open source web server identification in the ipv4 address
play

Open-Source Web Server Identification In The IPv4 Address Space: - PowerPoint PPT Presentation

Jan 01, 2023 •134 likes •315 views

Open-Source Web Server Identification In The IPv4 Address Space: Side-Channeling HTTP Ruben van der Ham 04.07.2019 Background Pipeline Overview Identification Evaluation Conclusion Background RFC2616 Server:

  1. Open-Source Web Server Identification In The IPv4 Address Space: Side-Channeling HTTP Ruben van der Ham • 04.07.2019

  2. Background ● Pipeline ● Overview Identification ● Evaluation ● Conclusion ●

  3. Background RFC2616 Server: CERN/3.0 libwww/2.17 ● Purpose not in the spec ● Present on ~81.6% of observed HTTPS servers ● -> Can we identify the other ~18.4%? ●

  4. Motivation Why? Why not? Discloses vulnerabilities Script kiddies don’t care ● ● Patch cycle estimation about the Server header, ● Determine effectiveness of they bruteforce ● hidden banners Determine if servers are ● ‘lying’

  5. 1. The dumping run Pipeline 2. The identification run

  6. Pipeline - Dumping Old approach Zmap -> scanTool -> CSV/SQLite ● New approach Zmap -> Zgrab -> Zgrab2db -> SQLite DB ●

  7. Pipeline - Dumping

  8. Pipeline - Identification identificationTool Golang ● CPU bound ● Basic identification ● geoIP ● CVE+CVSS ●

  10. Baseline determination ● Identification Request ●

  11. Identification: baseline Docker containers, debian based compiled from source ● Concurrent Golang tool fires requests and generates overview ● HTTP(S) servers - Nginx - 1.16.0, 1.14.0, 1.9.0, 1.6.0 - Apache 2.4.39 - Lighttpd 1.4.53

  12. Identification: Requests Request Identification Properties Index Date header pos, Default index, Etag Delete Date header pos, Status code, status text, Default error page Malformed HTTP Status code, HTTP version, Etag Random request type Date header pos, HTTP version, Status code, Default error page

  13. Planning ● Evaluation Results ●

  14. Evaluation - Planning Pipeline Wasted time with scanTool. Could have invested resources in an all-in-one tool. Identification Very limited -> needs to cover more versions and types General More thinking less programming

  15. Evaluation - Numbers HTTP Amount of servers in Zmap: 43M delete 34M Total amount of servers: 36M index 36M malformed http 34M random request type 33M HTTPS Amount of servers in Zmap: 45M Total amount of servers: 29M? delete 24M index 25M malformed http 21M random request type 24M

  16. It seems to be effective to hide ● the banner Conclusion This needs much more research ● More (statistics) will follow... ●

  17. Thank you for your time! Questions, feedback, remarks?

Recommend

Kea An Open-Source DHCP Server Stephen Morris Internet Systems Consortium stephen@isc.org ISC

Kea An Open-Source DHCP Server Stephen Morris Internet Systems Consortium stephen@isc.org ISC

Kea An Open-Source DHCP Server Stephen Morris Internet Systems Consortium stephen@isc.org ISC DHCP Open-Source First version released in 1997 Default DHCP software in many distributions Server/relay/client for IPv4 & IPv6

303 views • 13 slides
Inferring Internet Server IPv4 and IPv6 Address Relationships Robert Beverly, Arthur Berger ,

Inferring Internet Server IPv4 and IPv6 Address Relationships Robert Beverly, Arthur Berger ,

Inferring Internet Server IPv4 and IPv6 Address Relationships Robert Beverly, Arthur Berger , Nicholas Weaver , Larry Campbell Naval Postgraduate School Akamai ICSI/UCSD rbeverly@nps.edu, awberger@mit.edu February 7, 2013

323 views • 19 slides
Exhaustion of IPv4 Address in 2010 Exhaustion of IPv4 Address in 2010 Associate Professor Dr.

Exhaustion of IPv4 Address in 2010 Exhaustion of IPv4 Address in 2010 Associate Professor Dr.

