JC
Back to all projects
Penetration Testing for National University of Colombia

Security · 2022

Penetration Testing for National University of Colombia

Conducted a thorough penetration testing engagement for the National University of Colombia, identifying critical vulnerabilities across various systems. The assessment revealed significant security issues including SQL and LDAP injections, authentication weaknesses, insecure fil

ConsultingAutomation

Conducted a thorough penetration testing engagement for the National University of Colombia, identifying critical vulnerabilities across various systems. The assessment revealed significant security issues including SQL and LDAP injections, authentication weaknesses, insecure file handling, and poor password management practices. The findings underscored the need for enhanced security measures and provided actionable insights for remediation.

What I delivered:

  • Authentication Weaknesses:
  • Non-Encrypted Passwords:
  • File Handling Issues:
  • Grading System Exploits:
  • Frameworks and Version Exposure:

Result: The penetration testing engagement for the National University of Colombia successfully identified a range of high-impact vulnerabilities, including poor password management and weak hashing algorithms. The detailed findings and recommendations provided valuable insights to enhance the security posture of the university’s systems.

Overview
Conducted a thorough penetration testing engagement for the National University of Colombia, identifying critical vulnerabilities across various systems. The assessment revealed significant security issues including SQL and LDAP injections, authentication weaknesses, insecure file handling, and poor password management practices. The findings underscored the need for enhanced security measures and provided actionable insights for remediation.

Key Responsibilities & Findings:

  • SQL Injection:
    • Performed extensive SQL injection testing to exploit vulnerabilities in web applications.
    • Identified critical weaknesses allowing unauthorized access to databases and sensitive information.
  • LDAP Injection:
    • Detected LDAP injection vulnerabilities, allowing manipulation of LDAP queries and potential unauthorized access or modification of directory services.
  • Authentication Weaknesses:
    • Uncovered inadequate authentication mechanisms, leading to potential unauthorized access and privilege escalation.
    • Found issues with permission protocols, where users had excessive permissions beyond their intended roles.
  • Non-Encrypted Passwords:
    • Discovered instances of non-encrypted passwords stored in the system, exposing sensitive user credentials to potential theft.
    • Identified poor password storage practices, where passwords were stored in plaintext or using weak hashing algorithms.
  • Weak Hashes:
    • Detected the use of weak hashing algorithms for password storage, making it easier for attackers to perform brute force or hash cracking attacks.
    • Recommended upgrading to stronger, industry-standard hashing algorithms such as bcrypt or Argon2.
  • File Handling Issues:
    • Uncovered vulnerabilities in file certificate generation, including the creation of fake certificates with invalid data.
    • Identified exposed secret files on the server, potentially leading to sensitive information leaks.
  • Grading System Exploits:
    • Exploited weaknesses in the grading system to alter academic scores, demonstrating the potential for misuse of the grading infrastructure.
  • Frameworks and Version Exposure:
    • Revealed exposed server frameworks and versions, providing information that could be exploited using known vulnerabilities.
    • Documented open vulnerabilities in server configurations and software versions.
  • Backdoors:
    • Identified potential backdoors in the system, allowing unauthorized access and control.
  • Cross-Site Scripting (XSS):
    • Detected XSS vulnerabilities, which could be exploited to execute malicious scripts in users' browsers, leading to data theft or session hijacking.
  • Pentesting Methodology:
    • Utilized established frameworks and guides for penetration testing, ensuring thorough coverage of potential attack vectors.
    • Followed best practices for identifying and reporting vulnerabilities, including detailed documentation and evidence collection.
  • Reporting & Documentation:
    • Provided a comprehensive report detailing the vulnerabilities found, including risk assessments, exploitation methods, and remediation recommendations.
    • Included actionable insights to address security weaknesses and improve the overall security posture of the university’s systems.

Technologies & Tools Used:

  • SQL Injection Tools: Employed various tools and techniques to test and exploit SQL injection vulnerabilities.
  • LDAP Testing Tools: Used specialized tools for LDAP injection testing.
  • Password Cracking Tools: Utilized tools and techniques to analyze password storage and cracking.
  • File Handling & Certificate Tools: Assessed file generation and handling processes for vulnerabilities.
  • XSS Testing Tools: Conducted XSS vulnerability assessments using various tools and techniques.

Skills Applied:

  • Penetration Testing: Expertise in identifying and exploiting security vulnerabilities.
  • SQL & LDAP Injection: Proficiency in testing and exploiting injection vulnerabilities.
  • Authentication & Authorization: Experience in assessing and exploiting authentication and permission issues.
  • Password Security: Knowledge in secure password storage practices and hash cracking techniques.
  • File & Data Handling: Experience in secure file handling and certificate generation.
  • Security Reporting: Ability to document and report security findings clearly and comprehensively.

Outcome
The penetration testing engagement for the National University of Colombia successfully identified a range of high-impact vulnerabilities, including poor password management and weak hashing algorithms. The detailed findings and recommendations provided valuable insights to enhance the security posture of the university’s systems.