LDAP Injection Vulnerabilities
22.03.08  |  Uncategorized

LDAP Injection Overview
LDAP Injection attacks are not as common as the other types of injection attacks, but if your product uses an LDAP server this must be tested. An LDAP Injection could occur anywhere that the underlying code could use some type of input for any ldap searches, queries, or any other ldap function.Example of [...]

Basic MS-DOS commands
20.03.08  |  Uncategorized

ADDUSERS – Add or list users to/from a CSV file
ARP Address – Resolution Protocol
ASSOC – Change file extension associations
ASSOCIAT – One step file association
AT [...]

Winsock tutorial
14.03.08  |  Hacking, SecurityTeam

Just a little something I have been writing on and off. It was originally meant to be a collaboration of two of my prior tutorials, however, I’m starting to find it a bit ludicrous to post a tutorial on “Making Trojans in C++” so I guess I won’t really update it so it fits the [...]

Log Poisoning
13.03.08  |  Hacking, SecurityTeam

Log poisoning is a technique that not many know about.
this technique works only if you can make an LFI of the page.
if we say that you call index.php, which is vulnerable to LFI
and writes index.php? inc =../../../ var / www / logs / access.log
So you see that it will produce a logfile.
that looks something like [...]

XSS Injection Vulnerabilities
12.03.08  |  Uncategorized

Cross Site Scripting Overview
Cross Site Scripting vulnerabilities are sometimes referred to XSS or CSS vulnerabilities. Typically XSS is preferred over the use of CSS. CSS typically refers to the Cascading Style Sheet commonly used in website design. XSS vulnerabilities are a dangerous type of attack. Especially since the sudden infusion of the Internet and all [...]

Javascript Injection
11.03.08  |  Uncategorized

JavaScript Injection Overview
JavaScript is a widely used technology within websites and web based applications. JavaScript can be used for all sorts of useful things and functions. But along with this comes some additional security issues that need to be thought of and tested for. JavaScript can be used not only for good purposes, but also [...]

DoS vulnerabilities
01.03.08  |  Uncategorized

Denial Of Service Overview
DoS or Denial Of Service vulnerabilities will occur if there is some type of bottleneck within the software application. This could cause excessive cpu usage, memory leaks, disk i/o, slow or long ldap searches, database calls or large join operations. A Denial of Service attack could bring down an entire system to [...]