|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
Get passed |
|
Posted: Thu Apr 21, 2005 11:17 am |
|
|
siber54 |
Beginner |
|
|
Joined: Apr 21, 2005 |
Posts: 2 |
|
|
|
|
|
|
|
You can!!!!!!!!!
See Nuke sentenil Block these little shits *
Right?
lest say you have this in it */UNION/* <--- That will get blocked DUH
Well Do this change out the * with %2a
SO?
Put it like this now %2a/UNION/%2a <---That will pass hehe
So change all * with %2a and you are OK LOLOLOL
I use it in my Old site exploiter
I am not sure if the new sentinel Blocks it But i don't think so , SO Have Fun and Hack sites HEHE ,,,, Oh and Use Cain 2.5 to crack the MD5 Hashes ......
Siber54
i'd Give my site But i took it down But here is were i am at now if you just go and you can IM me www.yahoochaos.com |
|
|
|
|
|
Re: Get passed |
|
Posted: Thu Apr 21, 2005 12:42 pm |
|
|
waraxe |
Site admin |
|
|
Joined: May 11, 2004 |
Posts: 2407 |
Location: Estonia, Tartu |
|
|
|
|
|
|
siber54 wrote: | You can!!!!!!!!!
See Nuke sentenil Block these little shits *
Right?
lest say you have this in it */UNION/* <--- That will get blocked DUH
Well Do this change out the * with %2a
SO?
Put it like this now %2a/UNION/%2a <---That will pass hehe
So change all * with %2a and you are OK LOLOLOL
I use it in my Old site exploiter
I am not sure if the new sentinel Blocks it But i don't think so , SO Have Fun and Hack sites HEHE ,,,, Oh and Use Cain 2.5 to crack the MD5 Hashes ......
Siber54
i'd Give my site But i took it down But here is were i am at now if you just go and you can IM me www.yahoochaos.com |
Yep, i tested it with newest Sentinel version and it will bypass UNION trap. And there are more possibilities to fool the Sentinel anti-sql-injection filters |
|
|
|
|
|
|
|
|
Posted: Thu Apr 21, 2005 5:10 pm |
|
|
KingOfSka |
Advanced user |
|
|
Joined: Mar 13, 2005 |
Posts: 61 |
|
|
|
|
|
|
|
this doesn't works for me
i always get caught by sentinel... |
|
|
|
|
Posted: Thu May 05, 2005 12:41 pm |
|
|
KingOfSka |
Advanced user |
|
|
Joined: Mar 13, 2005 |
Posts: 61 |
|
|
|
|
|
|
|
while i was writing a protection script for Mercury Board i understood how to use it and bypass sentinel
but there's a problem, when the query is base64 coded, and i've got some "=" at the end, i don't know how to do with them, if i leave them i get an Sql error, if i remove them i get the normal page without the injection.. |
|
|
|
|
Posted: Thu May 05, 2005 9:25 pm |
|
|
FistFucker |
Regular user |
|
|
Joined: May 06, 2005 |
Posts: 21 |
|
|
|
|
|
|
|
Try to replace '=' with '%3d'. (Hex encoded) |
|
|
|
|
Posted: Sun May 08, 2005 9:45 am |
|
|
Ayurvedi |
Beginner |
|
|
Joined: Mar 20, 2005 |
Posts: 3 |
|
|
|
|
|
|
|
Waraxe any news on your Sentinel advisory? |
|
|
|
|
Posted: Sun May 08, 2005 9:51 am |
|
|
shai-tan |
Valuable expert |
|
|
Joined: Feb 22, 2005 |
Posts: 477 |
|
|
|
|
|
|
|
Yes
Took the words right out of my mouth |
|
_________________ Shai-tan
?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds |
|
|
|
Posted: Sun May 08, 2005 11:07 am |
|
|
FistFucker |
Regular user |
|
|
Joined: May 06, 2005 |
Posts: 21 |
|
|
|
|
|
|
|
I will release an lame advisory today: 'NukeSentinel and PHP-Nuke security filters bypass' + "Santy worm exploit" injection. I know this shit since I worked the first time with NukeSentinel. (2.1.3) |
|
Last edited by FistFucker on Sun May 08, 2005 12:17 pm; edited 1 time in total |
|
|
|
Posted: Sun May 08, 2005 11:33 am |
|
|
shai-tan |
Valuable expert |
|
|
Joined: Feb 22, 2005 |
Posts: 477 |
|
|
|
|
|
|
|
So was it you who discovered it? Or are you just making it for the hell of it? |
|
_________________ Shai-tan
?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds |
|
|
|
Posted: Sun May 08, 2005 5:05 pm |
|
|
waraxe |
Site admin |
|
|
Joined: May 11, 2004 |
Posts: 2407 |
Location: Estonia, Tartu |
|
|
|
|
|
|
I will not hurry with Sentinel advisory. Because i found many more holes, not only filter bypass. But as this advisory can piss off many-many people, then i will wait for some time and proably will first share info with Sentinel developers. |
|
|
|
|
Posted: Sun May 08, 2005 6:56 pm |
|
|
FistFucker |
Regular user |
|
|
Joined: May 06, 2005 |
Posts: 21 |
|
|
|
|
|
|
|
"Don't worry, be happy!" ;-)
Yes, I've already said: I will release my LAME advisory. You're a much better PHP coder as me and now release your leet NukeSentinel advisory. :-D |
|
|
|
|
Posted: Sun May 08, 2005 6:59 pm |
|
|
waraxe |
Site admin |
|
|
Joined: May 11, 2004 |
Posts: 2407 |
Location: Estonia, Tartu |
|
|
|
|
|
|
Let's see, how fast and how securely Sentinel developers will patch their software |
|
|
|
|
Posted: Sun May 08, 2005 7:08 pm |
|
|
FistFucker |
Regular user |
|
|
Joined: May 06, 2005 |
Posts: 21 |
|
|
|
|
|
|
|
Yeah, we will see. But I think no one will use my advisory, because of the new phpBB 2.0.14 exploit. Therefore I released it today. |
|
|
|
|
www.waraxe.us Forum Index -> PhpNuke
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 3 of 3
Goto page Previous1, 2, 3
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|