Presentation is loading. Please wait.

Presentation is loading. Please wait.

HiveMind Distributed File Storage Using JavaScript Botnets Copyright 2013 Sean T. Malone.

Published byMarshall Grey Modified over 10 years ago

Similar presentations

Presentation on theme: "HiveMind Distributed File Storage Using JavaScript Botnets Copyright 2013 Sean T. Malone."— Presentation transcript:

1 HiveMind Distributed File Storage Using JavaScript Botnets Copyright 2013 Sean T. Malone

2 Sean T. Malone Principal Security Consultant (We’re Hiring!) www.seantmalone.com Copyright 2013 Sean T. Malone

3 The Problem http://www.wired.com/threatlevel/2013/06/decryption-deadline-looms/ Encryption is not Enough! Copyright 2013 Sean T. Malone

4 The Solution  Store the files on someone else’s system  Isn’t that illegal?  … usually.  Let’s do this with standard functionality  No exploits – but there are a few tricks we can use Copyright 2013 Sean T. Malone

5 It’s a Feature !  All of these techniques are used for “real” web apps  There’s nothing here to patch – removing these features breaks legitimate web apps Copyright 2013 Sean T. Malone

6 Disclaimer This is a research project, not production software. I am not responsible if you lose critical data through the use of this software. Also, I am not a lawyer. Nothing in this presentation constitutes legal advice, and I do not recommend using these concepts or this software for anything illegal. Copyright 2013 Sean T. Malone

7 Web Browser Technology Evolution CookiesJavaScriptAJAX Web Storage Web Workers Web Sockets Copyright 2013 Sean T. Malone

8 So, a web browser is a computer program that will:  Communicate with my server  Execute arbitrary code  Store arbitrary data Sounds like a Botnet Node to me! Copyright 2013 Sean T. Malone

9 Sandboxing “But I thought browser sandboxing made it almost impossible to access system data and execute code?” Yes, but I don’t care about that. I only need to run code and access data inside the sandbox, and inside the same origin. Copyright 2013 Sean T. Malone

10 Building the Botnet Copyright 2013 Sean T. Malone

11 Node Infestation Techniques  Sites you own (or at least control)  Compromised sites (i.e., persistent XSS)  URL Shorteners  Ad Distribution Networks  Anonymous proxy servers Copyright 2013 Sean T. Malone

12 Command & Control HTML5 Web Sockets “To enable Web applications to maintain bidirectional communications with server-side processes” http://www.whatwg.org/specs/web-apps/current-work/multipage/network.html Copyright 2013 Sean T. Malone

13 [When that doesn’t work, just fall back to AJAX] Copyright 2013 Sean T. Malone

14 Data Storage HTML5 Web Storage “[localStorage] is designed for storage that spans multiple windows, and lasts beyond the current session. In particular, Web applications may wish to store megabytes of user data, such as entire user-authored documents or a user's mailbox, on the client side for performance reasons.” (emphasis added) http://www.whatwg.org/specs/web-apps/current-work/multipage/webstorage.html Copyright 2013 Sean T. Malone

15 Back End MySQL (ActiveRecord) & Redis ActiveRecord is easy to use, but slow (disk database IO) Redis provides in-memory key/value storage, and let’s you expire keys after a set amount of time Copyright 2013 Sean T. Malone

16  Network Scanning  DDoS Attacks  Data Processing (Web Workers) Other botnet uses: Copyright 2013 Sean T. Malone

17 Building the File System Copyright 2013 Sean T. Malone

18 Definitions  File Block : A piece of an uploaded file with a set maximum size  Node : A web browser that is a member of the botnet  Server : The central command and control system used to manage nodes, uploads, downloads, and block directories Copyright 2013 Sean T. Malone

19 Storing a File File DataNameMIME Type Block 1Block 2Block 3Block 4Block 5 Encrypted Data Copyright 2013 Sean T. Malone

20 Storing a Block Server B1 Copyright 2013 Sean T. Malone

21 Retrieving a Block Server B1 Copyright 2013 Sean T. Malone

22 Retrieving a File File Block 1Block 2Block 3Block 4Block 5 NameMIME Type Encrypted Data Data Copyright 2013 Sean T. Malone

