Learning Thick Client VAPT with me. Part 5. Verify and Strings.

Hey all.

Today we will use the strings and sigcheck. All these are available in sysinternal tools.

So, let’s open the sigcheck with our DVTA, and we can see that it is showing it is unsigned.

Now, above that is a vulnerability. Any application which is a production level or which is in market for customers to use that should be verified by their organization. That shows it is a genuine product.

Let’s use strings on our application and save in a text file.

Let’s open the text file and check for any suspicious strings. We can see that FTP password is in clear text.

This is a vulnerability, no credential or sensitive data should be hard-coded so that one can find by this.

So, we learned about sigcheck and strings. Let’s meet in the next part.