{"id":1333,"date":"2021-01-23T14:46:15","date_gmt":"2021-01-23T14:46:15","guid":{"rendered":"http:\/\/system-error-message.com\/?p=1333"},"modified":"2021-01-23T15:58:50","modified_gmt":"2021-01-23T15:58:50","slug":"rawsec-virtual-meetup-01","status":"publish","type":"post","link":"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/","title":{"rendered":"RawSEC Virtual Meetup #01"},"content":{"rendered":"\n

On the night of 23’rd January 2021 RawSEC gathered online due to covid-19, holding the usual talks but without the pleasure of promotions, food, networking and hangout fun. Sadly this is the way until end of year when covid-19 finally disappears<\/p>\n\n\n\n

\nhttps:\/\/www.youtube.com\/watch?v=-UAA4VpVHx8\n<\/div>
Catch it here<\/figcaption><\/figure>\n\n\n\n
\nhttps:\/\/www.youtube.com\/watch?v=ML0oow3ULrA\n<\/div><\/figure>\n\n\n\n

Speakers:<\/p>\n\n\n\n

\u201cHow I found Blind SQLi in PrestaShop (CVE-2020-15160)\u201d – Sheikh Rizan<\/p>\n\n\n\n

\u201cTPOT your home\u201d – Mohd Zahir<\/p>\n\n\n\n

\u201cTips using ida pro like a Pro\u201d – Mohammad Azam<\/p>\n\n\n\n

Summary<\/h2>\n\n\n\n

T-POT your home – Mohd Zahir<\/em>
T-POT comes from honeypot, an upgraded platform that combines a few different honeypots (all in one honeypot). It attracts attackers to hack\/attack and lets you distract them away from other things. Proving that certain attacks exist and collecting data. The T-POT is filled with all sorts of sensors and tools to help detect different attacks. It can be configured with different components to target different types of attacks and for different kinds of monitoring.

One way it works if via ARP spoofing. When an unused IP is used, it is redirected. Automated tools can reboot regularly to start fresh. It is very important to isolate your T-POT and honeypot setup from the rest of your network. Use vlans to help set it up and place the bait before your firewall after your NAT exposed to internet (like using DMZ).<\/p>\n\n\n\n

How i found Blind SQLi in PrestaShop (CVE-2020-15160)- Sheikh Rizan<\/em>
Whitebox testing being opensourced from prestashop. Setting up through a VM. Using greybox approach to find vulnerabilities. Many CMS Websites use loads of insertion points (sending data through code to be added to database). Each field and page requires a request. Extensive testing and checking the database can help reveal this. Each entry is tested with the same code using special characters to see which entry is unfiltered and which is.

When a bug is found, make sure to contact the source to get it fixed. Whitebox testing is better, less duplicates than blackbox testing.<\/p>\n\n\n\n

\u201cTips using ida pro like a Pro\u201d – Mohammad Azam<\/em>
Using interactive disassembler pro to analyse malware. Disassemblers can be used to convert binary into source code. Not only do you disassemble but also analyse using software. IDA analyses a lot of aspects of the code including its flow in a graphical and easy to understand way.<\/p>\n\n\n\n

\n\n\n\n

Its virtual, not physical, its all in your head therefore it didnt really happen \ud83d\ude44<\/p>\n","protected":false},"excerpt":{"rendered":"

