Wednesday, May 27, 2009
PHP Remote File Inclusion
Remote File Inclusion is a technique used to attack websites from a remote computer.RFI allow malicious users to run their own PHP code on a vulnerable website.This allows the attacker to use and run any remote file just by editing the URL. Like a webshell can display the files and folders on the server and can add,edit or delete files and folders,send spams and even get hold of root.
More details on PHP Webshell are here.
Saturday, May 23, 2009
Top Ten Web Hacking Techniques
Top Ten Web Hacking Techniques 2008 by Jeremiah Grossman,Founder & Chief Technology Officer of WhiteHat Security.
Thursday, May 21, 2009
Aircrack-ng
This is a demonstration of hacking wireless access points networks with Aircrack-NG.Before running airodump we need to find an adaptor driver which can be downloaded from the here.
Please note few points regarding wireless as mentioned below -
Channels are the channel your Access Point is Broadcasting on.
ESSID is the Name of your wireless network.
BSSID is the MAC address of your Access Point.
We will have to put the wireless card in monitor mode before capturing the data.Complete step by step documentation can be found here.
Monday, May 18, 2009
Friday, May 15, 2009
Using NetCat as a Backdoor
In this video a windows RPC exploit is used with the help of Metasploit on Backtrack.After exploiting the RPC vulnerability in windows,hacker uploads Netcat tool to regain access when ever he wants.
Subscribe to:
Posts (Atom)
