POET vs ASP.NET: DotNetNuke

asp.net, dotnetnuke, IE, net, Object, video, windows , , , , , , , , 0 Comment

In this video we show how to use POET to attack the latest version of ASP.NET. The target application is DotNetNuke. The attack consists of two phases: 1. In the first phase, we use POET to extract DotNetNuke’s secret keys, and use those keys to generate a cookie to login as a super user. The same technique can be used to attack _every_ ASP.NET application

http://www.youtube.com/v/yghiC_U2RaM?f=videos&app=youtube_gdata

Pulsa aquí para leerlo completo:
POET vs ASP.NET: DotNetNuke