On the night of 23’rd January 2021 RawSEC gathered online due to covid-19, holding the usual talks but without the pleasure of promotions, food, networking and hangout fun. Sadly this is the way until end of year when covid-19 finally disappears Speakers: \u201cHow I found Blind SQLi in PrestaShop (CVE-2020-15160)\u201d – Sheikh Rizan \u201cTPOT your… Read More »RawSEC Virtual Meetup #01<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":448,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"neve_meta_sidebar":"","neve_meta_container":"","neve_meta_enable_content_width":"","neve_meta_content_width":0,"neve_meta_title_alignment":"","neve_meta_author_avatar":"","neve_post_elements_order":"","neve_meta_disable_header":"","neve_meta_disable_footer":"","neve_meta_disable_title":"","footnotes":""},"categories":[12,3,4],"tags":[],"class_list":["post-1333","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-event","category-rawsec","category-security"],"aioseo_notices":[],"yoast_head":"\nRawSEC Virtual Meetup #01 - Me Website!<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"RawSEC Virtual Meetup #01 - Me Website!\" \/>\n<meta property=\"og:description\" content=\"On the night of 23’rd January 2021 RawSEC gathered online due to covid-19, holding the usual talks but without the pleasure of promotions, food, networking and hangout fun. Sadly this is the way until end of year when covid-19 finally disappears Speakers: \u201cHow I found Blind SQLi in PrestaShop (CVE-2020-15160)\u201d – Sheikh Rizan \u201cTPOT your… Read More »RawSEC Virtual Meetup #01\" \/>\n<meta property=\"og:url\" content=\"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/\" \/>\n<meta property=\"og:site_name\" content=\"Me Website!\" \/>\n<meta property=\"article:published_time\" content=\"2021-01-23T14:46:15+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-01-23T15:58:50+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/cdn.system-error-message.com\/wp-content\/uploads\/2019\/12\/IMG_5365.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1280\" \/>\n\t<meta property=\"og:image:height\" content=\"1280\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"System Error Message\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@system_error\" \/>\n<meta name=\"twitter:site\" content=\"@system_error\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"System Error Message\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"RawSEC Virtual Meetup #01 - Me Website!","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/","og_locale":"en_US","og_type":"article","og_title":"RawSEC Virtual Meetup #01 - Me Website!","og_description":"On the night of 23’rd January 2021 RawSEC gathered online due to covid-19, holding the usual talks but without the pleasure of promotions, food, networking and hangout fun. Sadly this is the way until end of year when covid-19 finally disappears Speakers: \u201cHow I found Blind SQLi in PrestaShop (CVE-2020-15160)\u201d – Sheikh Rizan \u201cTPOT your… Read More »RawSEC Virtual Meetup #01","og_url":"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/","og_site_name":"Me Website!","article_published_time":"2021-01-23T14:46:15+00:00","article_modified_time":"2021-01-23T15:58:50+00:00","og_image":[{"width":1280,"height":1280,"url":"https:\/\/cdn.system-error-message.com\/wp-content\/uploads\/2019\/12\/IMG_5365.jpg","type":"image\/jpeg"}],"author":"System Error Message","twitter_card":"summary_large_image","twitter_creator":"@system_error","twitter_site":"@system_error","twitter_misc":{"Written by":"System Error Message","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/#article","isPartOf":{"@id":"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/"},"author":{"name":"System Error Message","@id":"https:\/\/system-error-message.com\/#\/schema\/person\/d9e7ed7a395faa8bf46774b481a162f5"},"headline":"RawSEC Virtual Meetup #01","datePublished":"2021-01-23T14:46:15+00:00","dateModified":"2021-01-23T15:58:50+00:00","mainEntityOfPage":{"@id":"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/"},"wordCount":418,"commentCount":0,"publisher":{"@id":"https:\/\/system-error-message.com\/#\/schema\/person\/d9e7ed7a395faa8bf46774b481a162f5"},"image":{"@id":"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/#primaryimage"},"thumbnailUrl":"https:\/\/cdn.system-error-message.com\/wp-content\/uploads\/2019\/12\/IMG_5365.jpg","articleSection":["Event","RAWSEC","Security"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/","url":"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/","name":"RawSEC Virtual Meetup #01 - Me Website!","isPartOf":{"@id":"https:\/\/system-error-message.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/#primaryimage"},"image":{"@id":"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/#primaryimage"},"thumbnailUrl":"https:\/\/cdn.system-error-message.com\/wp-content\/uploads\/2019\/12\/IMG_5365.jpg","datePublished":"2021-01-23T14:46:15+00:00","dateModified":"2021-01-23T15:58:50+00:00","breadcrumb":{"@id":"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/#primaryimage","url":"https:\/\/cdn.system-error-message.com\/wp-content\/uploads\/2019\/12\/IMG_5365.jpg","contentUrl":"https:\/\/cdn.system-error-message.com\/wp-content\/uploads\/2019\/12\/IMG_5365.jpg","width":1280,"height":1280,"caption":"rawsec"},{"@type":"BreadcrumbList","@id":"https:\/\/system-error-message.com\/index.php\/rawsec-virtual-meetup-01\/2021\/01\/23\/amp\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/system-error-message.com\/"},{"@type":"ListItem","position":2,"name":"RawSEC Virtual Meetup #01"}]},{"@type":"WebSite","@id":"https:\/\/system-error-message.com\/#website","url":"https:\/\/system-error-message.com\/","name":"Me Website!","description":"Me Website! Me Website! Whats with Me Website!","publisher":{"@id":"https:\/\/system-error-message.com\/#\/schema\/person\/d9e7ed7a395faa8bf46774b481a162f5"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/system-error-message.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":["Person","Organization"],"@id":"https:\/\/system-error-message.com\/#\/schema\/person\/d9e7ed7a395faa8bf46774b481a162f5","name":"System Error Message","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/system-error-message.com\/#\/schema\/person\/image\/","url":"https:\/\/system-error-message.com\/wp-content\/litespeed\/avatar\/f0ab140f6781b50fc34de4aa56f1f5e7.jpg?ver=1776266087","contentUrl":"https:\/\/system-error-message.com\/wp-content\/litespeed\/avatar\/f0ab140f6781b50fc34de4aa56f1f5e7.jpg?ver=1776266087","caption":"System Error Message"},"logo":{"@id":"https:\/\/system-error-message.com\/#\/schema\/person\/image\/"},"description":"Im a programmer and cyber security enthusiast, ex-hacker and interested in optimisation","sameAs":["http:\/\/system-error-message.com","https:\/\/x.com\/system_error","https:\/\/www.youtube.com\/channel\/UCIi4ErD_5A0Q9BNX1mrr-cw\/"]}]}},"_links":{"self":[{"href":"https:\/\/system-error-message.com\/index.php\/wp-json\/wp\/v2\/posts\/1333","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/system-error-message.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/system-error-message.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/system-error-message.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/system-error-message.com\/index.php\/wp-json\/wp\/v2\/comments?post=1333"}],"version-history":[{"count":6,"href":"https:\/\/system-error-message.com\/index.php\/wp-json\/wp\/v2\/posts\/1333\/revisions"}],"predecessor-version":[{"id":1387,"href":"https:\/\/system-error-message.com\/index.php\/wp-json\/wp\/v2\/posts\/1333\/revisions\/1387"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/system-error-message.com\/index.php\/wp-json\/wp\/v2\/media\/448"}],"wp:attachment":[{"href":"https:\/\/system-error-message.com\/index.php\/wp-json\/wp\/v2\/media?parent=1333"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/system-error-message.com\/index.php\/wp-json\/wp\/v2\/categories?post=1333"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/system-error-message.com\/index.php\/wp-json\/wp\/v2\/tags?post=1333"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}