Collaborate Disseminate
I’ve recently spotted a currently circulating across the underground ecosystem a newly released DIY search engines based mass SQL injection… Continue reading Profiling a DIY Search Engines Based Mass SQL Injection Capable Hacking Tool – An Analysis
While attempting OS Command Injection on a url.com/?ping= parameter, I see that all single quotes ‘ are being escaped and replaced by \\’.
This is problematic because whenever you submit a value to ?ping= it’s wrapped with two single quote… Continue reading How can you perform OS Command Injection when single-quotes are filtered?
Please let me present you with a hypothetical scenario. A journalist is targeted by hackers. Said journalist is very careful with email attachments and will not click on them. However, surfing the web is full of risks. I have two questions… Continue reading How easy is it to inject malware into websites?
I’m trying to understand how to use the doc() function of xpath in several ways to carry out xpath injections
Lab’s query:
String xquery = "/root/books/book[contains(title/text(), ‘" + query + "’)]";
I can use both ve… Continue reading xpath injection and doc() function
During a pentest we identified some indications of XPath injection, meaning we were able manipulate the HTTP request parameters with single quotes and logic (i.e. appending and 2=2) to derive various server responses.
This software stack c… Continue reading XPath injection remediations?
I downloaded a program called Process Monitor from Microsoft Store.
I see suspicious IP addresses popping up among my cod.exe processes.
Moreover, these suspicious IP addresses are communicating through the xbox port while I’m playing on P… Continue reading Can an average user protect himself against process injection at some level?
I copy / pasted a data:image/png;Base64 image from a Google search into a Google Slide, before realizing it was a BASE64 image. Is there any possibility that this contains malicious code, or any way to check it?
[…]data:image/png;base64… Continue reading Security Implications from Base64 Image
Let’s say I am an organization with all my resources on example.com. I have a web server in the DMZ that hosts a website named app.example.com open to the internet.
The CSP for that website is Content-Security-Policy: default-src ‘self’ ht… Continue reading How secure is using https://*.domain.com as a value in a Content Security Policy?
I found a page, which analyzing memory processes (https://analyze.intezer.com/)
After the searches, it didn’t find anything harmful, but in the detailed analysis I found a module without code, which is injected into the memory among the pr… Continue reading Could a no code module injected to memory phenomenon in the process tree of the steam.exe file be suspicious?
This is the code:
$stmt = $db->prepare("SELECT DISTINCT * FROM kurssit WHERE BINARY id=? AND BINARY avain=?");
$stmt->bind_param("is", $kurssi, $avain);
// prepare and bind
$kurssi = $_POST["kurssi"];
$a… Continue reading Why can I not sql inject this piece of code?