vmw4r3.blogspot.com
Insecurity: SQL Injection Pocket Reference 2010 Cheat Sheet [SQLI]
http://vmw4r3.blogspot.com/2010/10/sql-injection-pocket-reference-2010.html
Friday, October 8, 2010. SQL Injection Pocket Reference 2010 Cheat Sheet [SQLI]. SQL Injection Pocket Reference 2010. Great paper made by Reiners. From sla.ckers.org. 2 Comment Out Query. 3 In a login. 6 Retrieving DB usernames/passwords. 7 Tables and Columns. 1 Finding out column #. 5 Find Tables from Column Name. 6 Find Column From Table Name. 8 Avoiding the use of single/double quotations. 12 Out Of Band Channeling. 2 DNS (requires FILE privilege). 3 SMB (requires FILE privilege). 2 Comment Out Query.
hackathology.blogspot.com
Taking Network Security to the Streets: XSS without Browser
http://hackathology.blogspot.com/2010/11/xss-without-browser.html
Taking Network Security to the Streets. Street Security at its best. "A well known hacker is a good hacker, an unknown hacker is a great hacker.". Wednesday, November 3, 2010. You can see if the javascript came back with the HTTP response, unfiltered. If you see a script&rt; . or a script tag, that would indicate it could be executed. Assuming the browser has JavaScript enabled. November 11, 2010 at 7:37 PM. B][url=http:/ 0503500010.com] Barby-Girls[/url][/b]. November 12, 2010 at 7:22 AM. That phone-hom...
hackathology.blogspot.com
Taking Network Security to the Streets: 5/1/12 - 6/1/12
http://hackathology.blogspot.com/2012_05_01_archive.html
Taking Network Security to the Streets. Street Security at its best. "A well known hacker is a good hacker, an unknown hacker is a great hacker.". Thursday, May 10, 2012. Passwords Still the Weak Link in the Chain. Password security can be extremely difficult for a big network to manage, primarily because it requires policing everybody with access, from the website designers and administrators, to the marketers who are in charge of PPC management. Seven deadly password sins. The same is true of people...
hackathology.blogspot.com
Taking Network Security to the Streets: 5/1/08 - 6/1/08
http://hackathology.blogspot.com/2008_05_01_archive.html
Taking Network Security to the Streets. Street Security at its best. "A well known hacker is a good hacker, an unknown hacker is a great hacker.". Monday, May 12, 2008. Yet Another SQL injection. Subscribe to: Posts (Atom). Cisco IOS hints and tricks. Yet Another SQL injection. Network Security at its best.
blog.andlabs.org
Attack and Defense Labs: June 2010
http://blog.andlabs.org/2010_06_01_archive.html
Sunday, June 27, 2010. Chrome and Safari users open to stealth HTML5 AppCache attack. Google Chrome, Safari, Firefox and Opera(Beta) have implemented the HTML5 Offline Application Cache. Feature. Using this feature a website can have greater control over the caching process to enable Offline access of websites. The thing with caches is that they can be poisoned very easily. Almost all users open Gmail by typing in gmail.com in the address bar and this means its http:/ gmail.com (remember SSLstrip? The se...
buayacorp.com
CSRF โ Buayacorp
https://www.buayacorp.com/categorias/csrf
Múltiples vulnerabilidades en la última version estable de WordPress MU. Wordpress MU comparte los mismos problemas de seguridad que Wordpress. Es una versión de WordPress que soporta múltiples blogs. Tanto WordPress como WordPress MU comparten gran parte de código y por lo tanto, es lógico que casi siempre sufran los mismos problemas de seguridad*. Luego de mirar un rato el código de la última versión estable de WordPress MU, veo que el. Un problema similar existe entre menéame. De varios blogs que usab...
hackathology.blogspot.com
Taking Network Security to the Streets: 12/1/07 - 1/1/08
http://hackathology.blogspot.com/2007_12_01_archive.html
Taking Network Security to the Streets. Street Security at its best. "A well known hacker is a good hacker, an unknown hacker is a great hacker.". Sunday, December 2, 2007. NET ViewState vulnerable to manipulation exploits. This past week i had a chance to audit a customer who is using microsoft's viewstate. So what is ViewState and why is it vulnerable? Http:/ www.dotnetspider.com/tools/ShowTool.aspx? Http:/ blog.portswigger.net/2007/06/viewstate-snooping.html. To prevent attackers from manipulating Vie...
hackathology.blogspot.com
Taking Network Security to the Streets: Yet Another SQL injection
http://hackathology.blogspot.com/2008/05/yet-another-sql-injection.html
Taking Network Security to the Streets. Street Security at its best. "A well known hacker is a good hacker, an unknown hacker is a great hacker.". Monday, May 12, 2008. Yet Another SQL injection. Mmm, but is possible to do SQL injection over aspx? ASPNET IIS 6.0). Do u have more info about howto? May 31, 2008 at 3:54 AM. Bernard n. shull. I did a little research after you told me about your "thing", and if you want a way to make more money using your your blog you can enter this site: link. Sophisticated...
hackathology.blogspot.com
Taking Network Security to the Streets: 12/1/10 - 1/1/11
http://hackathology.blogspot.com/2010_12_01_archive.html
Taking Network Security to the Streets. Street Security at its best. "A well known hacker is a good hacker, an unknown hacker is a great hacker.". Wednesday, December 15, 2010. Pro WikiLeaks hacker groupโs DDoS tool downloads top 40,000 (12/13/10). Http:/ www.infosecurity-magazine.com/view/14611/pro-wikileaks-hacker-groups-ddos-tool-downloads-top-40000/. Anonymous attacks more websites, as second Dutch teenager is arrested in WikiLeaks saga (12/13/10). WikiLeaks-Related Spam Spotted (12/13/10). So Wikile...
SOCIAL ENGAGEMENT