Chema Alonso (Security Consultant, Informatica64) & Manu ‘The Sur’

LAB TITLE: The Power of FOCA 3: Why You’ll Love The Seals

LAB ABSTRACT:

FOCA is a tool for penetration testers. It was famous in 2008 because its power for extracting metadata, hidden information and lost data from public documents and creating a more or less accurate view of the internal network, but after version 2 it became a much more powerful tool for fingerprinting organizations. In October 2011, version 3 was released and it brings a lot of new tools that can turbo boost your pentesting process. In this 120 minute lab session you will see the most new and freshest features in a real environment and the story of real cases related to big companies.

Features you will see and learn:

• Network Discovery with recursive algorithm
• Using web searchers (Google, Bing, Shodan, Robtex, Exalead)
• Using DNS (well-known records, zone transfers, PTR records, SVR records, dictionary)
• Using IP Scan (Bing IP, ICMP Scan, DNS resolution)
• Using metadata
• Fingerprinting Roles
• Banner, Regular expressions, SRV Records, etc…
• Searching for web vulnerabilities
• Directory Listing (.listing, .DS_Store, Open directory,…)
• Mod_negotiation
• Open proxy services
• Users
• DB Error messages
• HTTP Insecure methods
• DNS Cache Snooping
• Plugins
• Fuzzer
• SVN/Entries explorer
• Directory Listing Parser

… and much much more! Kevin Mitnick, Governments of the world and Anonymous are using FOCA – Don’t you want to know why?

ABOUT CHEMA ALONSO

Chema Alonso is a Security Consultant with Informatica64, a Madrid-based security firm. Chema holds respective Computer Science and System Engineering degrees from Rey Juan Carlos University and Universidad Politécnica de Madrid. During his more than six years as a security professional, he has consistently been recognized as a Microsoft Most Valuable Professional (MVP). Chema is a frequent speaker at industry events (Microsoft Technet / Security Tour, AseguraIT) and has been invited to present at information security conferences worldwide including Yahoo! Security Week, Black Hat Briefings, Defcon, ShmooCON, DeepSec, HackCON, Ekoparty and RootedCon – He is a frequent contributor on several technical magazines in Spain, where he is involved with state-of-the-art attack and defense mechanisms, web security, general ethical hacking techniques and FOCA, the meta-data extraction tool which he co-authors. He tweets from @chemaalonso

ABOUT MANU ‘THE SUR’

Manu has been working in all security areas since he got into Informatica64. He is a security pentester, a developer coding in projects like FOCA and a very good security research in areas such as Connection String Parameter Pollution Attacks or malware. He has the honor of being the man behind some of the most powerful “C# spaghetti lines” of FOCA.