technique, a “no-brainer” one, customer will call you “hacker” or “genius” just to not call their developer or system administrator an idiot.