802.16 IP Telephony Lab Exhaustion of IPv4 Address in 2010 Exhaustion of IPv4 Address in 2010 Associate Professor Dr. Quincy Wu solomon@ipv6.club.tw Graduate Institute of Communication Engineering National Chi Nan University 1 1

943 views • 77 slides
AFRINIC Policy Update Proposal: Number Resource Transfers This proposal calls for IPv4

AFRINIC Policy Update Proposal: Number Resource Transfers This proposal calls for IPv4

AFRINIC Policy Update Proposal: Number Resource Transfers This proposal calls for IPv4 address transfers to be put in place so that African IP network operators can benefit from an open IPv4 address market when the AFRINIC IPv4 address

242 views • 6 slides
Two Problems 1. Global IPv4 address depletion 2. Private IPv4 address depletion depletion

Two Problems 1. Global IPv4 address depletion 2. Private IPv4 address depletion depletion

Two Problems 1. Global IPv4 address depletion 2. Private IPv4 address depletion depletion a.k.a. completion Scenarios Focus work on most significant, and most solvable, scenarios Solving every possible design iteration is

428 views • 9 slides
1. IPv6 address (abbreviated representation) 2. IPv6 address (abbreviation and expansion

1. IPv6 address (abbreviated representation) 2. IPv6 address (abbreviation and expansion

1. IPv6 address (abbreviated representation) 2. IPv6 address (abbreviation and expansion practice) 3. IPv6 advantages over IPv4 4. IPv4 address structure 5. IPv6 address structure IPv4 Address 32 bit address (computer stores information

655 views • 53 slides
Kaazing Gateway: An Open Source HTML 5 Websocket Server HTML 5 Websocket Server Speaker

Kaazing Gateway: An Open Source HTML 5 Websocket Server HTML 5 Websocket Server Speaker

Kaazing Gateway: An Open Source HTML 5 Websocket Server HTML 5 Websocket Server Speaker Jonas Jacobi Co-Founder: Kaazing Co-Author: Pro JSF and Ajax, Apress Agenda Real-Time Web? Why Do I Care? Scalability and

751 views • 38 slides
IPv4 address exhaustion and IPv6 Glen Turner 2008-11-21 AIS IT managers' meeting aar net

IPv4 address exhaustion and IPv6 Glen Turner 2008-11-21 AIS IT managers' meeting aar net

IPv4 address exhaustion and IPv6 Glen Turner 2008-11-21 AIS IT managers' meeting aar net Australia's Academic and Research Network IPv4 address format Internet protocol v4 addresses are 32 bits long They are divided into three parts

1.18k views • 69 slides
IPv6 @ Navneet Nagori Network Engineering Why IPv6 IPv4 exhaustion Cost - Buying

IPv6 @ Navneet Nagori Network Engineering Why IPv6 IPv4 exhaustion Cost - Buying

IPv6 @ Navneet Nagori Network Engineering Why IPv6 IPv4 exhaustion Cost - Buying address costly , Provider supported NAT, Abuse Identification, Port exhaustion, User share address New Devices IPTV, Mobile Network, home

528 views • 21 slides
Introduction to IPv6 - I Basics of IPv6 Alvaro Vives | 26 June 2017 | Workshop on Open Source

Introduction to IPv6 - I Basics of IPv6 Alvaro Vives | 26 June 2017 | Workshop on Open Source

Introduction to IPv6 - I Basics of IPv6 Alvaro Vives | 26 June 2017 | Workshop on Open Source Solutions for the IoT Contents Digital Data Transmission Packet-Switched Networks Layered Model IPv4 and IPv6 basics - IPv4 Header -

1.38k views • 32 slides
IPv6 Yourself Jumping Bean What is IPv6? Replacement for IPv4, 128 bit IP address

IPv6 Yourself Jumping Bean What is IPv6? Replacement for IPv4, 128 bit IP address

IPv6 Yourself Jumping Bean What is IPv6? Replacement for IPv4, 128 bit IP address IPv4 allowed for 4.3 billion possible addresses, IPv6 allows for 340 undecillion addresses 3.40E38, 7.9E28 more than IPv4 addresses, ~ 4.8x10

1.07k views • 28 slides
Source Address Validation Improvements BoF 70 th IETF meeting, Vancouver 70 th IETF meeting,

Source Address Validation Improvements BoF 70 th IETF meeting, Vancouver 70 th IETF meeting,

Source Address Validation Improvements BoF 70 th IETF meeting, Vancouver 70 th IETF meeting, Vancouver December 5, 2007 Todays Agenda Problems to solve, focus for SAVI 10 min Danny McPherson, Christian Vogt IPv4 Source Guard An

335 views • 9 slides
Mobicents 2.0 The Open Source Communication Platform DERUELLE Jean JBoss, by Red Hat 138

Mobicents 2.0 The Open Source Communication Platform DERUELLE Jean JBoss, by Red Hat 138

Mobicents 2.0 The Open Source Communication Platform DERUELLE Jean JBoss, by Red Hat 138 AGENDA > VoIP Introduction > VoIP Basics > Mobicents 2.0 Overview SIP Servlets Server JAIN SLEE Server Media Server

624 views • 43 slides
Labcourse Routerlab Internet Protocol Version 6 (IPv6) IPv4 Shortcomings IPv4

