Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Whether this is about ha.ckers.org, sla.ckers.org or some other project you are interested in or want to talk about, throw it in here to get feedback. 

Pages: 12Next
Current Page: 1 of 2
Results 1 - 30 of 44
5 years ago
euronymous
Gareth Heyes Wrote: ------------------------------------------------------- > @euronymous > > Expression doesn't work on FF only IE, try the > vector on IE I know Gareth, but looking at this blog (http://maliciousmarkup.blogspot.com/2008/11/hidden-fields-vs-css.html), the one mentioned by the thread to which Pappy pointed me, it should work on firefox too... Still searchi
Forum: XSS Info
5 years ago
euronymous
PaPPy Wrote: ------------------------------------------------------- > search feature works well, i think this is the 3rd > post in like 2 months? > http://sla.ckers.org/forum/read.php?2,17217 I've already read the thread you are mentioning...I've tried the vectors but none are working for me. For example: "style="a:expression(alert(1));" is not working on F
Forum: XSS Info
5 years ago
euronymous
Hi Gareth type=hidden comes BEFORE the injection the code that will be generated after the injection looks as following: <form id="PrevFormContributions" method="GET" action="http://xxx.com/xx.xx"> <input type="hidden" name="startDate" value=""/> <input type="hidden" name="endDate" value=&
Forum: XSS Info
5 years ago
euronymous
Hi guys I'm trying to exploit a quite difficult case (well, for me): hidden input form field, where the value of a parameter is modified by a GET request. < and > are escaped. I've found the following way to exploit it, for IE6/7: "style%3d"width: expression(alert('hi'));" This is working, actually adding the style attribute on the input element. With IE8, t
Forum: XSS Info
5 years ago
euronymous
as always, lack of Java exception trace HTML escaping... http://antisnatchor.com/2009/03/10/riotfamily-release-80-xss/
Forum: Full Disclosure
5 years ago
euronymous
Hi guys take a look here http://antisnatchor.com/2008/12/22/konakart-2260-responsible-disclosure/ and maybe post a comment :) Thanks!
Forum: Full Disclosure
5 years ago
euronymous
ihihihih...nice mariuzzo :) ------------------------------------------------------- > Talking about Eclipse... > > http://localhost:8000/%22%3E%3Cscript%20src=//0x.l > v%3E%3C/script%3E
Forum: Full Disclosure
5 years ago
euronymous
Eclipse BIRT reflected XSS (all versions) XSS will be fixed in milestone 2.5.0 ahaha see my blog http://antisnatchor.com/2008/12/18/eclipse-birt-reflected-xss/ Have fun
Forum: Full Disclosure
5 years ago
euronymous
Hi guys a few days ago I opened my new full disclosure blog/website. http://antisnatchor.com It will be updated on free time with Full Disclosures (especially jee applications) and so on... Take a look at it Have fun
Forum: Full Disclosure
5 years ago
euronymous
Hi all I really don't want to bother you again with mcafeesecure.com abstruse testing methodologies and WHY they fail in the reality: you all know that (I suppose so). But it's always really funny for me to find bugs like reflected XSS on website that claims to be secure because they have the "HACKER SAFE" gif on their website. I'm actually developing, with my business friend, a
Forum: Full Disclosure
5 years ago
euronymous
Hi guys I'm finally ready to post some vulnerabilities that I've found lazily browsing the web, for fun/profit. Enjoy them. -- Italian Hosting -- http://www.hosty.it/index.jsp?sezione=registrazione_dominio_step1&dominio=%3CScripT%3Ealert%286%29%3C%2FScripT%3E&estensione=.it&opzione=REG_DOM --- Goa/Trance world known service --- http://217.160.136.176/cgi-bin/search.cgi
Forum: Full Disclosure
6 years ago
euronymous
Hi guys I opened a new thread here http://sla.ckers.org/forum/read.php?13,22665 few days ago... just read it and let's me know your thoughts please a feedback will be really appreciated !!!! don't be lazy ;)
Forum: CSRF and Session Info
6 years ago
euronymous
Hi guys... it has been a long time since the last time I wrote here... I was really busy.. I'm writing my bachelor thesis with Ozalp Babaoglu (you know them... ;)): his original title is Web Session Management from a Hacker's perspective. I will post some paragraphs: I really want a feedback from you.... so...lets start and lets me know of course!!!! ++++Session management++++ W
Forum: News and Links
6 years ago
euronymous
thanks so much Robert and thanks to A******* too... you're great guys, helping me to know more and more...:) I will keep you informed on my research an thesis.... I will be a bit busy with the last exams, but I will preserve some time to read sla.ckers, ha.ckers and wasc mailing list :) SSL session IDs seems interesting too...I will keep it in mind thanks guys Alla Prossima (fro
Forum: Projects
6 years ago
euronymous
yep you're right rsnake... in fact I've switched thesis theme on another one... Session management from a hacker's perspective (ahah, and my prof too was surprised by the thesis name)...anyway, I'm researching a lot on session management, especially related to JEE application servers... it was Achim Hoffmann, a contributor of WASC, that suggested me the theme...I've been contacted from micr
Forum: Projects
6 years ago
euronymous
Hi Robert.. yes you are understanding me...that was my first idea... I know it's not easy to implement, and maybe the benefits are not so clear from the first time you read my post, but with my surprise it got your attention :) Actually, as I wrote here http://sla.ckers.org/forum/read.php?3,18395 , I've directed the research of my thesis on session management. Maybe it can become interesti
Forum: Projects
6 years ago
euronymous
Hi guys... I've finally decided to make my bachelor thesis (for those who red my topic in Projects - maybe a bit confused) on Session management... it will be named SESSION MANAGEMENT ON WEB APPLICATIONS FROM A HACKER'S PERSPECTIVE... for sure I will ask you few things during my long work...adding sla.ckers.org community, and Robert's ideas as "ringraziamenti" (like: THANKS TO....
