Collaborate Disseminate
I had a files analysis done on my phone using Falcon Sandbox. An alarming amount of malicious files,marked as clean, were found,identified,and shown each capable abilities. Literally THE ONLY thing of numerous apps/companies/etc I used tha… Continue reading Can malicious files be traced and removed from my phone
I took a course last year that says that using wifi on smartphones can lead to a remote control exploit, also I’ve read about some vulnerabilities in wifi chips that allow such an exploit allowing read and write commands.
An example here
h… Continue reading How a remote control attack on a smartphone using wifi is established [closed]
my target has a server that uses aspx possibly version 4.3 and i just found out that it has an image upload part. They have an image analyzer so it has to be an image file so i wonder if i could embed some sort of remote code execution scr… Continue reading Would a base64ed code work inside an images metadata? [closed]
I was trying to exploit the constantize method in ruby for remote code execution. for example I have this line code:
@mygroups = params[:group][:type].constantize.new(params[:group])
and in the request I sent the following payload:
group%… Continue reading ruby on rails constantize exploitation
my question is very similar to this question but it has been closed without an actual answer.
I found an unrestricted file upload vulnerability in a Node.js application. Basically, I am able to upload any type of file and access the upload… Continue reading Node.js Unrestricted File Upload
I did find the bug link on MS page, but to me, it does not seems to be fixed. Maybe it is some wrong link, maybe I cannot find it. Does anyone have info on this?
The bug in question: https://doublepulsar.com/follina-a-microsoft-office-code… Continue reading Was the Word remote code execution bug fixed? [closed]
Suppose there is a remote server 203.0.113.123 listening on port 1337 that is running a vulnerable application. I have engineered a sequence of inputs for that application that result in a shell. I can generate that input with a Python scr… Continue reading Use a custom Metasploit exploit
I found a Oracle Peoplesoft server has CVE-2017-10366 which lead to RCE. But the firewall blocked all outbound traffic except DNS query. So I think I can create a JSP shell and access to it, but I don’t know how the folder structure is org… Continue reading How is the folder structure of Oracle Peoplesoft organized (linux)? [closed]
I encountered a funny User-Agent header that is a Base64 encoded value of a serialised PHP object. It was only by chance that it didn’t fit in the MySQL field where such agents are logged, resulting in an error logged in Sentry.
This is li… Continue reading PHP exploit attempt using User-Agent header: base64 encoded string containing a serialised PHP object [closed]
I am trying to exec arbitrary commands on a pod via the Kubernetes metrics server. I am doing so by sending HTTP requests to the metrics server endpoint.
These are the paths that I can send requests to:
{
"paths": [
"/… Continue reading Is it possible to exec pods in Kubernetes via a metrics server?