Skip to content

Screenshots & Videos

Jump to bottom
sanktjodel edited this page Aug 14, 2019 · 1 revision

Singularity Manager Interface

Singularity Manager Interface

Hook and Control a Vulnerable Application on Localhost

Fetch an application home page

Automate the Scan and Compromise of All Vulnerables Applications

Fetch an application home page

iOS Demo: DNS rebinding in 5 seconds (cache flooding)

This shows DNS Rebinding performed on an iPad in 5 seconds.

The rebinding strategy is "First then second" using an interval of 1 second and cache flooding enabled.

https://youtu.be/cjON0_wTpX8

Hook & Control

DNS rebinding in 3 seconds using the "Multiple answers" strategy with an interval of 1 second. The "Hook and Control" payload is used to hijack the victim browser and use it to access inaccessible resources on the localhost. In this case we are accessing the Jenkins instance running on the victim's localhost:8080.

https://youtu.be/XWo-CqSXqdY

Automation

Performing a DNS Rebinding in 3 seconds using the "Multiple answers" strategy with an interval of 1 second. An automated approach is used with an HTML file defining the "automatic" payload which attempts to detect known services and exploit them automatically. In this case we run an unauthenticated Jenkins instance on localhost:8080 and a Rails Web Console on port 3000. Singularity detects these services and launches the Rails RCE and Jenkins payloads automatically.

https://youtu.be/R5Y1luRhjbc

Clone this wiki locally