Looting the Symfony profiler with EOS
Key | Action |
---|---|
K or space | Play / Pause |
M | Mute / Unmute |
C | Select next subtitles |
A | Select next audio track |
V | Show slide in full page or toggle automatic source change |
left arrow | Seek 5s backward |
right arrow | Seek 5s forward |
shift + left arrow or J | Seek 10s backward |
shift + right arrow or L | Seek 10s forward |
control + left arrow | Seek 60s backward |
control + right arrow | Seek 60s forward |
shift + down arrow | Decrease volume |
shift + up arrow | Increase volume |
shift + comma | Decrease playback rate |
shift + dot or shift + semicolon | Increase playback rate |
end | Seek to end |
beginning | Seek to beginning |
Share this media
HLS video stream
You can use an external player to play this stream (like VLC).
HLS video streamInformation on this media
Links:
Number of views:
134 (this month: 3)Creation date:
June 30, 2020Speakers:
Matthieu BarjoleLicense:
CC BY-SA v4Description
Based on https://www.synacktiv.com/posts/pentest/looting-symfony-with-eos.html. Symfony is a popular open source PHP framework to create web applications. When configured with development parameters, Symfony exposes a sensitive component: the web profiler. This interface implements debug features to help developers identifying bugs while working on the application. However, as an attacker, multiple pieces of information are available to loot: configuration files, user credentials and even the application source code.
Exposing such features in a production environment is very dangerous and to gather all this intel, Synacktiv recently developed an open source tool named EOS (https://github.com/synacktiv/eos).
In this presentation, I would like to describe the different features provided by the profiler and how EOS exploits them to extract the valuable information.
Speaker
Matthieu Barjole (Synacktiv)
Other media in the channel "2020"
17 viewsConclusion talkJuly 2nd, 2020
187 views, 7 this monthPique curiosity, not diabetic fingersJuly 2nd, 2020
37 views, 1 this monthWars of the machines: build your own Seek and Destroy RobotJuly 2nd, 2020
51 views, 1 this monthTackling security issues in virtualizationJuly 2nd, 2020
26 views, 1 this monthEnarx - secured, attested execution on any cloudJuly 2nd, 2020
53 views, 1 this monthRemote Forensic Investigations For The WinJuly 2nd, 2020