Collaborate Disseminate
I am a software developer starting studying application security and I have the following doubt related SQL injection.
I am following a video course and there are these two examples:
I have an insecure SQL query like this:… Continue reading Some doubts about SQL Injection examples, how exactly works?
The start page of my browser is example.com.
Recently, connecting through the main Spanish telcom network (Movistar), I got a different page, with a header showing the name of the this company.
This is the js:
setInterv… Continue reading Telcom company injecting javascript in the header of a web-page
name file as command
Is it possible to put command as filename in Linux
For example
touch anything.jpg or touch anything
Can i change name of file with mv to be
anything;nc -e /bin/sh
I know how we do code injections with scripted languages like JavaScript, SQL, PHP, etc. and pretty much wherever a execute() function is used. However, I’m still unsure about how code injection works with compiled languages … Continue reading C/C++ code injection
We currently have a hacker who is asking for a bounty before they will tell where a vulnerability is in our project that uses SQL. He sent us accurate screenshots of his successful attacks by showing the database architecture… Continue reading How to find and monitor a SQL vulnerability in a web project? [on hold]
I have a 3rd party API that I need to connect to and they allow queries that can be formed by changing url parameters.
E.g. /data?startDate=2019-01-01 or /data?name=’John Doe’
It is easy to form these queries by concatenating strings, bu… Continue reading How to protect against injection into a 3rd party REST API?
I am testing a python script that provides a ping function
os.system(‘ping ‘ + command)
all of this characters are filtered
‘&’, ‘;’, ‘-‘, ‘`’ , ‘||’, ‘|’
i can’t use null bytes like %0A i’m passing arguments scri… Continue reading Command injection — filtering bypass [on hold]
I’m writing a libre program named “silently” for enhancing error handling in Bash, emulating the behavior of a jidoka.
My question is if that eval would be vulnerable to code injection if the invoking program surrounds its i… Continue reading Is this Bash code vulnerable to code injection?
What will be the steps to inject a script into an optical mouse which will run as we connect the mouse and make it place into the PC 2nd stage will be the script for gaming (e.g precise aiming for Counter Strike ) ?
Continue reading Hacking Optical Mouse for gaming Battles [on hold]
Lets say, you are developing an AV, and marked any type of injecting into another process (for example openning it and writing to it) and creating remote thread malicious.
If so, what will be some of the false positives? wil… Continue reading What are some of the benign use cases of injecting bytes into another process and creating remote thread?