Labcourse Routerlab Internet Protocol Version 6 (IPv6) IPv4 Shortcomings IPv4

Labcourse Routerlab Internet Protocol Version 6 (IPv6) IPv4 Shortcomings IPv4 addresses have 32 bits only not enough for 1 IP address per person dynamic IPs, NAT, Manual configuration time consuming (in larger

655 views • 16 slides
Make Money With Open Source What is Open Source? Community Free software vs. open source

Make Money With Open Source What is Open Source? Community Free software vs. open source

Make Money With Open Source What is Open Source? Community Free software vs. open source Licenses: GPL vs. LGPL vs. MIT/Apache Foundations: Linux, Apache, Eclipse, Similar: Open Data, Open Hardware, Open Knowledge, ... Advantages of OS

508 views • 13 slides
IPv6 The Big Picture Rob Evans, Janet Rob.Evans@ja.net Reminder of IPv4 address allocation

IPv6 The Big Picture Rob Evans, Janet Rob.Evans@ja.net Reminder of IPv4 address allocation

IPv6 The Big Picture Rob Evans, Janet Rob.Evans@ja.net Reminder of IPv4 address allocation Top level: IANA Internet Assigned Numbers Authority Number of IPv4 addresses left: 0 Next level: Regional Internet Registries AFRINIC

168 views • 14 slides
CS 377 MySQL/PHP Tutorial Connect from PHP Scripts MySQL is currently the most popular open source

CS 377 MySQL/PHP Tutorial Connect from PHP Scripts MySQL is currently the most popular open source

CS 377 MySQL/PHP Tutorial Connect from PHP Scripts MySQL is currently the most popular open source database server in existence. On top of that, it is very commonly used in conjunction with PHP scripts to create powerful and dynamic server-side

92 views • 5 slides
sockets cont / RPC 1 last time client/server versus peer-to-peer model names, addresses

sockets cont / RPC 1 last time client/server versus peer-to-peer model names, addresses

sockets cont / RPC 1 last time client/server versus peer-to-peer model names, addresses (IPv4/IPv6), routing socket abstraction two-way pipes to remote machine server sockets bind() (set address) + listen() (wait for connections)

1.45k views • 132 slides
At which IPv6 stage are you? Scared The address is too long! All my IP addresses are

At which IPv6 stage are you? Scared The address is too long! All my IP addresses are

At which IPv6 stage are you? Scared The address is too long! All my IP addresses are traceable! Angry It's a conspiriacy there is no IPv4 shortage! As long as I get an IPv4 address I don't care! Nobody is using it anyway! Confused

863 views • 48 slides
IP Version 6 The explosive growth of the Internet IPv4 address space, 32-bit Real-time

IP Version 6 The explosive growth of the Internet IPv4 address space, 32-bit Real-time

IP Version 6 The explosive growth of the Internet IPv4 address space, 32-bit Real-time and interactive applications Expanded address space, 128 bits Simplified header format Enabling easier processing of IP datagrams

852 views • 15 slides
Advantages of SUSE Linux Enterprise Server Over Windows The Growth of Open Source in the

Advantages of SUSE Linux Enterprise Server Over Windows The Growth of Open Source in the

Advantages of SUSE Linux Enterprise Server Over Windows The Growth of Open Source in the Enterprise UNIX vs. Linux Trends 1 Linux is now the (Revenue in Millions) OS of choice in the enterprise replacing UNIX. 1 Source: Gartner 2 15+ 4/5

521 views • 21 slides
IPv4 address exhaustion and IPv6 Glen Turner 2008-12-09 AARNet staff meeting aar net

IPv4 address exhaustion and IPv6 Glen Turner 2008-12-09 AARNet staff meeting aar net

IPv4 address exhaustion and IPv6 Glen Turner 2008-12-09 AARNet staff meeting aar net Australia's Academic and Research Network IPv6 policy Going forward, we seek to support IPv6 to the same extent as we support IPv4. Exceptions require

631 views • 52 slides
Post IPv4 completion Making IPv6 deployable incrementally by making it backward compatible

Post IPv4 completion Making IPv6 deployable incrementally by making it backward compatible

Post IPv4 completion Making IPv6 deployable incrementally by making it backward compatible with IPv4. Alain Durand The Internet must support continued, un-interrupted growth regardless of IPv4 address availability DISCLAIMER:

614 views • 17 slides
1 WeShare comes from the name in the address of the server. 2 SHAREPOINT is the name of

1 WeShare comes from the name in the address of the server. 2 SHAREPOINT is the name of

1 WeShare comes from the name in the address of the server. 2 SHAREPOINT is the name of the Application that runs on the server. It is a Microsoft application that is designed to enable people to Collaborate on documents. 3 One feature

434 views • 18 slides

More recommend