fatclient stuff

cheatsheets/security/reversing/fatclients/fatclient-audits.md

@@ -0,0 +1,37 @@
+---
+title: Fatclient Audits
+categories: [cheatsheets]
+tags: [fatclient, reversing]
+---
+
+# Fatclient Audits
+
+* Architecture
+* Methodology
+    - Information Gathering
+* Proxying Fatclients
+* Analysing Custom Protocols
+* .NET
+* Java
+*
+
+
+## Architecture
+
+* Two-Tier Architecture
+* Three-Tier Architecture
+
+### Two-Tier Architecture
+
+Classic Client-Server Architecture. Client directly communicates with e.g. Backend/Sql/... Server.
+
+### Three-Tier Architecture
+
+In this architecture the client communicates with an application server using an API (mostly HTTP/s).
+The application server then communicates to e.g. the database.
+
+-> This is more secure as the DB is not accessed directly.
+
+
+
+#

cheatsheets/security/reversing/fatclients/proxy-fatclients.md

@@ -0,0 +1,40 @@
+---
+title: Proxy Fatclients
+categories: [cheatsheets]
+tags: [fatclient, reversing]
+---
+
+# Proxy Fatclients
+
+Multiple possibilities to intercept fatclient applications.
+
+
+## C# (.net)
+
+* Every .net applications has a configuration file for the executable
+* For Example:
+```
+cmd> dir \myapp\
+* MyApp.exe
+* MyApp.exe.config
+```
+
+* add the following entry to the config file:
+```
+<system.net>
+  <defaultProxy>
+    <proxy
+      proxyaddress="http://<ip>:<port>"
+      bypassonlocal="false"
+    />
+  </defaultProxy>
+</system.net>
+```
+
+## Java
+
+## Native
+
+
+
+