The Art Of War - Blitzkrieg presented at KiwiCon 2008

by Pipes ,

Tags: Security

Summary : Penetration testing often focuses on targeting specific systems and services. This talk is not about penetration testing. Limited by scope, targeted hacking often requires tactical exploitation in order to achieve a result. This talk is not about tactical exploitation.
If the internet was a theatre of war, then an ideal military offensive would be the blitzkrieg. This talk is about pulling an internet blitzkrieg. A blitzkrieg is the identification of targets, followed by a significant bombardment (the scan) chased quickly by the employment of motorized mobile forces (mass exploitation) attacking with speed and surprise to prevent an enemy from implementing a coherent defense.
We will discuss how to identify targets, scan them for vulnerabilities and exploit those vulnerabilities not only on mass but with speed.