Security

NAVIGATION

Data Mining Myspace Bulletins

if you must use netcat don't use system() write a shell script.#!/bin/shif [ $# != 2 ]; thenecho "Usage: "$0" <start<end>"exit 1fiif [ $1 -gt $2 ]; thenecho "end must be greater than start"exit 2firecs=$(( $2-$1+1 ))for (( i=0; i<recs; i++ )); doecho "GET/"$(($i+$1))".lfHTTP/1.1...

2 answers | 1110 bytes |

Weird... www.eon8.com

Fri, 30 Jun 2006 21:15:27 -0300, Cardoso said:Yes, you may be right. What better place to hide than in plainsight?Using the old "nobody would do that", we^H^H they can publishevilinstructions the operatives, and all the fools at NSA, GRU andMI-6 willnever take us^H^H them seriously until it'...

2 answers | 904 bytes |

blog.ncircle.com

PGP SIGNED MESSAGEHash: SHA1My God at the spin I've got to quit drinking.http://blog.ncircle.com/ PGP SIGNATUREVersion: GnuPG v1.4.3 (Darwin)Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org30Uwuv15QahTjKDYoUqxP9o==IsBr PGP SIGNATUREFull-Disclosure - We believe in it.Charter:H...

4 answers | 423 bytes |

Official answer about Alcatel PBX testing

Hi allDavide regarding your question ; this is our explanation :As of release 6.2, the PCX Enterprise Communication Server security hasbeen enforced introducing security by default mecanism.This implies systematic password change for default accounts to avoiddefault well known passwords to be pr...

0 answers | 3756 bytes |

pen-testing methodologies

NSA methodologies:http://www.iatrp.com/iam.cfmhttp://www.iatrp.com/iem.cfm 6/27/06, offset <offset (AT) ubersecurity (DOT) orgwrote:Does anyone know of any other popular pen-testing methologies not listed here?Gathering a list of sources for my own research.I'm interested in any other si...

0 answers | 2324 bytes |

books

Some of the books I like reading:- Gray Hat Hacking - The EH Handbook - ,225709-1. Shon Harris andothers did an amazing job of compiling everything in an A book.- Know Your Enemy - The Honeynet project - Addison Wesley, ISBN0-201-74613-1.- Hacking, The Art of Exploitation - Jon Erickson, ISBN 1-...

0 answers | 2114 bytes |

SturGeoN Upload v1 Remote Command Execution Exploit

#!/usr/bin/perl## VulnScr: SturGeoN Upload v1# Author: Jihad BENABRA# Download:# WTF?:## Date: Sat July 1 10:04 2006# Credits: Vuln and Xpl by DarkFig (gmdarkfig (AT) gmail (DOT) com)# Advisorie: No, too short# Problem: Do not filter the uploaded files# Exploit: Upload a php file (<? $cmd=str...

0 answers | 2081 bytes |

Sql injection in Diesel joke site script

Sql injection in Diesel joke siteforum type : Diesel joke sitebug found by : black-codeteam : site-downtype : Sql injectionSql injection in Diesel joke sitepage : category.phpvariable : idExploits :admin id:http://www.example.com/path to jokescript/category.php?id=-99%20union%20select%20aid,aid,...

0 answers | 1038 bytes |

SmS Script SQL Injection

By: BreeeehBreeeeh (AT) hotmail (DOT) comexample:-/sms/cat.php?CatID=[SQL Injection]/add.php?CatID=[SQL Injection]...

0 answers | 153 bytes |

Internet Crna Gora SQL Injection

By: BreeeehBreeeeh (AT) hotmail (DOT) comexample:-/[SQL Injection]...

0 answers | 97 bytes |

OPERA Web Browser 9 Denial OF Service

ECHADV_35$2006[ECHADV_35$2006] PERA Web Browser 9 Denial F ServiceAuthor: Ahmad Muammar W.K (a.k.a) y3dipsDate Found: July, 1th 2006Location: Indonesia, Jakartaweb:Critical Lvl: ModeratedImpact: Browser will automatically shutdownWhere: From RemoteAffected software description: Web BrowserApplic...

0 answers | 1709 bytes |

DEF CON 14: Speakers Selected and more.

PGP SIGNED MESSAGEHash: SHA1Hey everyone, I want to make some announcements surrounding DEF CN 14.It's about that time to briefly lay down the inf0z, so here it goes.- - Speakers have been selected, and are now listed on-line:They include an assistant Secretary of Defense, an FBI agent, Sc...

0 answers | 2509 bytes |