Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Who's got it? Who's giving it away? How to protect your privacy and steal it from other people. For intellectual privacy, personal privacy, and blackhats alike... 

Current Page: 1 of 1
Results 1 - 11 of 11
4 years ago
ktion23
I'm just curious, have u guys tried it? http://www.blackhat.com/presentations/bh-usa-09/ESSER/BHUSA09-Esser-PostExploitationPHP-PAPER.pdf
Forum: SQL and Code Injection
4 years ago
ktion23
did u tried the file descriptors after all? =(
Forum: SQL and Code Injection
4 years ago
ktion23
mmm, is any knowed/public way to gain shell access with it?
Forum: Privacy
4 years ago
ktion23
Pragmatk < are u being serious? ppl really learns something in the university? ontopic: do x times (... limit x offset y) with some script.
Forum: SQL and Code Injection
4 years ago
ktion23
Pragmatk < are u being serious? ppl really learns something in the university?
Forum: SQL and Code Injection
4 years ago
ktion23
But it doesn't. < it doesnt work due to mysql having strings limited in size?
Forum: SQL and Code Injection
4 years ago
ktion23
/proc/self/fd/0..x 0/1/2 are the i/o/e so skip them (?) most times var/log/apache2/error.log is not accesible but the custom logs for the vhost are. EDIT: be carefull when inserting php code in a log (ie. ruining it using quotes) bcoz once it haves invalid code the parser will stop parsing it (?) i usually use this: <?php if ($_GET != null) { $thefile = implode($aliennull, file($_G
Forum: SQL and Code Injection
4 years ago
ktion23
i'm in php5, with these commands dissabled in php.ini: chmod,chown,chgrp, define_syslog_variables, openlog, syslog, dl,phpinfo, apache_get_modules,apache_get_version,apache_getenv,apache_note,apache_setenv, disk_free_space,diskfreespace, highlight_file, ini_alter,ini_restore,openlog,phpinfo,show_source,symlink, proc_nice,shell_exec,system,passthru,proc_open, exec, ftp_exec, pcntl_exec,po
Forum: SQL and Code Injection
4 years ago
ktion23
if group concat returns a string u can do length(gc), substr(gc, 0, 1024), substr(gc, 1024, 1024)... etc
Forum: SQL and Code Injection
4 years ago
ktion23
thanks very much
Forum: SQL and Code Injection
4 years ago
ktion23
i have this include('gfdfg_'.add_slashes($some_db_field).'.php'); special chars but ', ", 0x00 are enabled, is there a way to get right of the .php ?
Forum: SQL and Code Injection
Current Page: 1 of 1