Is your network
h@Cking pr00f?
Malik Mesellem
Malik Mesellem
Ethical Hacker
MME BVBA
° 2010
Security Audits
& Training
Objective
approach
Focus is
to advise
No-nonsense
mentality
What are we afraid of?
Buffer
Overflows
DoS
Port
Scans
Trojans
Spoofing
We all have
firewalls ;)
(since 1990)
I don’t think so…
Old skool
attacks✝
So WTH(ack) is the problem?
And who is
the enemy?
A new wave of client-side threats…
+ Complex application-level attacks
+ Complex application-level attacks
Your secure (?) infrastructure
Web server
Client
DC
App server
Firewall
Hacker’s attack plan?
ATTACK
the border
= web apps
Application-level attack
SQL injection
SELECT * FROM
… WHERE …
‘ OR 1=1--
Web server DOWN ;(
Hacker’s attack plan?
ATTACK
the weakest
= humans
Client-side attack
Spear phishing
email campaign
0-day
client-side
exploits
CVE-2014-0515
Client computer DOWN ;(
You’ve just lost 2 assets!
They are inside
the network…
Pivot, seek,
and pwn!
Network-level attack
Buffer overflow
Issues in OS or
application
Application server DOWN ;(
You’ve just lost 3 assets!
Keys to your
castle…
Now they go for the GOLD!
Pass-the-Hash
Token
impersonation
GAME OVER
You’ve lost
everything $$$
GAME OVER
You’ve lost
everything $$$
OMG… we definitely need heroes!
Secure email
gateway
UTM firewall
Endpoint AV
Mobile
control
Vulnerability & patch
management
Two-factor
authentication
Web application
firewall
Server
security
IDS/IPS
Security audits
Training
Two-factor
authentication
Web application
firewall
Server
security
IDS/IPS
Malik Mesellem
Q&A?
Thank you!
Is your network
h@Cking pr00f?