Upload File

Download - Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Transcript
Page 1: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Deanonymization and total espionage

Dmitry «Bo0oM» Boomov

Page 2: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Tits and

kittens.

Hopefully, now

you like my

report.

Page 3: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Deanonymization

Passive Active

Page 4: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Password retrieval

Page 5: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Password retrieval

Page 6: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Getting information from email

Page 7: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Getting information from email

Page 8: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Getting information from email

Page 9: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Getting information from phone. Viber

Page 10: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Getting information from phone. Whatsapp

Page 11: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Getting information from phone. Banks

Page 12: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Getting information from phone. Banks

Page 13: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Getting information from phone

Page 14: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Getting information from phone

http://numbuster.com/

Page 15: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Find friends

Page 16: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

← Anonist

Page 17: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Apps

https://developers.facebook.com/

Page 18: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Apps

https://vk.com/editapp?act=create

Page 19: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Apps

Demo: bo0om.ru/zn2014/vk/1/

Page 20: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Online users

https://letters.yandex.ru/promo

Page 21: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Clickjacking

Page 22: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Clickjacking

Demo: bo0om.ru/zn2014/vk/2/

Page 23: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Clickjacking

Demo: bo0om.ru/zn2014/vk/3/

Page 24: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

CSRF + XSS + BUGS = PROFIT

Page 25: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Click, click…

Page 26: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Click, click…

<a href='tel://1234567890'>Click me</a>

Page 27: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Callback

Page 28: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Callback

Thx @black2fan ;)

Page 29: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Social detector

Demo: bo0om.ru/zn2014/sd/

Page 30: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Вate of birth

Page 31: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Nicknames

Page 32: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Nicknames

Page 33: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Friends and relatives

Page 34: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Friends and relatives

Page 35: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Friends and relatives

Page 36: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Tinfoleak

http://vicenteaguileradiaz.com/tools/

Page 37: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Exif

Page 38: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Analytics

Page 39: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Analytics

Page 40: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)
Page 41: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Banners

Page 42: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Social buttons

Page 43: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

BIG DATA

http://bo0om.ru/zn2014/wtf/

Page 44: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

GEO

https://maps.google.com/locationhistory/

Page 45: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Cookie Matching

Specifically, when creating a new cookie, it uses the following storage mechanisms when available:

- Standard HTTP Cookies - Local Shared Objects (Flash Cookies)- Silverlight Isolated Storage - Storing cookies in RGB values of auto-generated, force-cached PNGs using HTML5 Canvas tag to read pixels (cookies) back out- Storing cookies in Web History - Storing cookies in HTTP ETags - Storing cookies in Web cache - window.name caching

- Internet Explorer userData storage- HTML5 Session Storage - HTML5 Local Storage - HTML5 Global Storage - HTML5 Database Storage via SQLite- HTML5 IndexedDB

- Java JNLP PersistenceService- Java CVE-2013-0422 exploit (applet sandbox escaping)

http://samy.pl/evercookie/

Page 46: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Js: onflash: on

Js: onflash: on

Js: onflash: on

Js: onflash: on

Js: onflash: on

Js: onflash: on

Js: offflash: off

Page 47: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Providers

http://imarker.ru/

Page 48: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Evil

Page 49: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)
Page 50: Bo0oM - Deanonymization and total espionage (ZeroNights, 2014)

Twi: @i_bo0om


Top Related

Deobfuscation and beyond (ZeroNights, 2014)
Deobfuscation and beyond (ZeroNights, 2014)
Deanonymization in the Bitcoin P2P Networkoptnetsci.cise.ufl.edu/class/cis6930sp20/Slides... · Bitcoin mixing (Möser, Malte. “Anonymity of Bitcoin Transactions An Analysis of
Deanonymization in the Bitcoin P2P Networkoptnetsci.cise.ufl.edu/class/cis6930sp20/Slides... · Bitcoin mixing (Möser, Malte. “Anonymity of Bitcoin Transactions An Analysis of
Browser Fuzzing with a Twist (and a Shake) -- ZeroNights 2015
Browser Fuzzing with a Twist (and a Shake) -- ZeroNights 2015
An Empirical Analysis of Traceability in the Monero Blockchain€¦ · Many privacy-sensitive transactions are vulnerable to deanonymization More than a thousand transactions per
An Empirical Analysis of Traceability in the Monero Blockchain€¦ · Many privacy-sensitive transactions are vulnerable to deanonymization More than a thousand transactions per
Circuit Fingerprinting Attacks: Passive Deanonymization of ... · Passive Deanonymization of Tor Hidden Services ... as opposed to the general web. We evaluate WF at-tacks on the
Circuit Fingerprinting Attacks: Passive Deanonymization of ... · Passive Deanonymization of Tor Hidden Services ... as opposed to the general web. We evaluate WF at-tacks on the
VolgaCTF | Bo0oM - DNS and attacks
VolgaCTF | Bo0oM - DNS and attacks
Telecom security from ss7 to all ip all-open-v3-zeronights
Telecom security from ss7 to all ip all-open-v3-zeronights
BLAC: Revoking Repeatedly Misbehaving …...2 · BLAC: Revoking Repeatedly Misbehaving Anonymous Users Without Relying on TTPs too punitive—deanonymization (or linking) is unreasonably
BLAC: Revoking Repeatedly Misbehaving …...2 · BLAC: Revoking Repeatedly Misbehaving Anonymous Users Without Relying on TTPs too punitive—deanonymization (or linking) is unreasonably