Download as PDF, PPTX
Uploaded byBishop Fox
OWASP LA – SharePoint Hacking – 22Feb2012 – Slides.PDF
The document presents advanced security tips and tools for Microsoft SharePoint, detailing key components and potential security risks. It emphasizes the importance of being aware of external exposures, managing user permissions, and the risks associated with third-party plugins. Additionally, it provides backup strategies for securing SharePoint environments.
In this document
Powered by AI
An overview of the presentation agenda and introduction to SharePoint security presented by Francis Brown.
Introduction to MS SharePoint products and technologies, including WSS and MOSS.
Detailed look at core components and a centralized portal of MS SharePoint products.
Explanation of SharePoint site hierarchy, structure, and navigation basics.
Highlighting security exposure risks with an example of WikiLeaks and SharePoint.
Essential security tips for SharePoint, focusing on external exposure awareness.
Detailed measures to identify external exposure in SharePoint, including Google hacks and brute-forcing.
Discussing the dangers of excessive user access, and specific web services implications.
Emphasizing the importance of checking user permissions and inheritance for security.
Various tools for managing and auditing user permissions within SharePoint.
Risks associated with third-party plugins in SharePoint and their management.
Technologies and strategies to identify unauthorized SharePoint deployments.
Future enhancements in SharePoint security regarding third-party plugins and sandbox features.
Various methods and tools for backing up SharePoint data comprehensively.
Opportunity for audience engagement through questions and additional resources on SharePoint security.
More Related Content
![[한국IBM] AI활용을 위한 머신러닝 모델 구현 및 운영 세션](https://cdn.slidesharecdn.com/ss_thumbnails/ibmdataai-trustedaiv1-190904082052-thumbnail.jpg?width=640&height=640&fit=bounds)
![[공간정보시스템 개론] L06 GIS의 이해](https://cdn.slidesharecdn.com/ss_thumbnails/l06gis-170314114559-thumbnail.jpg?width=640&height=640&fit=bounds)
![[공간정보시스템 개론] L07 원격탐사의 개념과 활용](https://cdn.slidesharecdn.com/ss_thumbnails/l07-170314114620-thumbnail.jpg?width=640&height=640&fit=bounds)
Similar to OWASP LA – SharePoint Hacking – 22Feb2012 – Slides.PDF
OWASP LA – SharePoint Hacking – 22Feb2012 – Slides.PDF
- 1. SharePoint Security Advanced SharePointSecurity Tips and Tools 22 Feb 2012 – OWASP L.A. 2012 – Los Angeles, CA Presented by: Francis Brown Stach & Liu, LLC www.stachliu.com
- 2. Agenda 2 • Brief Introto SharePoint • Overview of Major Components • SharePoint Security • Security Tips and Tools O V E R V I E W
- 3. Background 3 G E TT I N G U P T O S P E E D
- 4. Background 4 MS SharePoint Products& Technologies • Windows SharePoint Services (WSS) • Office SharePoint Server 2007/2010 (MOSS) • SharePoint Designer 2007/2010 (SPD)
- 5. Core Components 5 MS SharePointProducts & Technologies
- 6. Core Components 6 MS SharePointProducts & Technologies
- 7. Core Components 7 MS SharePointProducts & Technologies
- 8. Centralized Portal 8 MS SharePointProducts & Technologies
- 9. 9 Site Hierarchy Intro toSharePoint
- 10. 10 SharePoint Site Hierarchy Introto SharePoint Base Site URLs: • http://learnsouth/ • http://learnsouth/Media/ • http://learnsouth/Revisions/ • http://learnsouth/Schools/ • http://learnsouth/Schools/SchoolA/ • http://learnsouth/Schools/SchoolB/ • http://learnsouth/Schools/SchoolC/
- 11. 11 Site Structure Intro toSharePoint
- 12. 12 Site Navigation Intro toSharePoint
- 13. Security Tips 13 W HA T Y O U S H O U L D K N O W
- 14. WikiLeaks and SharePoint RI S K O F E X P O S U R E 14 • Wget scripts targeting SharePoint downloads • 250,000 government cables sent to WikiLeaks
- 15. Security Tips 15 S HA R E P O I N T S E C U R I T Y # Security Tip 1 Know your external exposure… 2 Beware of normal users with excessive access… 3 Spot check user permissions and inheritance… 4 Beware third-party plugins/code…BUT not too much… 5 Backup every which way from Sunday… …
- 16. Security Tip #1 16 KN O W Y O U R E X T E R N A L E X P O S U R E
