![PCAP and Web Log Forensics [Sans Holiday Hack 2022 - Web Ring]](https://hdtube.cc/img/full/NDhlX0R1LVRkcF8.jpg "Смотреть PCAP and Web Log Forensics [Sans Holiday Hack 2022 - Web Ring]")
PCAP and Web Log Forensics [Sans Holiday Hack 2022 - Web Ring]
In these four challenges, I'm given a PCAP and a web log and asked to identify various attacked. I'll find the malicious IP, identify their brute force login attack, their forced browsing / directory brute force attack, and their XXE attack against the IMDS.
SANS Holiday Hack 2022 writeup: https://0xdf.gitlab.io/holidayhack2022/web
☕ Buy Me A Coffee: https://www.buymeacoffee.com/0xdf
#HolidayHack
[00:00] Introduction
[00:24] Challenge Descriptions
[00:46] Statistics - Conversations
[02:46] Statistics - Protocol Hierarchy
[03:12] Form data POST requests
[04:24] Adding TCP stream and Host columns to Wireshark
[05:40] Looking to see if brute force is successful
[06:46] Looking at Cookie in JWT.io
[07:29] Doing similar analysis on web logs
[10:00] Answering first two questions
[10:18] Third question, solving with web logs
[10:47] Fourth question background, XXE and IMDS
[11:42] Looking at POSTs to /proc
[12:57] XXE payloads and results
[14:45] Getting URL to solve
[15:17] Wrap-up
SANS Holiday Hack 2022 writeup: https://0xdf.gitlab.io/holidayhack2022/web
☕ Buy Me A Coffee: https://www.buymeacoffee.com/0xdf
#HolidayHack
[00:00] Introduction
[00:24] Challenge Descriptions
[00:46] Statistics - Conversations
[02:46] Statistics - Protocol Hierarchy
[03:12] Form data POST requests
[04:24] Adding TCP stream and Host columns to Wireshark
[05:40] Looking to see if brute force is successful
[06:46] Looking at Cookie in JWT.io
[07:29] Doing similar analysis on web logs
[10:00] Answering first two questions
[10:18] Third question, solving with web logs
[10:47] Fourth question background, XXE and IMDS
[11:42] Looking at POSTs to /proc
[12:57] XXE payloads and results
[14:45] Getting URL to solve
[15:17] Wrap-up
Комментарии:
Sky Captain & the World of Tomorrow : The Original 6 Minute Short
Ghosts of Vermont URBEX / Sky's the Limit Videos
Networking and careers support - Accounting and Finance
University of Staffordshire
![PCAP and Web Log Forensics [Sans Holiday Hack 2022 - Web Ring]](https://hdtube.cc/img/upload/NDhlX0R1LVRkcF8.jpg "PCAP and Web Log Forensics [Sans Holiday Hack 2022 - Web Ring]")
مسلسل مزاج الخير HD - الحلقة السادسة 6 - بطولة مصطفى شعبان
The Gate Media Group
Henry says congrats! ️ #periods #period positive #couple
Nadya Okamoto
Fellowship, Diploma & MSc After BDS
kaizen dental
!["Keith" by Jake Chudnow [HD]](https://hdtube.cc/img/upload/OF9HLTlob1p4bDc.jpg "\"Keith\" by Jake Chudnow [HD]")
"Keith" by Jake Chudnow [HD]
Jake Chudnow
POOKIE'S REQUIEM (LYRICS) | SAILORR
gift.smangaliso
MÜLKİYE'DE OKUMAK | ANKARA ÜNİVERSİTESİ | MÜLKİYE HAKKINDA MERAK EDİLEN HER ŞEY
Mehmet Talha Şişman
Президент России прибыл в приграничный регион РФ на фоне освобождения города Суджа
Baku TV | RU
55 лет назад
Задача РАЗГРОМИТЬ противника Путин в военной форме посетил пункт управления Курской группировкой
Сила Слова
55 лет назад
HYPE REALITY 3 Чимаев VS Царукян ПОЛУФИНАЛ Массовый конфликт после боя 14
Hype Fighting Championship
55 лет назад
