eXploit

SQL Injections

Posted on Tue 02 December 2014 in Web Hacking • Tagged with web, sql injection, python

A walkthrough of some reasonably advanced SQL injection techniques and exploitation

Building a basic rootkit for hiding files from normal operating system commands on Linux

Posted on Tue 30 September 2014 in Reverse Engineering • Tagged with linux, 32bit, debugging, reverse engineering

A walk through of some basic manual obfucation and deobfuscation methods for IA32

Posted on Wed 24 September 2014 in Reverse Engineering • Tagged with windows, reverse engineering, debugging

Debugging a usermode application using the kernel debugger kd.exe on Windows

Posted on Sat 09 August 2014 in Web Hacking • Tagged with web, xss, pentesteracademy

Solving some cross site scripting challenges at pentester academy

Exploiting a buffer overflow by using return to libc and basic return orientated programming to beat certain protections including never execute (NX)

Cracking an easy Windows crackme from the site http://crackmes.de

Hooking kernel functions on Linux, used by usermode applications, for malicious purposes

Exploiting a buffer overflow vulnerability with address space layout randomization in place

Posted on Fri 04 July 2014 in Web Hacking • Tagged with web, xss, responsible disclosure

Finding and exploiting cross site scripting vulnerabilities in the Nagios plugin PNP4Nagios