Search:

abhaythehero · 06-10-2013, 01:50 PM

Here is a neat trick (according to me) for people who are analyzing a suspected malicious website/watering hole attack. To fetch the source html/js code of the website, mostly we do wget and then...

abhaythehero · 04-09-2013, 05:24 PM

Excellent. And maybe something for git sometime later, so this can be done easily >> Source code disclosure by .git in web application

abhaythehero · 04-09-2013, 03:57 PM

BACKTRACK AND KALI LINUX cbtnuggets https://secure.cbtnuggets.com/it-training-videos/series/cbtn_backtrack_sec/

abhaythehero · 04-09-2013, 03:08 PM

Here comes another webshell uploading technique which can cater to image restrictions and still your shell will be hidden in the image Encoding Web Shells in PNG IDAT chunks | Web App Security
...

abhaythehero · 04-05-2013, 08:15 PM

I encountered a similar obfuscated javascript in a phishing e-mail which led to blackhole exploit kit.

...

abhaythehero · 04-03-2013, 12:21 PM

Let us all list down the source and repositories of malware/viruses/worms/trojans/bad codes/APTs. Only files/dumps. No tutorials/articles. Please keep it updated with latest sources you get.
...

abhaythehero · 03-19-2013, 01:20 PM

Also check out the blog posts of spiderlabs tagged with Physical Security. Awesome \m/ SpiderLabs Anterior: Physical Security

abhaythehero · 03-12-2013, 04:50 PM

I just came across this for the first time on web. I thought of posting it, but it has been already done :)

I must say it is an excellent vulnerability. This would be like the first attack point...

abhaythehero · 02-12-2013, 05:57 PM

Also List of Bug Bounty Programs >> Bug Bounty Programs | The HackaServer Blog

and

List of Bug Bounty Programs as a Service >> Bug Bounty Program as a Service | The HackaServer Blog

abhaythehero · 02-01-2013, 11:50 AM

No one can know all the things. Keep learning.

exactly !

abhaythehero · 01-31-2013, 08:33 PM

First of all, no one will flame you on this forum for posting stuff they already know. Just keep an eye that you post in proper section, and that the information you are posting is not being already...

abhaythehero · 01-31-2013, 08:08 PM

Well, The thread is turning out to be quite a good discussion and here are my 2 cents.

From the wikipedia Principle of least privilege - Wikipedia, the free encyclopedia

This means, that...

abhaythehero · 01-31-2013, 06:50 PM

Bad luck prince_indishell . Better luck next time ! You can also start an account on Bugcrowd - Crowdsourced security testing. We run managed bug bounty programs for business. where they give you the...

abhaythehero · 01-30-2013, 03:09 PM

Would you be kind enough to extrapolate your observations and enlighten us truly as to what you would have posted in place of the topic starter. Unhappy as you are with the topic starter.

abhaythehero · 01-09-2013, 09:43 AM

Looks like that, rather than understanding the situtation, you clearly want a article and video which you can replay to your client.(who maybe asked for that :p). Not cool buddy, not cool.

abhaythehero · 01-07-2013, 04:29 PM

Nice forum for people interested in Rootkits >> KernelMode.info • Index page

abhaythehero · 12-19-2012, 11:17 AM

Hi karthikp, looks like you are new to forum. It is advised to search the forum before posting. We already have 2 threads covering this question. If you have further questions, you can post in that...

abhaythehero · 12-19-2012, 11:11 AM

Infractions added and 1st warning given.

Thread Locked. Moved to Noobs Corner.

abhaythehero · 12-17-2012, 02:39 PM

Thrilling excerpt man ! And kudos to your crazy lockpicking skills \m/

abhaythehero · 12-17-2012, 02:30 PM

Certainly, its can be possibility. Null meets are organized there. But I think we have to take prior permission from SICSR before organizing a meet there. Furthermore, it would be a waste of there...

abhaythehero · 12-04-2012, 06:13 PM

MySQL Local/Remote FAST Account Password Cracking technique shared by kingcope

about 100000 passwords are tested in 20 seconds !!

abhaythehero · 12-03-2012, 12:03 PM

There is a space between end of DOS stub and starting of PE header in a PE executable file. Would look garbage because it is undocumented(correct me if I am wrong) , but actually Microsoft had made...

abhaythehero · 12-02-2012, 08:50 PM

Welcome pop3_zxcv to the forum. You must be knowing g4h community from quite before, if you know about orkut :)

Also, just a suggestion, do use the thanks button or add reputation button on posts...

abhaythehero · 11-26-2012, 04:37 PM

Team g4h for this too :p http://www.garage4hackers.com/f30/rwth-ctf-1521.html#post9336

abhaythehero · 11-19-2012, 06:31 PM

Infraction added for posting live IP address. Take care from next time ;)

Search:

Search: Search took 0.06 seconds.

Thread: Directly viewing source in Chrome , without rendering html/js

Thread: SVN extractor for Web Application Pentesters

Thread: Security Videos Collection

Sticky: BACKTRACK AND KALI LINUX cbtnuggets...

Thread: File upload bypassing techniques in web applications to upload shells

Thread: Blackhole Exploit Kit

Thread: The Ultimate thread for Malware repositories

Thread: Physical Security

Thread: Apache Reverse Proxy Bypass

Thread: Where to report security bugs and bug bounty rules ?

Thread: remote root

Thread: Getting IP address Behind Cloudflare - REAL WAY

Thread: remote root

Thread: Blind SQL Injection in PayPal Notifications worth $3000

Thread: Attacking Websites - Basic methodology Understanding

Thread: DOM XSS Clear Explanation pls

Thread: Different Types of Rootkits

Thread: TRACE method

Thread: Need Vpn suggestion

Thread: An affair in the dark - A Real life house penetration project.

Thread: Garage4Hackers Pune Meet 29-Dec-2012

Poll: Certainly, its can be possibility. Null meets are...

Thread: online Md5,md4,mysql,Sha1,NTLM r Cracking sites

Thread: Microsoft's Rich Signature

Thread: Finally here

Thread: CTF365 - Next Generation in CyeberWar Game

Thread: nessus + metasploit or armitage