Collaborate Disseminate
I have this scenario on my lab. HTTP POST login form on a IIS server. ASP backend using MSSQL database, and a single simple query as this:
sql=”SELECT * FROM USERS_TABLE WHERE USER='” & user & “‘ AND PASS='” & pa… Continue reading Replaced single quote bypass for SQLi
I’m trying to improve my security knowledge on containers environments.
Recently I was playing around with Kubernetes cluster. I saw this absolutely awesome link: https://schd.ws/hosted_files/kccncna17/d8/Hacking%20and%20Ha… Continue reading Security (IP discovering) on Kubernetes
It seems Wi-Fi Alliance announced WPA3 for the end of 2018.
Anybody knows exactly what is new? features, security improvements, etc…
Is it because of Krack attack? I thought patching WPA2 is enough.
Is WPA3 really needed … Continue reading WPA3 announced. Really needed?
I started some reverse engineering exercises using Ollydbg, IDA Pro and other tools like Sysinternals suite, etc. Some of these exercises are about malware. I downloaded some different malware from the awesome github repository called The … Continue reading Malware sandbox detection
On HTML5, we can use localStorage to keep data persistently on client side. It seems better from a non-security point of view (easy to access, not 5mb limit like cookies, etc).
https://www.w3schools.com/html/html5_webstorage… Continue reading Cookie vs HTML5 localStorage
I have a very uncommon scenario. I have a Windows 10 laptop with a specific configuration. On that configuration, there is a user (local user, not domain user) which I don’t know its password. I want to migrate that user to another Windows… Continue reading Inject hash into sam file. Is possible?
This question already has an answer here:
How to disclose a security vulnerability in an ethical fashion?
6 answers
There is a website which I want to audit. That site must have a concrete Virtualhost configuration because if you access to it using the domain name the website is shown, but if you use the ip address the website is not shown… Continue reading Metasploit. Is always replacing domain names with resolved ips on RHOST/RHOSTS?
I’m learning a lot about docker. I’m practicing creating docker clusters using docker-swarm, registry, shipyard, etc.
I saw how easy is to get root in a docker host machine once you entered to the host with a limited user wh… Continue reading Is it possible to escalate privileges and escaping from a Docker container?
I have an online bitcoin wallet. I sometimes read news about some online bitcoins wallet websites getting hacked. For sure when this happens, all the bitcoins of all of the users are stolen. Articles like this corroborate thi… Continue reading Are the online bitcoin wallets secure?