Unix 地下世界：zOS 黑暗面的故事.pdf

《Unix 地下世界：zOS 黑暗面的故事.pdf》由会员分享，可在线阅读，更多相关《Unix 地下世界：zOS 黑暗面的故事.pdf（130页珍藏版）》请在三个皮匠报告上搜索。

1、#BHUSA BlackHatEventsUnix UnderworldTales from the Dark Side of z/OSPhilip Young Director Mainframe Penetration Testing Services,NetSPIChad Rikansrud Chief Mainframe Hacker,Broadcom#BHUSA BlackHatEvents2Bigendian#BHUSA BlackHatEvents3Software security researcher BroadcomChad RikansrudBigendian#BHUSA

2、 BlackHatEventsBigendian Smalls 90s Hacker Kid Mainframe Security Enthusiast Loves showtunes Reverse Engineer Pentesting Mainframes for 10+years#BHUSA BlackHatEvents5Philip YoungDirector of Mainframe Penetration Testing NetSPI#BHUSA BlackHatEvents7 90s Hacker Kid Mainframe Security Enthusiast Terrib

3、le Karaoke Singer Always felt like an outsider Pentesting Mainframes for 10+yearsSoldier of FORTRAN The OG Mainframe Hacker#BHUSA BlackHatEventsMainframe Security Enthusiast The OG Mainframe Hacker Tools based on his misadventures Knows more about RACF than I ever will Works on mainframe part time w

4、hen he takes a break from his full time motorcycle repair shopMark Wilson#BHUSA BlackHatEvents#BHUSA BlackHatEventsThis!#BHUSA BlackHatEventsAnd This!#BHUSA BlackHatEventsBut Not This!#BHUSA BlackHatEvents#BHUSA BlackHatEvents#BHUSA BlackHatEventsCard ReaderTerminalButton Pusher#BHUSA BlackHatEvents

5、#BHUSA BlackHatEventsNow This!#BHUSA BlackHatEventsAt most companies,z/OS mainframes represents a systemically important platform where downtime is counted in seconds and minutes.This is but a tiny representation of the kinds of companies that runs z/OSCompanies Rely On It#BHUSA BlackHatEventsTermin

6、ologyRACFSecurity manager for z/OS.Controls access to datasets,resources,and system functions.Stores user profiles and credentials and attributes like SPECIAL and OPERATIONS.SPECIAL/OPERATIONSIn RACF grants elevated system privileges.For example,create add or edit an APF authorized library.APF Libra