QuickShell:分享即关爱——针对 QuickShare 的远程代码执行攻击链.pdf

编号:981756 PDF 113页 7.12MB 下载积分:VIP专享
下载报告请您先登录!

1、Sharing is caring about an RCE attack chain on Quick Share Security Research Team Lead at SafeBreach 7?years in Security Research Past research in Linux,embedded,Android 4 years Windows research 6?years in Security Industry Past APT Malware Researcher 4?years Windows research Why Quick Share Protoco

2、l Overview Fuzzing Research Approach Shift?Vulnerability Discovery RCE Chain Takeaways GitHub?Q&A“were working with leading PC manufacturers like LG to expand Quick Share to Windows PCs as a pre-installed app.”Google:Various communication methods 1st time by Google on Windows 2019 by Daniele Antonio

3、li,Nils Ole Tippenhauer,Kasper Rasmussen:“Nearby Threats:Reversing,Analyzing,and Attacking Googles Nearby Connections on Android”About Nearby Connections API Only Android No CVEs https:/francozappa.github.io/publication/rearby/paper.pdf Contain part of the code for Quick Share for Windows New Window

4、s App?New App New vulns Windows app will be pre-installed Various communication methods?Various attack vectors Googles first Windows app to use these APIs Some of the code is open-source No CVEs Finding the communication functions?Send&Recv:offline_wire_formats.proto stHooking Quick Share to sniff s

5、ent and received Offline Frames on Windows Nearby Connections API Quick Share Implementation Protobuf Based Encryption?Googles Ukey2 Advertisement based on Service ID Multiple Connections Strategies P2P,Star,Cluster CONNECTION_REQUEST Ukey2 Client Init Ukey2 Handshake Completed CONNECTION_REQUEST Uk

6、ey2 Server Init Ukey2 Client Finish Ukey2 Client Init Ukey2 Key Exchange Proprietary communication begins CONNECTION_REQUEST Connection Response Connection Response Ukey2 Key Exchange Proprietary communication begins CONNECTION_REQUEST Connection Response Connection Response Enforces“Contacts”and“Yo

友情提示

1、下载报告失败解决办法
2、PDF文件下载后,可能会被浏览器默认打开,此种情况可以点击浏览器菜单,保存网页到桌面,就可以正常下载了。
3、本站不支持迅雷下载,请使用电脑自带的IE浏览器,或者360浏览器、谷歌浏览器下载即可。
4、本站报告下载后的文档和图纸-无水印,预览文档经过压缩,下载后原文更清晰。

本文(QuickShell:分享即关爱——针对 QuickShare 的远程代码执行攻击链.pdf)为本站 (竿头日上) 主动上传,三个皮匠报告文库仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对上载内容本身不做任何修改或编辑。 若此文所含内容侵犯了您的版权或隐私,请立即通知三个皮匠报告文库(点击联系客服),我们立即给予删除!

温馨提示:如果因为网速或其他原因下载失败请重新下载,重复下载不扣分。
客服
商务合作
小程序
服务号
折叠