Breaking Bricks and Plumbing Pipes: Cisco ASA a Super Mario Adventure

Presented at Kiwicon 8: It's always 1989 in Computer Security (2014), Dec. 11, 2014, 10 a.m. (45 minutes)

When Super Mario looks at your average network topology diagram he sees opportunity in those bricks and adventure in those pipes! Join Mario as we target the Cisco ASA firewall on our way to rescue Princess Peach from Bowser's Castle. Chaining no less than three previously unknown exploits we will remotely compromise the perimeter Cisco ASA firewall. Then, using the firewall's built-in NAT functionality we will explore the possibility of moving laterally while evading anomaly and flow analytics based network intrusion detection. This talk will explore the inner workings of the Cisco ASA appliance and present opportunities for further exploit development and the placement of reboot persistent rootkits. This presentation will have you question the security of your network security devices and leave you asking if we should hold security vendors to a higher standard.

Presenters:

• Alec Stuart-Muirk
  Alec has been working in the network security industry for more than ten years. For the first five years, he worked on the front line acting as level three support for clients often troubleshooting obscure bugs and issues alongside the major firewall vendors. Since that time he has continued working with these vendors and their products as a network security architect, designing end to end solutions in the enterprise. All the while Alec has never stopped questioning the underlying technology, what makes these products tick and what secures the security product.

Links:

• https://2014.kiwicon.org/the-con/talks/#e149

Similar Presentations:

• Black Hat USA 2022 / Do Not Trust the ASA, Trojans!
• DEF CON 30 (2022) / Do Not Trust the ASA, Trojans!
• 44CON 2017 / Cisco ASA Episode 2: Striking back - Internals and Mitigations