23 When the $#!7 Hits the Fan Copyright 2013 Sean T. Malone

24 The [_ _ _] Seizes the Server  Nodes go offline  Block replication fails  Blocks are lost  Files are unrecoverable Copyright 2013 Sean T. Malone

25 Unanswered Legal Questions  Can a website store significant amounts of data that is unnecessary for the operation of the site? Or does this constitute Unauthorized Use of a Computer?  What about bandwidth? Processing power?  Is an individual responsible for illegal content placed on his or her computer through cookies, Web Storage, and similar technologies? Copyright 2013 Sean T. Malone

26 Demo!

27 Code Release Code and slides are available at www.seantmalone.com Copyright 2013 Sean T. Malone

28

Download ppt "HiveMind Distributed File Storage Using JavaScript Botnets Copyright 2013 Sean T. Malone."

Similar presentations

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
JavaScript Breaks Free Zulfikar Ramzan Symantec Security Response Joint w/ Markus Jakobsson, Sid Stamm (Indiana Univ)

JavaScript Breaks Free Zulfikar Ramzan Symantec Security Response Joint w/ Markus Jakobsson, Sid Stamm (Indiana Univ)
PHP I.

PHP I.
Transfer Content to a Website What is FTP? File Transfer Protocol FTP is a protocol – a set of rules Designed to allow files to be transferred across.

Transfer Content to a Website What is FTP? File Transfer Protocol FTP is a protocol – a set of rules Designed to allow files to be transferred across.
What is code injection? Code injection is the exploitation of a computer bug that is caused by processing invalid data. Code injection can be used by.

What is code injection? Code injection is the exploitation of a computer bug that is caused by processing invalid data. Code injection can be used by.
Cookies, Sessions. Server Side Includes You can insert the content of one file into another file before the server executes it, with the require() function.

Cookies, Sessions. Server Side Includes You can insert the content of one file into another file before the server executes it, with the require() function.
Chapter 17: WEB COMPONENTS

Chapter 17: WEB COMPONENTS
Hands-on SQL Injection Attack and Defense HI-TEC July 21, 2013.

Hands-on SQL Injection Attack and Defense HI-TEC July 21, 2013.
PHANI VAMSI KRISHNA.MADDALI. BASIC CONCEPTS.. FILE SYSTEMS: It is a method for storing and organizing computer files and the data they contain to make.

PHANI VAMSI KRISHNA.MADDALI. BASIC CONCEPTS.. FILE SYSTEMS: It is a method for storing and organizing computer files and the data they contain to make.
CHAPTER 15 WEBPAGE OPTIMIZATION. LEARNING OBJECTIVES How to test your web-page performance How browser and server interactions impact performance What.

CHAPTER 15 WEBPAGE OPTIMIZATION. LEARNING OBJECTIVES How to test your web-page performance How browser and server interactions impact performance What.
Copyright Justin C. Klein Keane HTML 5 Security Philadelphia OWASP August, 2013.

Copyright Justin C. Klein Keane HTML 5 Security Philadelphia OWASP August, 2013.
1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.

1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.
IDAsec copyright - all rights reserved1 Web Vulnerabilities in the real world.

IDAsec copyright - all rights reserved1 Web Vulnerabilities in the real world.
The Internet Useful Definitions and Concepts About the Internet.

The Internet Useful Definitions and Concepts About the Internet.
Cryptography In Censorship Resistant Web Publishing Systems By Hema Hariharan Swati B Shah.

Cryptography In Censorship Resistant Web Publishing Systems By Hema Hariharan Swati B Shah.
CSI 400/500 Operating Systems Spring 2009 Lecture #20 – Security Measures Wednesday, April 29 th.

CSI 400/500 Operating Systems Spring 2009 Lecture #20 – Security Measures Wednesday, April 29 th.
Web server security Dr Jim Briggs WEBP security1.

Web server security Dr Jim Briggs WEBP security1.
Computer Security and Penetration Testing

Computer Security and Penetration Testing
Review for Exam 4 School of Business Eastern Illinois University © Abdou Illia, Spring 2006.

Review for Exam 4 School of Business Eastern Illinois University © Abdou Illia, Spring 2006.
Chapter 3 Applications Software: Getting the Work Done.

Chapter 3 Applications Software: Getting the Work Done.

Similar presentations

Ads by Google