- 17. External Exposure F IN D I N G H O L E S 17 1. “Google Hack yourself” 1. Search Google for exposed SharePoint admin pages 2. E.g. inurl:"/_catalogs/wt/“ 3. NEW: SharePoint Google Regexs for S&L SearchDiggity – 121 queries 4. Coming Soon: SharePoint Bing Dictionary 5. SHODAN searching for SharePoint servers 6. SharePoint Hacking Alerts 2. SharePoint URL Brute-forcing 1. Forceful browse to common SharePoint extensions to test access 2. NEW: Tool to bruteforce SharePoint URLs – 101 known extensions 3. Nmap for other SharePoint administrative apps 1. E.g. Central Administration, Shared Service Providers (SSP)
- 18. External Exposure S HA R E P O I N T A D M I N W E B A P P S 18
- 19. External Exposure G OO G L E H A C K I N G S H A R E P O I N T 19
- 20. External Exposure G OO G L E H A C K I N G S H A R E P O I N T 20
- 21. External Exposure G OO G L E H A C K I N G S H A R E P O I N T 21
- 22. External Exposure B IN G H A C K I N G S H A R E P O I N T 22
- 23. External Exposure S HO D A N F O R S H A R E P O I N T 23
- 24. External Exposure S HA R E P O I N T H A C K I N G A L E R T S 24
- 25. DEMO S H AR E P O I N T H A C K I N G T O O L S 25
- 26. External Exposure S HA R E P O I N T U R L B R U T E F O R C I N G 26
- 27. Security Tip #2 27 BE W A R E U S E R S W I T H E X C E S S I V E A C C E S S
- 28. Excessive User Access MO R E T H A N Y O U B A R G A I N E D F O R . . . 28 • Web Services examples • Admin.asmx • Permissions.asmx • User Administration examples • “People and Groups” • ”Add Users” • “PeoplePicker”
- 29. DEMO C O NT I N U E D S H A R E P O I N T H A C K I N G 29
- 30. Excessive User Access SH A R E P O I N T W E B S E R V I C E S 30
- 31. Security Tip #3 31 CH E C K P E R M I S S I O N S A N D I N H E R I T A N C E
- 32. User Permissions 32 S EC U R I T Y T I P S
- 33. User Permissions 33 S EC U R I T Y T I P S
- 34. User Permissions 34 S EC U R I T Y T I P S
- 35. Security Tools 35 U SE R P E R M I S S I O N S
- 36. 36 Security Tools U SE R P E R M I S S I O N S
- 37. 37 Security Tools U SE R P E R M I S S I O N S
- 38. 38 Security Tools U SE R P E R M I S S I O N S
- 39. 39 Security Tools U SE R P E R M I S S I O N S
- 40. Security Tip #4 40 BE W A R E T H I R D - P A R T Y C O D E… N O T T O O M U C H
- 41. Third-Party Plugins N EC E S S A R Y E V I L 41 • SharePoint without third-party plugins is like an iPhone with no apps • Solutions, Features • Web Parts, Templates • If too strict, people will circumvent you • Leads to rogue SharePoint deployments
- 42. Detect Rogue SharePoint RO G U E D E P L O Y M E N T S 42 Quest Software - Server Administrator for SharePoint
- 43. Detect Rogue SharePoint RO G U E D E P L O Y M E N T S 43 McAfee - Network Discovery for Microsoft SharePoint
- 44. Third-Party Plugins S OL U T I O N S 44
- 45. Third-Party Plugins S OL U T I O N S 45
- 46. Third-Party Plugins F EA T U R E S 46
- 47. Third-Party Plugins F EA T U R E S 47
- 48. Third-Party Plugins F UT U R E S E C U R I T Y 48 • SharePoint 2010 has sandboxed solutions • Minimize risk of running untrusted third-party plugins
- 49. Third-Party Plugins S AN D B O X E D S O L U T I O N S 49
- 50. Security Tip #5 50 BA C K U P E V E R Y W H I C H W A Y F R O MS U N D A Y
- 51. Backups M A NY M E T H O D S … M O S T T E R R I B L E 51 1. Microsoft System Center: Data Protection Manager 2. Windows 2003/2008 Server backups 3. Stsadm.exe cmdline tool backups 4. Central Administration v3 backups 5. SharePoint Designer backups 6. Site and List template backups 7. Raw MS SQL database backups
- 52. Backups S H AR E P O I N T D E S I G N E R 52
- 53. Backups S T SA D M / C E N T R A L A D M I N I S T R A T I O N 53
- 54. Backups S I TE A N D L I S T T E M P L A T E S 54
- 55. Backups S I TE A N D L I S T T E M P L A T E S 55
- 56. Backups R A WS Q L D A T A B A S E S 56
- 57. Questions? Ask us something We’lltry to answer it. For more info: Email: contact@stachliu.com Project: diggity@stachliu.com Stach Liu, LLC www.stachliu.com
- 58. Thank You 58 Stach Liu SharePoint Hacking Diggity Project info: http://www.stachliu.com/index.php/resources/tools/sharepoint-hacking-diggity-project/