Similarities in lock picking and testing software security
There are many parallels between lock picking and testing software security. To take advantage of a physical lock or software, it helps significantly to understand the target’s internal implementation details.
A while back Jason Lynn posted a video showing how to make a lock pick shim from a soda can. The shim technique is very effective against combination locks like the one shown below. Jason’s video is mentioned in the first chapter of Hunting Security Bugs, but it hard to find online now. For those searching for it, I've posted a copy I found on my local hard disk here - http://www.securitybughunter.com/videos/JasonLynn%20PopCan%20Shim.avi (7,306 kb). It was encoded using the DivX codec.
There are many parallels between lock picking and testing software security. To take advantage of a physical lock or software, it helps significantly to understand the target’s internal implementation details.
A while back Jason Lynn posted a video showing how to make a lock pick shim from a soda can. The shim technique is very effective against combination locks like the one shown below. Jason’s video is mentioned in the first chapter of Hunting Security Bugs, but it hard to find online now. For those searching for it, I've posted a copy I found on my local hard disk here - http://www.securitybughunter.com/videos/JasonLynn%20PopCan%20Shim.avi (7,306 kb). It was encoded using the DivX codec.
0 Comments:
Post a Comment
<< Home