Forum: Full Disclosure
6 years ago
euronymous
In fact I'm using IceFaces, for ajax related stuff, and Sun JSF (not MyFaces)... thanks anyway
Forum: XSS Info
6 years ago
euronymous
Hi there... as I posted in SQL section about hibernate, i want to know if someone of you found some xss in JSF based JEE applications... it seems that is doing some metacharacters filtering.. please let's me know thanks
Forum: XSS Info
6 years ago
euronymous
Hi guys... I red that hibernate can escape sql, and so prevent sql injections using his own language HSQL... anyone of you was succesfull doing dql injection in jee applications with hibernate? let's me know
Forum: SQL and Code Injection
6 years ago
euronymous
Hi guys as I know that I can find really good experts in this powerful forum, I wanna ask you a suggestion. I'm starting my bachelor thesis in Italy :), and of course I wanna research something about security. I was thinking in a way to apply RBAC access control mechanisms on JEE applications, in a different way: Java1.2 security model already use something like RBAC in his AccessControll
Forum: Projects
6 years ago
euronymous
fuck... I want to do anything i want with my datas... maybe encrypt them? yes, why not... and i don't want the policy to know what i'm doing.. it must not become a new f***** echelon... global control? NO PLEASE
Forum: News and Links
6 years ago
euronymous
well actually is a really weird thing... nothing change is a see the source code.. watching the response in hexadecimal format: 00000000 72 65 67 66 0d regf strange because whiteAcid..you're reason...if I try to open my sam file with firefox, i get a download popup... weeeeeeeeeeeeeeeird i'm starting to have an headache ...:(
Forum: Full Disclosure
6 years ago
euronymous
I see that wget actually support POST .. i'm gonna try with it... not so easy but seems the only chanche to retrieve the sam file in a safe way :)
Forum: Full Disclosure
6 years ago
euronymous
i cannot try with wget because the ONERROR variable in which I put the path traversal is forwarded to the server trough POST... I'm pretty sure that the machine is using MS-SQL..also if I didn't found for now any ODBC errors...it's a big shop online...so for sure is storing results in db, maybe not in the same machine...don't know.. maybe some interesting files of IIS (version 5, i'm sure) o
Forum: Full Disclosure
6 years ago
euronymous
uuuu interesting guys injecting ../../../../../../../../WINNT/system.ini i gotta this ; for 16-bit app support wave=mmdrv.dll timer=timer.drv [386enh] woafont=app850.FON EGA80WOA.FON=EGA80850.FON EGA40WOA.FON=EGA40850.FON CGA80WOA.FON=CGA80850.FON CGA40WOA.FON=CGA40850.FON it's so funny :) trying SOMETHING LIKE %2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%
Forum: Full Disclosure
6 years ago
euronymous
ok using WINNT/repair/sam i gotta this: regf just this in a total blank page... fuck..so strange.. I'm gonna try a little bit more
Forum: Full Disclosure
6 years ago
euronymous
fuck.. so fast replies guys.. thanks so much I'm gonna try now! stay tuned
Forum: Full Disclosure
6 years ago
euronymous
Hi there... I've found a path traversal bug on a huge italian web application... ../../../../../../../../boot.ini permit me to take a look inside it :) timeout=30 default=multi(0)disk(0)rdisk(0)partition(1)\WINNT multi(0)disk(0)rdisk(0)partition(1)\WINNT="Microsoft Windows 2000 Advanced Server" /fastdetect really good for now..but is I try to "traverse" other
Forum: Full Disclosure
6 years ago
euronymous
In fact...I already know TrueCrypt.. and I will start to use it more and more :) fucking cryptography restrictions
Forum: News and Links
Pages: 12Next
Current Page: 1 of 2