The Null Byte Exploit
13.01.10  |  Hacking

Many web forums have mushroomed on internet and they are setup in a jiffy,so they wont pay much attention to security. An older exploit I m discussing here is The Null Byte HackNull Byte exploit.Almost all forums include a picture and avatar uploading system where you can upload your user signatures and avatars.At first look [...]

Finding vulnerabilities in PHP scripts
11.01.10  |  Hacking, SecurityTeam

Contents : * 1) About * 2) Some stuff * 3) Remote File Inclusion * 3.0 – Basic example * 3.1 – Simple example * 3.2 – How to fix * 4) Local File Inclusion * 4.0 – Basic example * 4.1 – Simple example * 4.2 – How to fix * 5) Local File [...]

Reverse SSH Tunneling (NAT)
07.01.10  |  SecurityTeam

Have you ever wanted to ssh to your Linux box that sits behind NAT? Now you can with reverse SSH tunneling. This document will show you step by step how to set up reverse SSH tunneling. The reverse SSH tunneling should work fine with Unix like systems. Let’s assume that Destination’s IP is 192.168.20.55 (Linux [...]

NMAP Tutorial
06.01.10  |  SecurityTeam

So… let’s say that you donwloaded NMAP in one of its latest versions, if you didn’t then go get it immediately! And come back only when you have it. http://nmap.org/download.html When you start NMAP you should see a screen like this one here: You will quickly get used to this Interface, its really user friendly: [...]

Subnetting an IP address
02.01.10  |  SecurityTeam

IP subnetting is a fundamental subject that’s critical for any IP network engineer to understand, yet students have traditionally had a difficult time grasping it. Over the years, I’ve watched students needlessly struggle through school and in practice when dealing with subnetting because it was never explained to them in an easy-to-understand way. I’ve helped [...]