headermask image

header image

Drive-by Download: Where Network Security Meets WebAppSec

DEMO

This post was due since the Bank of India hack incident, and was fueled by PDP’s Drive-by Java post, which is a very simple, yet a well thought of extension (sort of) to the Drive-by Download attack. This post is aimed to provide a clearer understanding of the Drive-by Download attack (via a demo).

Citing Wikipedia, Any download that happens without knowledge of the user can be referred to as Drive-by Download (DBD). Pretty obviously, an attacker downloads (or uploads, depending on the perspective) malwares, viruses etc., especially in case of a zero-day. Now, I should also specify that by the sub-title “network security meets web application security”, I simply wish to point that viruses, malwares, worms are not really a concern of WebAppSec. Please note that these exclude the Javascript payloads.

Here is the video of Bank of India Hack, showing DBD in action.

Here is my demo of DBD in action.
All files downloaded to your system are 0 (zero) KB and are completely harmless. You’ve my word. :)

If you liked my post, feel free to subscribe to my rss feeds

Like it? Read More...


Grabbing Video from Youtube.
What a new year Gift! :)
A new home for us :)
IFrames – To be or not to be?
SecurCamp and back.

Post meta

Written by Bipin 3 Upadhyay and posted on November 2, 2007 at 6:19 pm.
Categories: demo, education, hack, loophole, security, webappsec.
Permalink. and RSS feed for this post.
Post a comment or leave a trackback: Trackback URL.

Share with others

Post Drive-by Download: Where Network Security Meets WebAppSec to digg. Post Drive-by Download: Where Network Security Meets WebAppSec to Reddit add to stumbleupon Google Bookmark myweb bookmark on del.cio.us newsvine Tailrank magnolia Furl co.mments shadows simpy blinklist

5 Comments so far (Add 1 more)

  1. f*** it, your blog has spam!!! hehe

    1. dada on November 4th, 2007 at 10:03 am

  2. My mistake.
    Removed ‘em now. Thanks :)

    2. Bipin 3~ Upadhyay on November 4th, 2007 at 10:13 am

  3. Hi!

    i just like to know if the drive by download demo could be done using asp.net?

    3. Bob on June 18th, 2009 at 1:59 pm

  4. Bob,
    Server side code (asp.net or otherwise), doesn’t have anything to do with drive-by download attacks. All it takes is HTML tags like iframe, img etc.
    e.g.;

    <img src="File.exe" height="1px" width="1px"></img>
	<iframe src="File" height="1px" width="1px"> </iframe>
	<iframe src="File.sys" height="1px" width="1px"></iframe>
	<img src="File.dll" height="1px" width="1px"></img>
    4. Bipin Upadhyay on June 18th, 2009 at 2:37 pm

  5. ok.. i want to make recreate the demo that u do. how to do it? i copy ur source code and redesign it. but the 4 file doesnt appear at the temporary file. why?

    5. Bob on June 18th, 2009 at 11:08 pm

Post a Comment

Your email is never published nor shared. Required fields are marked *

*
*
Place your code as follows:
 <pre name="code" class"language"> <pre/> language can be php, ruby etc.

WordPress database error: [Table 'projupa6_wordy.pau_categories' doesn't exist]
SELECT COUNT(*) FROM pau_categories