본문 바로가기

모의해킹 (WAPT)179

wavsep: Web Application Vulnerability Scanner Evaluation Project A vulnerable web application designed to help assessing the features, quality and accuracy of web application vulnerability scanners. This evaluation platform contains a collection of unique vulnerable web pages that can be used to test the various properties of web application scanners. Additional information can be found in the developer's blog: http://sectooladdict.blogspot.com/ Project WAVSE.. 2011. 9. 20.
POST EXPLOITATION COMMAND LISTS I've had a private list of commands that I run on Windows or Linux when I pop a shell, as I'm sure most pentesters do. It isn't so much a thing of hoarding as much it is just jumbled notes that are 'not worth posting' Well, I made two (now 3) public google docs (anyone can edit) *don't be a dick clause Linux/Unix/BSD Post Exploitation: https://docs.google.com/document/d/1ObQB6hmVvRPCgPTRZM5NMH03.. 2011. 9. 9.
XSSS: Cross Site Scripting Scanning XSSS Software is a brute force cross site scripting scanner. developed by Sven. We hope soon the new and improved version is released with more features. Features Crawl website Detect forms and URLs with parameters Fill in forms, alter parameters to include control characters Scan web server response for our input What does it look for Code in web pages JavaScript aka JScript, ECMAScript VBScrip.. 2011. 9. 8.
OWASP Broken Web Applications Project 0.94 released Our first post regarding OWASPBWA or the OWASP Broken Web Applications Project can be found here. About two months ago, an updated version – OWASPBWA version 0.94 was released! “Open Web Application Security Project (OWASP) Broken Web Applications Project, a collection of vulnerable web applications that is distributed on a Virtual Machine in VMware format compatible with their no-cost VMware Pl.. 2011. 9. 7.
Adobe Photoshop CS5 GIF Remote Code Execution ##################################################################################### Application: Adobe Photoshop CS5 GIF Remote Code Execution Platforms: Adobe Photoshop CS5 (12.0 and 12.1) Exploitation: Remote code execution CVE Number: CVE-2011-2131 Adobe Vulnerability Identifier: APSB11-22 {PRL}: 2011-08 Author: Francis Provencher (Protek Research Lab's) Website: http://www.protekresearchla.. 2011. 8. 23.
728x90