Fingerprinting Web Application Platforms by Variations in PNG Implementations
Offered By: Black Hat via YouTube
Course Description
Overview
Explore fingerprinting techniques for web application platforms through PNG implementation variations in this 18-minute Black Hat conference talk. Delve into the limitations of traditional fingerprinting methods and discover how analyzing PNG decoders/encoders can provide more reliable platform identification. Learn about a set of tests that differentiate between PNG libraries, enabling platform detection even when anti-fingerprinting measures are in place. Examine case studies involving various web applications, including Java-based systems, Amazon, Photobucket, and Python implementations. Gain insights into the potential of image-based fingerprinting for enhancing web application security audits and forensic investigations.
Syllabus
Introduction
About me
Agenda
schizophrenic files
example
why
pink
Linked Files
Libraries
Images
File Manager
Java
Web Application
Amazon
Photobucket
Python
Conclusion
Results
Taught by
Black Hat
Related Courses
Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security ChipBlack Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube