Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Who's got it? Who's giving it away? How to protect your privacy and steal it from other people. For intellectual privacy, personal privacy, and blackhats alike... 

Pages: 12Next
Current Page: 1 of 2
Results 1 - 30 of 31
4 years ago
dragunov
Hey Guys Just wanted to tell u all that I recently posted a blog on HPP on my blogging site http://taorecon.blogspot.com/. I hope u all find it interesting like I did while I was studying this attack and made a demo for this attack. Any corrections, feedback and suggestions are welcome. Regards and Cheers!!
Forum: News and Links
4 years ago
dragunov
Hey Barbarianbob Thanks a lot!! Both the methods work like a charm.............:) Cheeeeeeeeeeeerrrrrrrrrrrsssssssssss!!!!!!!!!!!!!
Forum: XSS Info
4 years ago
dragunov
I don't have the option to hide the button. Any other way ? Cheers !!!
Forum: XSS Info
4 years ago
dragunov
Hi guys Just wanted to know if there is a way to add an attribute in an element dynamically in IE.. Like if I want to add an attribute in an element dynamically in firefox I can do this:-- var a=document.getElementsByTagName("form"); a[0].setAttribute("onsubmit","alert(1)"); Now when I will submit the first form in the page I will get an alert(1) box.. I
Forum: XSS Info
4 years ago
dragunov
Thanx br0!! :) Its nice to get help from u guys, since there is no one to help me out. Cheers!
Forum: XSS Info
4 years ago
dragunov
Hi rvdh I got that.. But can u tell me how can my swf hosted on members.lycos.co.uk make a request to webfile.com (supposing it has an open crossdomain policy file) and get the response, extract the dom data and forward it somewhere to me.. TIA
Forum: XSS Info
4 years ago
dragunov
Hey Gareth Lets say that the site http://webfile.com has a crossdomain.xml (with allow="*").. How will my flash file hosted on http://members.lycos.co.uk be able to access data including any dom data from webfile.com?? TIA Cheers!
Forum: XSS Info
4 years ago
dragunov
Hi all Just read http://code.google.com/p/doctype/wiki/ArticleFlashSecurityCrossDomain and according to it :-- "Flash will let your .swf file make requests for other URLs on the same domain the .swf was loaded from, and your .swf will be able to examine what gets loaded. But it won't make requests to other domains unless the other site gives permission, by hosting a cross-domain policy fi
Forum: XSS Info
4 years ago
dragunov
Hey there, Has anybody read the starting of the 2nd chapter of hacking: the next generation?? I wanted to ask from that, is all of that content correct?? In advanced and automated attacks section I think there is violation of SOP (so I doubt it works). Also I need to know why do we need 3 or 4 iframes for the attacks shown. We can carry out these attacks with just 2 iframes within the main win
Forum: XSS Info
4 years ago
dragunov
Hey thanx for the rply. This behavior can be found in all the php applications on a web application. And apart from that I think u r right, u can only guess that the URL is rewritten. And can u tell me a reliable source where I can study this json concept u mentioned?? Cheers!
Forum: XSS Info
4 years ago
dragunov
Hi gareth What I meant was that even if the rewrite engine is off and u call a php application: http://site/index.php like :-- http://site/index.php/ U will still get a 200 and index.php in response.. And BTW my question was not regarding the status of the url rewriting engine( like mod_rewrite), because nowdays by default u will get this module enabled. It was how we can dete
Forum: XSS Info
4 years ago
dragunov
Hey !! U can always add a forward slash to php applications or aspx applications (the languages I know for this behaviour) and always get a 200 OK. Let me know wat u think. Cheers!
Forum: XSS Info
4 years ago
dragunov
Alrite.. So can u tell me exactly how should I use the forward slash , I guess its like this:-- http://site/article-1.html/ is that so?? And what response should I expect to figure out that URL rewriting is really taking place.. Cheers!
Forum: XSS Info
4 years ago
dragunov
LOL.. thats wat I thought that u must have done it many many times. And for the URL rewriting part-- When the case u r telling me happens, it is easy to spot.. But I have encountered situations in which I had no clue that the URL is being rewritten and missed potential security flaws. One example was something like this:--- http://site/article-1.html being rewritten to :---- http://
Forum: XSS Info
4 years ago
dragunov
Hey man Thank again for ur lightening fast replies!:) I got that. It doesnt works if the parent sites document.domain and iframes document.domain are not the same!! Tested that too! And by the way tell me how were u able to give me such an accurate answer without even testing it once?? Heh heh.. Just curious.. And also tell me if u have a reliable way to detect URL rewriting engines employe
Forum: XSS Info
4 years ago
dragunov
Hey Gareth Thanks a lot!! Tested it!! BTW can u also tell me wat should be the prerequisites for this to happen. I mean I know that both IFRAMES document.domain should be the same , but is it that the parent site's document.domain should be the same as the iframes document.domain?? TIA Cheers!
