YouTube home Comedy Week on YouTube
Upload

POET vs ASP.NET: DotNetNuke

cryptbe cryptbe·5 videos
121
79,711
Like     Dislike 21

Sign in to YouTube

Sign in with your Google Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to like cryptbe's video.

Sign in to YouTube

Sign in with your Google Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to dislike cryptbe's video.

Sign in to YouTube

Sign in with your Google Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to add cryptbe's video to your playlist.

Uploaded on Sep 16, 2010

In this video we show how to use POET to attack the latest version of ASP.NET. The target application is DotNetNuke. The attack consists of two phases:

1. In the first phase, we use POET to extract DotNetNuke's secret keys, and use those keys to generate a cookie to login as a super user. The same technique can be used to attack _every_ ASP.NET application.

2. In the second phase, we use Cesar Cerrudo's Token Kidnapping attack to gain SYSTEM privilege on the Windows server hosting DotNetNuke.

This research was done by Thai Duong and Juliano Rizzo. More information can be found at http://netifera.com/research.

Ratings have been disabled for this video.
Rating is available when the video has been rented.
This feature is not available right now. Please try again later.

Uploader Comments (cryptbe)

  • cryptbe

    cryptbe 2 years ago

    @Drysar0: ha! thanks for pointing out. We made a mistake because we are new to ASP.NET, and we wanted to demonstrate that error message is irrelevant, so we skimmed the documentation and thought that setting CustomErrors="Off" is the most secure.

    What we can say is the setting of CustomErrors is _irrelevant_. We presented this at EKOPARTY, and we're going to release the slide deck soon.

    · 4

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate cryptbe's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate cryptbe's comment.

Top Comments

  • fukutabe

    fukutabe 2 years ago

    Downvoted for douchey music.

    · 9

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate fukutabe's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate fukutabe's comment.

All Comments (72)

Sign in now to post a comment!
  • thomas hondema

    thomas hondema 5 months ago

    Do you still have the poet.py script?

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate thomas hondema's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate thomas hondema's comment.
  • oddstrat

    oddstrat 10 months ago

    I need the this poet.py script to test my asp.net app, urgently..

    please help me..

    i have googling a week but still not got it :(

    Thanks before

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate oddstrat's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate oddstrat's comment.
  • Natnael Lulie

    Natnael Lulie 1 year ago

    Please i have a problem in running poet.py in python script.it says insufficient argument.pls help!

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Natnael Lulie's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Natnael Lulie's comment.
  • tiagobevilaqua

    tiagobevilaqua 1 year ago

    My Listening is not good enough for that. But it took using the Shazam! - "Plain White Ts - Hey There Delilah".

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate tiagobevilaqua's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate tiagobevilaqua's comment.
    in reply to joertjoert (Show the comment)
  • tiagobevilaqua

    tiagobevilaqua 1 year ago

    My Listening is not good enough for that. But it took using the Shazam! - "Plain White Ts - Hey There Delilah".

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate tiagobevilaqua's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate tiagobevilaqua's comment.
    in reply to joertjoert (Show the comment)
  • tiagobevilaqua

    tiagobevilaqua 1 year ago

    My Listening is not good enough for that. But it took using the Shazam! - "Plain White Ts - Hey There Delilah".

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate tiagobevilaqua's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate tiagobevilaqua's comment.
    in reply to joertjoert (Show the comment)
  • joertjoert

    joertjoert 1 year ago

    Google for the lyrics. "just believe me girl sometime I'll pay the bills with this guitar" should do the trick.

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate joertjoert's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate joertjoert's comment.
    in reply to tiagobevilaqua (Show the comment)
  • Larry Viezel

    Larry Viezel 2 years ago

    So - assuming you have CustomErrors not set to "Off" and and redirectmode set to "ResponseRewrite" - does this protect you from this vulnerability? Or is this irrelevant?

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Larry Viezel's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Larry Viezel's comment.
  • Loading comment...
Loading...
Advertisement
Loading...
Working...
Sign in to add this to Watch Later