 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| | |
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9144
 People Online:
 Visitors: 68
 Members: 0
 Total: 68
|
|
|
|
|
|
Full disclosure |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
|
| so yea i need help with keylogger's ! i have used ''perfekt keylogger'' and ''ardamax'' wiht perfect keylogger i get some problems when i send file to ppl they cannot open it.. and with ardamax the sa ... |
|
|
|
|
yea somebody likes sql and somebody dislikes it ! ;]
and about Rfi right now it's ok will try to read some more stuff and learn more ;] ! mby someone in IRC will help me ;D
btw i cannot connect t ... |
|
|
|
|
Mmm, I think sqli is far more difficult ^_^ You need to know SQL, not always but in many cases.
One thing more: NULL Byte, %00, works because it's the urlencoded version of \0, the C,C++ NULL Byte ... |
|
|
|
|
Thank u guys  hmm bit hard to understand this but i will try to learn ;] this is not so easy as SQL injection lol  but i thought the same about sql inject. when i didnt know anythin.. ;] ! tnx in ... |
|
|
|
|
so i have some questions..
1. first one is about Rfi if i have found Rfi vuln site [atleast i tihnk so] what should i dot next ?!
i have made host and uploaded c99 in it.. and did something li ... |
|
|
|
|
Use where+table_name=char(117,115,101,114,115)-- instead of where+table_name='users'--
thankyou.. it helped tryed that before but probably did something wrong :/ !
and one more whats the ... |
|
|
|
|
www.mysyteblaah.com/asdasd?id49+union+all+select+1,table_name,3,4+from+information_schema.tables+--
www.mysyteblaah.com/asdasd?id49+union+all+select+1,column_name,3,4+from+information_schema.columns+ ... |
|
|
|
|
Beta-version of "InsidePro Extreme GPU Bruteforcer":
heard about this some time ago... too bad i dont have 8th series video card...   !! |
|
|
|
|
got this one from sql inj: @ web.shop.. but can't decrypt it i tryed PasswordPro some RT's but nothing.. :/ soo who can healp me out ?!
00002c8425ded66481f280ff08ff261f
tnx  |
|
|
|
|
I can't see any interesting stuff, you can do with XSS here. Most useful security holes are local and remote file inclusions, remote code executions and sql injections - that's my opinion
ok ;] ... |
|
|
|
|
"It seems that user credentials are sent to /shop/login.php in clear text" - this is pointing to the fact, that login is done via HTTP, not HTTPS. It's useless for you right now.
Upload stuff - Acune ... |
|
|
|
|
"It seems that user credentials are sent to /shop/login.php in clear text" - this is pointing to the fact, that login is done via HTTP, not HTTPS. It's useless for you right now.
Upload stuff - Acune ... |
|
|
|
|
so i was reading some stuff andfind out this soft. so i give a try and downl. it ;D and try on some sytes...
anyway it works for one syte i got like 76 cross syte scripting errors.. broken link ... |
|
|
|
|
hi,
I am conducting a pen-test on a web app that is vulnerable to SQL injection.
well,
The backend database is MS Access and I discovered the names of the fields but did not discover the name ... |
|
|
|
|
| ok ;] !! thanks for aanswers.. !! |
|
|
| Page 1 of 2 |
Goto page 1, 2Next
All times are GMT |
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
