SEARCH RESULTS
 
Showing 1-10 of 18 records
 
Expand article

Anti-Debugging Series - Part III

2009-01-07 20:54:48 by Tyler Shields in Zero in a bit
 
...parameters, the first two of which are the most interesting to our anti-debugging efforts. The first parameter is a HANDLE to the target process that we wish to interrogate. Since we are trying to determine information about our own process, we will use a HANDLE that points to ourselves. By default, a HANDLE value of -1 will instruct the...
 
Tags: api based, api, api calls, function, function call takes, pointer, function pointer, call, function prototype
 
 
 
 
Expand article

DecaffeinatID Updated to ver. 0.05

2008-06-23 00:24:33 by Editor in Irongeek's Security Site
 
...parameter in the INI file is interpreted. Now the sleep parameter specifies the amount of time in milliseconds between each monitor function (ARP cache, Firewall and Event Log). For example, with the new default of "sleep=1000", DecaffeinatID waits about one second between each monitor function, so to go through one cycle takes about three...
 
Tags: decaffeinatid, decaffeinatid warns, arp, arp cache, decaffeinatid waits, monitor function, parameter, parameter specifies, major
 
 
 
 
Expand article

On virtualisation

2007-05-29 16:20:00 by Niels Provos in Google Online Security Blog
 
...parameters for the operation, this could lead to an attacker compromising the virtual machine process. While you would typically require root (or equivalent) privileges in the guest to interact with a device at the low level required, device drivers will often offload the parameter checking required onto the hardware, so in theory an...
 
Tags: machine, virtual machine process, virtual machine software, host machine, host, software, virtual machine, low, low level access
 
 
 
 
Expand article

Automating web application security testing

2007-07-16 11:40:00 by Panayiotis Mavrommatis in Google Online Security Blog
 
...parameters is vulnerable to reflected XSS. With a vulnerable application, an attacker can craft a malicious URL and send it to the victim via email or any other mode of communication. When the victim visits the tampered link, the page is loaded along with the injected script that is executed in the context of the victim's session The general...
 
Tags: web application, application, input, input parameters, accepts user input, xss, xss vulnerabilities, security, security team check
 
 
 
 
Expand article

Initiating Probes Against Servers Via Other Servers

2007-12-09 22:41:37 by RSnake in ha.ckers.org web application security lab
 
...parameter would have stopped me. Odd but worth mentioning
 
Tags: grcs probe, probe, grcs probe page, port, port scan, page, w3cs port, w3cs validator, grc
 
 
 
 
Expand article

New Attack Class: XSNADOR

2008-04-01 11:00:47 by Chris Eng in Zero in a bit
 
...parameter, its possible to alter the mood of any user who has the application enabled Though this is just another manifestation of an authorization bypass issue, the security community should coin a new buzzword to describe these types of vulnerabilities when they are specific to social networking applications. Given the increasing prevalence...
 
Tags: xsnador, facebook moods application, application, cross social, social, facebook application hacks, xsnador attacks, cross, cross-site
 
 
 
 
Expand article

Phishing Holes

2008-04-03 21:39:00 by sdl in The Security Development Lifecycle
 
...parameter of the querystring, highlighted below http://www.somebank.com/welcome.aspx?p= http%3A%2F%2Fwww.somebank.com%2Flogin.aspx This may look pretty innocent to you. But what if I sent you an email claiming to be from SomeBank, telling you that your account was under investigation, and that you needed to login at the following link to...
 
Tags: somebank, domain somebank, somebank rewrites, aspx, aspx redirects, redirect, saferedirect library, comwelcome, library
 
 
 
 
Expand article

Oklahoma Department of Corrections SQL exposure

The Article has images
2008-04-21 11:23:45 by Evan Francen in The Breach Blog
...parameter Fortunately, he didn't accuse me of hacking their site. In fact, he seemed appreciative and promised to pass the details along to their developers The following day, both the SVOR and Offender Search were taken down "for routine maintenance However, when the sites came back up, I noticed that that the "print-friendly page" still...
 
Tags: social security, oklahoma, sql, residents, oklahoma residents, bad, bad news, department, sql query
 
 
 
 
Expand article

Minimizing the Attack Surface, Part 1

2008-06-24 19:09:34 by Chris Eng in Zero in a bit
 
...parameter which can be either view, edit, or delete, and your application only uses view? Youre still exposing the other actions to anybody who knows the URL syntax (pretty trivial if its open source). You wouldnt expose large chunks of your own code that you werent using, so why should it be any different with libraries This post is getting...
 
Tags: attack surface, custom web applications, web, services, prevent unnecessary services, unnecessary services, security, third-party libraries, fix security holes
 
 
 
 
Expand article

Fake Porn Sites Serving Malware

The Article has images
2008-06-25 12:16:20 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...parameter=drs (66.96.85.113). A redirector that appears to have been operating since 2006 , according to this forum posting What follows on-the-fly, are all the fake porn sites whose legitimately looking videos attempt to download a Zlob malware variant from a single location - vipcodec.net . Here are all the fake porn sites, and the...
 
Tags: net, fake porn sites, malware, about-adult, scan-porn, zlob malware variant, name-adult, useporn, porn-the