Forum: XSS Info
4 years ago
dragunov
I had some questions regarding iframes created using an XSS payload. The scenario is something like this:-- I have loaded two iframes on a page using javascript and both iframes are having the same document.domain. Now my questions are:--- 1.) Can the base javascript that loaded the two iframes extract and load data in any of the two iframes ?(This is possible by the way, but I am still confir
Forum: XSS Info
4 years ago
dragunov
Hi rvdh Ur page is not opening.. And I did'nt understand ur point. Can u be a bit clear?? TIA
Forum: Privacy
4 years ago
dragunov
Hi rvdh Correct me if I am wrong , but I think what u r saying will happen only if the URL rewriting engine is configured to redirect to a custom error page, if the requested URL is not found. I have configured mod_rewrite in my xampp apache web server to rewrite the URL http://site/index.php?page=a to http://site/page/a. But when I try to cause a 404 error message, the message is the same a
Forum: Privacy
4 years ago
dragunov
Hi rvdh I didnt got ur point. Is this wat u meant - if mod_rewrite is used, we wont get any errors and always be redirected to a 200 OK? Thanks in advance
Forum: Privacy
4 years ago
dragunov
hi CrYpTiC_MauleR thanks for the reply but are u sure this happens in apache? because if it does, thats really great and i will have to test that. and have u ever used acunetix and the way it decides that the server is employing a url rewriting engine? thanks in advance
Forum: Privacy
4 years ago
dragunov
Hey guys I was wondering if any of u know what is the proper way of detecting a URL rewriting engine implemented on the web server side. I have seen one way in which if we find a file existing in a non-existing directory, there is probably a URL rewriting engine employed on the server side (Thats what application scanners like acunetix say). Has anyone of u got a proper method (or methods)
Forum: Privacy
5 years ago
dragunov
Hi Pappy and Tx Thanks for ur replies Tx can u tell me exactly what that javascript code does. I mean I am not that good in javascript. And What I want to do is that using xss I can inject a javascript that adds an attribute to the input tag that is already there. For example if the orignal input tag is <input type=submit value=go> Then after the xss is performed its function sho
Forum: XSS Info
5 years ago
dragunov
Hello Pappy First of all sorry for such a late reply. Secondly, What I want is a way of monitoring an event like submission of a form without fiddling with the form(i.e. the form shouldnt get distorted). Thanks
Forum: XSS Info
5 years ago
dragunov
what I mean by adding a new event is if there is an xss in a page; say a login page in the username field. Now I have an img tag which is somewhere outside the login form. Now using the xss I want to craft a javascript which will convert the img tag from something like <img src="http://site/"> to <img onfocus=javascript src="http://site"> Thanks again
Forum: XSS Info
5 years ago
dragunov
Thanks a lot pappy. But Can't we add a new event in a tag? Or consider a situation in which the xss is in the login page but is separate from the login form, then can we add a script to monitor when the user submits the login form?? Thanks in advance
Forum: XSS Info
5 years ago
dragunov
Hi guys I was wondering If the following is possible: There is a login page in which there is reflected xss in the username field. Now Can I add a new attribute or an event in a tag using that. For example, I want to add an onsubmit event in the form tag using the xss. Is that possible. If yes, how?? Thanks in advance
Forum: XSS Info
5 years ago
dragunov
Hey all all right I got the point rsnake was trying to make(actually I was taking the concept in the wrong context). @Gareth Heyes Thanks for the reply. Your point that CSRF attack would only work if there are no tokens or the token can be accessed in some way is perfectly true. thanks and Cheers!
Forum: CSRF and Session Info
5 years ago
dragunov
@lightos I completely understand ur point. We can perform requests by submitting the form or use XHR to GET/POST any arbitrary transaction. But I am still confused cause this action will still use the session of the authenticated target user to be successful, and it wont work if we dont target an authenticated user; so arent we still riding the session and that is what CSRF is. Thanks @draguno
Forum: CSRF and Session Info
5 years ago
dragunov
@Gareth Heyes Thanks for the quick reply. If there is an xss issue, I will be able to access the content on that domain;very true. Correct me If I am wrong, But for performing an arbitrary transaction on the site (even if there is an xss issue in the transaction) I would still have to do a CSRF; isnt that correct?? Thanks dragunov
Forum: CSRF and Session Info
Pages: 12Next
Current Page: 1 of 2