ghost1369's Blog

Exploits And Buffer Overflows

Tue, 25 Jan 2011 03:10:00 +0000

Havent been on in a while, figured it was time to get back to it. Let's talk about buffer overflows for a minute. The first thing that you as a reader needs to remember is that if you are going to try this, do it in your own lab. I do not endorse or promote hacking into any equipment that is not yours. Let's begin:
First Run your favorite...

Preventing Xss In Jsp

Sun, 29 Aug 2010 05:15:00 +0000

Havent been on in a while, figured i was over due. In this article i am going to tell you a really simple way to prevent basic xss injections on your jsp websites. Here we go:

After you have created a basic form for your main page, generally it will either be sent to a servlet, or to another jsp page. The preoblem is by default without using a...

Blind Sql Injection

Wed, 04 Aug 2010 03:47:00 +0000

Sql injection is a way to get information from a database, login as an authenticated user, or even delete records in a database. Sql injection can be performed on Sql and MySql servers. Many times to find the vulnerable server an attacker will perform simple injections, then escalate to more complex ones. Lets start with an example url and sql...

Buffers Are Overflowing? What?

Sat, 24 Jul 2010 05:09:00 +0000

Let's talk about buffer overflows, how they work, and what they actually are.

Buffer overflows are found by an attacker sending a long string of characters into a program or remote connection / port until it crashes. Once it crashes the attacker can actually attach a debugger to the process to see the memory address that it crashed at. This...

Anonymity On The Web

Sun, 18 Jul 2010 21:44:00 +0000

It is always a good thing in our profession, or for those of who are in the non-profession, to stay anonymous on the web. One of my favorite tools for this is called socks chain. Many would argue that tor is the best, and i am here to tell you why socks chain is better than tor. Let's begin with tor and what it does and does not do.
Tor
...

What Antivirus?

Thu, 15 Jul 2010 03:00:00 +0000

So far i have covered some of the basics for a few different things such as metasploit, and web injection attacks. Now im going to cover antivirus bypass with metasploit. Many of you understand encryption, and encoding through the use of certain tools encoding can be used through the metasploit framework to hide your payload from the antivirus...

Why Go Root When You Can Have System?

Fri, 09 Jul 2010 06:04:00 +0000

let's change gears for a bit and talk about system and network access. Root or Admin access is all fine and good, but lets go System and Kernel level. If any of you have used Rootkits, you know the power that they have over the system. In this blog post i will cover the ways that rootkits can be used in conjunction with metasploit to maintain...

Brief Intro To Injection!

Wed, 07 Jul 2010 04:45:00 +0000

In this entry i will talk about injection flaws in the 3 major forms:

1) Sql injection - Occurs when sanitaion is not performed with user validation from a website that uses SQL databases; can occur in ASP, PHP, and JSP applications.

2) Ldap Injection - Occurs when user input is not validated from a website or app that uses a vulnerable string...

Youtube, The New Myspace?

Tue, 06 Jul 2010 02:26:00 +0000

It would seem that a security researcher has found an html injection flaw in youtube's comment section!

The way it works:

When creating a comment a