Find clear text password in application
Closed this issue · 1 comments
nimarty commented
Applications may use connections to services which require authentication. If implemented badly, the application stores the credentials and especially the password as clear text. This makes it easy to read it out from the compiled application binary. An example where this can happen is:
- an FTP client application connecting to the embedded device hosting a FTP server
Create a package which:
- installs an FTP server on the embedded device and adds an FTP user
- write a separate application (written in a compiled language) which is exploitable
Second step:
- Use SFTP instead to make it impossible to read out the credentials by sniffing network traffic. This will make the challenge focus on analysing the client application.