Find out what's on our minds these daysBypassing Web Application Firewalls with SQLMap Tamper Scripts
An introduction to SQLMap's new tamper scripts and how the can be used to bypass Web Application Firewalls and Intrusion Detection Systems.
Posted on Aug 26, 2011 by Roberto Salgado | tags:SQL Injection WAF SQLMap Tamper Scripts Firewall
Optimized Blind MySQL Injection Data Retrieval
Demonstrates a method to extract data from a MySQL database using blind injection in fewer requests than currently known techniques such as the Bisection and Bit Shift method.
Posted on Mar 31, 2011 by Roberto Salgado | tags:Blind Injection MySQL SQL Injection Database
mac2wepkey - Huawei default WEP generator
Huawei HG520 and HG530 routers are vulnerable to weak cipher attacks. It is possible to generate the default WEP/WPA key. The purpose of this post is to explain the process of developing a key generator for these devices.
Posted on Jan 19, 2011 by Pedro Joaquin | tags:mac2wepkey home gateway wep generator echolife hg530 huawei hg520
Attacking Linksys WRT160N router using the "URL Obfuscation in Frames" bug
Using the "URL Obfuscation in Frames" bug to enable remote administration on a Linksys WRT160N router
Posted on Aug 26, 2010 by Roberto Salgado | tags:linksys routers wrt160n url obfuscation default password basic auth
Do not trust your browser's status bar
Many people rely on the status bar for checking the destination of links, but it has been proven before that it is easy to falsify.
Posted on Jul 24, 2010 by Pedro Joaquin | tags:phishing status bar scam spoofing
FOLLOW US
SUBSCRIBE
EMAIL US