a new look into web application reconnaissance
DESCRIPTION
Presentation by Jurgens van der Merwe at ZaCon 2 in 2010. This presentation is about Selenium, a browser automation framework and its applications in web reconnaissance. Examples of using Selenium with facebook are discussed.TRANSCRIPT
![Page 1: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/1.jpg)
![Page 2: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/2.jpg)
Jurgens van der Merwe ([email protected]) Junior analyst with SensePost Interests:
Information Security Innovative Technologies Music Skateboarding etc
![Page 3: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/3.jpg)
![Page 4: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/4.jpg)
![Page 5: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/5.jpg)
![Page 6: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/6.jpg)
![Page 7: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/7.jpg)
Purpose Interface Speed
Value Attack surface Complexity
![Page 8: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/8.jpg)
Purpose Interface Speed
Value Attack surface Complexity
![Page 9: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/9.jpg)
Browser Automation Framework for Testing Web Applications Consists of 3 parts :
Selenium IDE Selenium Remote Control Selenium Grid
For this talk we will focus on the core library and functionality of Selenium Framework
![Page 10: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/10.jpg)
Automation The ability to trigger sequential events without the need of manual interaction
Harvesting The ability to gather large datasets of common objects over a period of time
Extraction The ability to extract key elements from an entity in order to obtain valuable information regarding a specific target
![Page 11: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/11.jpg)
Over 700 billion minutes a month = 19865 lifetimes
![Page 12: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/12.jpg)
![Page 13: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/13.jpg)
Behind the ‘Sannie’ experiment
Purpose Showing that bots can act like humans too.
Goal Following logical pathways to mimic human interaction.
Demo
![Page 14: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/14.jpg)
The mass friendship harvest
Purpose Harvest user relationships
Goal Determining the theory behind: { friends of a friend, of a friend, of a friend, of a friend, of a friend, of a friend, of a friend, of a friend, of a friend…. }
![Page 15: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/15.jpg)
The Facebook Profiler
Purpose Creating my own personal address book
Goal Extracting user information from facebook profiles
Demo
![Page 16: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/16.jpg)
Web Simulator Supports various browsers like
Mozilla Firefox Google Chrome Opera Safari Internet Explorer
Interacts with the Document Object Model (DOM)
![Page 17: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/17.jpg)
Latency!!! Super fast ZA internet. Having to wait for the web element to be completely constructed within the DOM.
Complexity of the application Understanding the logic behind the application.
![Page 18: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/18.jpg)
Selenium is a cool technology for interacting with any Web 2.0 application.
Impersonates human-‐like interaction with a web application by following logical paths.
Ability to rely on the browser’s DOM rather than the source of a web page when extracting information.
Allow you to actually see the browser execute your code and navigate through the targeted application.
The ability to test the functionality of the web application through various browsers.
![Page 19: A new look into web application reconnaissance](https://reader030.vdocuments.us/reader030/viewer/2022020217/5466450caf795992368b510a/html5/thumbnails/19.jpg)
???????????????????????????????????????????????????????
Questions
???????????????????????????????????????????????????????