{"id":218,"date":"2011-01-28T18:59:57","date_gmt":"2011-01-29T00:59:57","guid":{"rendered":"http:\/\/www.foofus.net\/?page_id=218"},"modified":"2011-01-28T18:59:57","modified_gmt":"2011-01-29T00:59:57","slug":"praeda","status":"publish","type":"page","link":"http:\/\/h.foofus.net\/?page_id=218","title":{"rendered":"Praeda"},"content":{"rendered":"<p><strong>Praeda &#8211; A Automated Printer Data Harvesting Tool<\/strong>. Is a tool we&#8217;re developing to better understand the risks associated with multi-function printers, and to help penetration testers gather usable data during security assessment job. <\/p>\n<p>Several new modules were added on September 6 2012. I expect to continue adding modules as they are developed and tested. We have expanded Praeda to include all embedded devices, not just MFPs.<\/p>\n<p>We are now hosting Praeda on Github. This makes rolling out updated patches and modules easier.<\/p>\n<p><a href=\"https:\/\/github.com\/percx\/Praeda\" target=\"_blank\">You can find a copy of Praeda here.<\/a><\/p>\n<p>&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;<\/p>\n<p>Oct. 26 2011<\/p>\n<p>So here is another advisory for Toshiba eStudio printer. We have found a number of these type of information leakage vulnerabilities on printers and have found them to be very useful during penetration testing. I have used them on many occasions to gain access to Windows active directory, and a few times even Domain Admin access.<\/p>\n<p>Advisory 10\/16\/2011 <a title=\"Toshiba eStudio Multifunction Printer Authentication Bypass\" href=\"http:\/\/www.foofus.net\/?page_id=457\">Toshiba eStudio Multifunction Printer Information Leakage<\/a> .<\/p>\n<p>Keep up on Praeda, Advisories, hacking,\u00a0 and security research follow percX on Twitter @Percent_X<\/p>\n<p>&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8211;<\/p>\n<p>Oct. 20, 2011<\/p>\n<p>So we found a couple bugs in a few modules. Appears we had an\u00a0 &#8220;exit;&#8221;\u00a0 where there should have been none, causing Praeda to exit incorrectly. These issues have been fixed and new code uploaded to foofus.net. Current version 0.01.3.1b<\/p>\n<p>So if you come across any bugs while running Praeda please report them ASAP (percx at foofus.net) so we can get them corrected.<\/p>\n<p>We are also interested in any recommendation for improving the output, and of course if you have any modules you have created , or changes you have made to existing modules that just make it all better, please share them!<\/p>\n<p>&nbsp;<\/p>\n<p>&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8211;<\/p>\n<p>Oct. 16, 2011<\/p>\n<p style=\"text-align: center;\"><strong>It has been awhile and it is time to start publishing some of the vulnerabilities found during research and development of Praeda.<\/strong><\/p>\n<p>Advisory 10\/16\/2011 <a title=\"Toshiba eStudio Multifunction Printer Authentication Bypass\" href=\"http:\/\/www.foofus.net\/?page_id=411\">Toshiba eStudio Multifunction Printer Authentication Bypass<\/a> .<\/p>\n<p>I have had limited access to Toshiba eStudio devices lately and would like to request some help. If everyone could test this against their eStudio MFP and send me the model number , firmware level, and whether your device was vulnerable. This would greatly help us with the development of Praeda, and updating the advisory. Results can be emailed to percx at foofus.net.<\/p>\n<p>Keep up on Praeda, Advisories, hacking,\u00a0 and security research follow percX on Twitter @Percent_X<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Praeda &#8211; A Automated Printer Data Harvesting Tool. Is a tool we&#8217;re developing to better understand the risks associated with multi-function printers, and to help penetration testers gather usable data during security assessment job. Several new modules were added on September 6 2012. I expect to continue adding modules as they are developed and tested. [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"parent":77,"menu_order":0,"comment_status":"open","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-218","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"http:\/\/h.foofus.net\/index.php?rest_route=\/wp\/v2\/pages\/218","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/h.foofus.net\/index.php?rest_route=\/wp\/v2\/pages"}],"about":[{"href":"http:\/\/h.foofus.net\/index.php?rest_route=\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"http:\/\/h.foofus.net\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/h.foofus.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=218"}],"version-history":[{"count":0,"href":"http:\/\/h.foofus.net\/index.php?rest_route=\/wp\/v2\/pages\/218\/revisions"}],"up":[{"embeddable":true,"href":"http:\/\/h.foofus.net\/index.php?rest_route=\/wp\/v2\/pages\/77"}],"wp:attachment":[{"href":"http:\/\/h.foofus.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=218"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}