Infiltrating Corporate Intranet Like NSA — Pre-auth RCE on Leading SSL VPNs

Дата: 23.09.2019. Автор: CISO CLUB. Категории: Подкасты и видео по информационной безопасности

By Orange Tsai & Meh Chang

We disclose practical attacks capable of compromising millions of targets, including tech giants and many industry leaders. These techniques and methodologies are published in the hope that it can inspire more security researchers to think out-of-the-box; enterprises can apply immediate mitigation, and realize that SSL VPN is not merely Virtual Private Network, but also a «Vulnerable Point of your Network».

Full Abstract & Presentation Slides: https://www.blackhat.com/us-19/briefings/schedule/index.html#infiltrating-corporate-intranet-like-nsa—pre-auth-rce-on-leading-ssl-vpns-15545

CISO CLUB

Об авторе CISO CLUB

Редакция портала cisoclub.ru. Добавляйте ваш материал на сайт в разделе "Разместить публикацию".
Читать все записи автора CISO CLUB

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *