Paper about exploiting web vulns

Pepelux has wrote a paper about exploiting web vulnerabilities to gain access to the system.

There are a lot of vulnerabilities that allow us to exploit a website, all of them are old and documented. We can found LFI, RFI, SQL, XSS, SSI, ICH and other attacks. For that reason this paper is centered only in attacks that allow us access to the system and to execute commands remotely.

Download (English) | Descargar (Castellano)

Playing with sockets (port scan)

Pepelux has wrote a paper about port scanning at low level. It explains anonymous port scan, playing with net packet headers using raw sockets. It shows most used scan techniques (xmas, fin, etc.), through own raw sockets code and examples. It also explains a little about SO’s detection.

Download (English) | Descargar (Castellano)

eNYe Sec  |  Computer Security · Green Hope Theme by Sivan & schiy · Powered by WordPress