Foundstone Hacme Books v2. 0™ Strategic Secure Software Training Application User and Solution Guide Author: Roman Hustad, Foundstone Professional. Hacme Bank. From OWASP. Redirect page. Jump to: navigation, search. Redirect to: OWASP O2 Platform/WIKI/Using O2 on: HacmeBank. Foundstone Hacme Books™ is a learning platform for secure software development and is targeted at software developers, application.

Author: Mele Zulkira
Country: Belarus
Language: English (Spanish)
Genre: Finance
Published (Last): 12 November 2010
Pages: 448
PDF File Size: 1.79 Mb
ePub File Size: 10.60 Mb
ISBN: 371-5-61131-400-3
Downloads: 83253
Price: Free* [*Free Regsitration Required]
Uploader: Maulrajas

This is the starting point of everything we will be doing during this session. After successfully starting the tomcat server, open the web browser and go to http: So the value we get would look like:. The accounts must be created on the system so it is obvious that we will create bogus accounts, here I am going to create two accounts named test and hacker. Leave a Reply Cancel reply Enter your comment here Most developers effectively check for administrator privileges within the escalated code blocks.

Hacme Bank – OWASP

Generically, it will look like this:. I used the Windows binary executable file available here: The screen does not ask for any information from the user except the username.

If we stack the codes one on top of the other, we will get some interesting information that will be very helpful to manipulate the discounts. Fill in your details below or click an icon to log in: Elevated access to a system may result in disaster ranging from lost data to bringing the system down for some time.

This has the ability to cause a serious security issue. The last four letters in every value are the same. To start this attack we need some additional information. To install the application just double click on the exe file and follow the instructions to install the Hacme book application. You are commenting using your Facebook account.


This can be very tricky and there is an endless list of operations that can be performed by using this attack. A careful look on gooks codes below reveals some interesting information. Second, there is no horizontal privilege check. Access control is one of the major security concerns in any application.

Hacme Bank

Now that we have the method, it is bolks to get as much discount as we want and whatever we use would be validated because we know how it works and we can put in the values straight in a custom HTTP request.

This can be used when we need some user interaction to perform a booka activity on the user system. New posts for Hacme Books will post every Monday. Hacme Books comes in three formats: You are commenting using your Twitter account. Normally, the security side of things consists of tools that are used by the testers and quality control team after the programmers write the code and develop the application. This is the fourth in a series of five posts for bookss vulnerable web application Hacme Books.

You are commenting using your Twitter account. This is the first in a series of three posts for the vulnerable web application Hacme Books.

All I need to do is that go to the site and add the books I want to my shopping cart. So the theory was correct and we were able to bypass the access token needed to view the previous orders placed by a user.

The first was that developer left comments in source code that provided the attacker with the clues necessary to launch the attack. Hacme Books The Security of web applications is a big concern in today rapidly growing size of the Internet. Email required Address never made public. Fill in your details below or click an icon to log in: If it is not the installation will be aborted booka setup will take you to the Java download site, download it from there and then again run the installation package.


You are commenting using your Facebook account. Email required Address never made public. Before that we have to start the web server that will display the application pages. So the developers use a random code to identify the percentage of the discount on any particular item. So instead of the user who made purchases, the attacker was able to view the data by sending a manipulated http request in URL of the application page.

Hacme Books v – Techist – Tech Forum

Home About Contact Us. This is the hace in a series five posts for the vulnerable web application Hacme Books. You are commenting using your WordPress.

After a careful analysis it is not hard to figure out that the developer has used a simple substitution algorithm to get the values of the discount to be given.

The other letters can be replaced by their corresponding numbers derived from the above rule. In this case, I, as an attacker, will try to look at my profile or any previous order. You are commenting using your Facebook account. If the page times out and does not load check your browser proxy settings! New posts for Hacme Books will occur every Monday.

First I will logon with the test account, we have not made any purchase using this account, so if we click on view orders we will see the screen with message that explains that this user has never purchased anything.

If we have a look at the result, the screen contains the credit card numbers as well that can be misused. This entry was posted in Uncategorized.