SEARCH RESULTS
 
Showing 1-10 of 13 records
 
Expand article

XSS on Whois

2007-12-30 20:55:53 by RSnake in ha.ckers.org web application security lab
 
...whois information to take over domains when people are researching your domain . Very cool stuff. I have a feeling there are also servers that may be vulnerable to SQL injection as well, but thats probably much more difficult and dangerous to test. Dotster was apparently vulnerable to this, but we didnt have a working PoC However, Thrill then...
 
Tags: apparently vulnerable, vulnerable, credit card information, domain, cool stuff, domain registrars, stuff, usefulness, sql injection
 
 
 
 
Expand article

Who's Selling Front-Running Data?

2008-01-18 11:15:55 by Editor in Cheap Hack
 
...whois request on .COM, it doesn't even usually make it to the registry. It's usually satisfied at some server further up the road. My own command line whois searches whois.internic.net. So VeriSign doesn't necessarily get access to the data in order to sell it. And don't even think of suggesting that the Internic.net, run by the IANA, is...
 
Tags: data, whois, command line whois, provide data, internet service providers, hard evidence, service, network solutions, evidence
 
 
 
 
Expand article

Who's Selling Front-Running Data?

2008-01-18 11:15:55 by Editor in Cheap Hack
 
...whois request on .COM, it doesn't even usually make it to the registry. It's usually satisfied at some server further up the road. My own command line whois searches whois.internic.net. So VeriSign doesn't necessarily get access to the data in order to sell it. And don't even think of suggesting that the Internic.net, run by the IANA, is...
 
Tags: data, whois, command line whois, provide data, internet service providers, hard evidence, service, network solutions, evidence
 
 
 
 
Expand article

Network Solutions Frontrunning And Tasting, Version 1.1

The Article has images
2008-01-09 22:21:14 by Editor in Cheap Hack
...WHOIS search page, so that no domains searched on this page will be reserved. We will continue to reserve, however, domains searched from our homepage. The new page says, as point 1 indicates, that the site is under construction and that it is registered with Network Solutions. A box in the middle cycles through this explanation in a variety...
 
Tags: network solutions, domain names resolve, names, network solutions grab, protection, customer protection measure, resolve, domain, home page
 
 
 
 
Expand article

Network Solutions Frontrunning and Tasting, Version 1.1

The Article has images
2008-01-09 22:21:14 by Editor in Cheap Hack
...WHOIS search page, so that no domains searched on this page will be reserved. We will continue to reserve, however, domains searched from our homepage. The new page says, as point 1 indicates, that the site is under construction and that it is registered with Network Solutions. A box in the middle cycles through this explanation in a variety...
 
Tags: network solutions, network solutions grab, domain names resolve, names, protection, customer protection measure, resolve, domain, home page
 
 
 
 
Expand article

Roboticsonline.com customer orders compromised

The Article has images
2008-01-04 14:51:08 by Evan Francen in The Breach Blog
...Whois information, the hosting company is "internet4associations.com To protect yourself from the possibility of identity theft, we recommend that you immediately contact your credit card provider and close your account. Tell then that your account may have been compromised. If you want to open a new account, ask them to give you a PIN or...
 
Tags: secure administration site, administration site, credit card information, information, site, credit card provider, credit card, password, evan roboticsonline
 
 
 
 
Expand article

Okay to Spam, Bad to Fight it in South Dakota

2008-01-17 21:19:46 by RSnake in ha.ckers.org web application security lab
 
...whois info, traceroute etc. Oh no, not in North Dakota you dont! Hes facing possible jail time for attempting to fight spam. Now theres a twist for you! Isnt there some sort of oversight for technically challenged judges? Or maybe a I dont know anything about this stuff, perhaps you should talk to Judge Bob about this instead, since he does...
 
Tags: north dakota, judge, judge bob, giant leap backwards, district judge, cynthia rothe-seeger, zone transfer, public information, legal impunity
 
 
 
 
Expand article

Romanian Script Kiddies and the Screensavers Botnet

The Article has images
2008-04-08 03:48:40 by HASH0x8ae5de0 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...WHOIS list This botnet's futile attempt to scale is a great example of the growing importance of knowlege and experience empowered botnet masters , as a key success factor for sustainability, and also, basic understanding of economic forces, namely, when they're not making an investment there cannot be a return on investment on their efforts...
 
Tags: botnet, botnet masters, script kiddies, romanian script kiddies, botnet courtesy, ny2fw15, alternative botnet, irc, irc bot
 
 
 
 
Expand article

ICANN Gets Tough With Shady Registrar

The Article has images
2008-05-20 06:53:16 by Editor in Cheap Hack
...whois on their own domain redregister.com: yes, it's a private registration. In fact, just who these people are is a little fuzzy here; the Contact Us page at Red Register lists addresses in Columbus, OH. But the ICANN notice is sent to a Daniel Sundin in Madison, WI. Two college football towns; perhaps Red Register hasn't responded because...
 
Tags: registrar, registrar business, registrar red register, icann, red register, registrar accreditation agreement, icann notice, domain, domain redregister