Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
How do we crash systems, browsers, or otherwise bring things to a halt, and how do we protect those things? 

Pages: 12Next
Current Page: 1 of 2
Results 1 - 30 of 45
4 years ago
klaus
Kyran Wrote: ------------------------------------------------------- > Just stopping in to say, quickly, I stopped using > Opera the moment they put Opera Unite into their > beta. For those that remember me, kind of a big > deal for me to stop. Lol. 100% agree. Good bye Opera.
Forum: News and Links
4 years ago
klaus
Question is: do these links still count to pass link juice?
Forum: Search Engine Hacking and SEO
5 years ago
klaus
"The server sets the HTTP Content-Type header to “image/jpeg” and prefaces the bot commands with a fake 32-byte JPEG header. The bot checks if the header matches and decodes the rest of the response to retrieve its commands. The commands are encoded using a single byte XOR with 0×4. The malware that CTU has observed being installed by Monkif is a BHO (Browser Helper Objec
Forum: OMG Ponies
5 years ago
klaus
lightos Wrote: ------------------------------------------------------- > I tried the sample page > (/dynamicindex17/interstitial.htm) and both worked > fine for me. Thanks for your post lightos, did you make the change I posted?!
Forum: OMG Ponies
5 years ago
klaus
Ops, the link checks for referrer... Here's my post on DD: http://www.dynamicdrive.com/forums/showthread.php?t=48499
Forum: OMG Ponies
5 years ago
klaus
Hello, I know this is not a help forum, but there are so many Javascript gurus in here, that I thought any would find this in 5 seconds... On this script: http://www.dynamicdrive.com/dynamicindex17/interstitial.js changing this: if (interstitialBox.launch) interstitialBox.initialize() to this: if (interstitialBox.launch) { setTimeout('interstitialBox.initialize()',5000); }
Forum: OMG Ponies
6 years ago
klaus
So, any further disclosures on the new clickjacking exploit everyone is whispering around dark corners lately? Seems like it keeps spreading even after RSnake pulled the OWASP NYC AppSec 2008 Conference speech off... http://xssworm.blogvis.com/39/xssworm/clickjacking-is-a-major-threat-to-the-internet/
Forum: News and Links
6 years ago
klaus
More info: http://cyberinsecure.com/wordpress-doorway-spam-attacks/
Forum: Search Engine Hacking and SEO
6 years ago
klaus
Now using wp-content/1/ http://www.google.com/search?num=100&hl=en&q=inurl%3Awp-content%2F1%2F
Forum: Search Engine Hacking and SEO
6 years ago
klaus
wow. I want this! Any clue on how it's done?! clues: http://creativebriefing.com/wordpress-hacked-googlerankinfo/ http://www.shoemoney.com/2008/03/21/wordpress-233-hidden-links-injection-exploit-and-how-to-not-let-it-happen-to-you/
Forum: Search Engine Hacking and SEO
6 years ago
klaus
http://wordpress-blog/?textlinkads_action=sync_posts& textlinkads_post_id=’/**/U/**/S/**/1,user_login,user_pass, display_name/**/from/**/wp_users%23 wow source: http://blogsecurity.net/wordpress/wp-textlinkads-plugin-sql-injection-vulnerability/
Forum: SQL and Code Injection
6 years ago
klaus
Seems like FeedBurner found something: John Chow looks to be down to 4,000 subscribers today! Rumours it has to do with email subscribers.
Forum: Search Engine Hacking and SEO
6 years ago
klaus
Yes, RSnake, that might be indeed the case. I have not been able to sucessfuly find a XSS hole to enter, thought. Any takers?
Forum: Search Engine Hacking and SEO
6 years ago
klaus
Thanks, is the video also available?
Forum: News and Links
6 years ago
klaus
Is this a fake? http://himynameischris.com/?p=17
Forum: News and Links
6 years ago
klaus
Hello krazl. I think there's more than image overlay. I checked here and it actually worked: http://feeds.feedburner.com/~fc/shoemoney
Forum: Search Engine Hacking and SEO
6 years ago
klaus
Here comes another worm...?!
Forum: Full Disclosure
6 years ago
klaus
5000 friends. Over and out. Santa removed.
Forum: Full Disclosure
6 years ago
klaus
Over 3000 added now. Fascinating to see it spreading.
Forum: Full Disclosure
6 years ago
klaus
This thing is going to reach "Singularity" in less than 24h!
Forum: Full Disclosure
6 years ago
klaus
Nemessis, ten users so far. Seems like hi5 users are not Firefox fans.
Forum: Full Disclosure
6 years ago
klaus
wow. xss worm hitting hi5 in less than 24h... btw, what is i.js doing?
Forum: Full Disclosure
6 years ago
klaus
Thanks a lot RSnake! Very flattered for receiving such a compliment from someone like you! :)
Forum: Full Disclosure
6 years ago
klaus
XSS on Whois data?! Source: http://www.blackhatdomainer.com/whois-xss/
Forum: Full Disclosure
6 years ago
klaus
Any real word example on a website vulnerable to those new vectors? How do you test?
Forum: XSS Info
6 years ago
klaus
Here's one: http://vuln.xssed.net/2007/11/21/profiles.friendster.com/ For Friendster ;)
Forum: Full Disclosure
6 years ago
klaus
<div/style=\-\mo\z\-b\i\nd\in\g:\url(//business \i\nfo.co.uk\/labs\/xbl\/xbl\.xml\#xss)> Gareth, how do you use this?!
Forum: XSS Info
6 years ago
klaus
Any new ones for technorati, delicious or other popular social bookmarking sites? ;)
Forum: Full Disclosure
6 years ago
klaus
Any ideas on how to hide referer these days since most logs (Google analytics/Statscounter) are done using Javascript?! I miss the good old days when we didn't depend on javascript and a simple fake HTTP HEADER injection would do the trick! (referer & host) Also, is there anyone out there who have been sucessfuly spaming links on urchin.js? I am asking this because I have seen this week,
Forum: SPAM
6 years ago
klaus
Uses for Cross-site Request forgery from the blackhat SEO perspective: * Publishing/Spamming links: People spamming forums with links is nothing new. By utilizing CSRF on the otherhand you could force a website user base (either by embedding it into your site html directly, or by utilizing an XSS vulnerability) to submit forms with your url without their knowledge. * Redirectors: Search en
Forum: CSRF and Session Info
Pages: 12Next
Current Page: 1 of 2