My Hat My hat is not black. It is not white, either. It is not even gray. Its a technicolor-dream hat full of creativity. My technicolor-dream hat contains my “spark”. My “spark” lead, and continues to lead, my path. My decisions, or lack there of, has helped navigate my “spark” throughout my...
read more
Have you ever needed to add a custom header, such as X-Auth-Token, to a Nikto scan for authentication or otherwise? I have, and found that it was surprisingly not a trivial thing to do. Scouring around the net I found that people have been asking for this since 2012. Chris Sullo, who wrote Nikto, mentioned it wasn’t currently...
read more
The AjaxControlToolkit prior to version 15.1 has a file upload directory traversal vulnerability which on a poorly configured web server can lead to remote code execution. This vulnerability has been issued CVE-2015-4670. It is recommended to update to the latest version of AjaxControlToolkit to resolve this issue. It is also...
read more
In a previous post, I described how to detect and exploit a basic cross site scripting (XSS) vulnerability. The vulnerability that was demonstrated was not being protected by any mechanism. This article will demonstrate exploiting the same vulnerability being protected by HTMLEncode() as oppose to HTMLAttributeEncode() as described...
read more
How to Find and Exploit Cross Site Scripting (XSS) Vulnerabilities In a previous post, How to Prevent Cross Site Scripting, I explain how to prevent Cross Site Scripting (XSS) issues. This article will demonstrate a simple approach how to identify and exploit cross site scripting vulnerabilities. Meet our target.. I am using an old...
read more
Cross Site Scripting (XSS): Brief History Cross Site Scripting (XSS) is a common issue that plagues many web applications, check out xssed for a frame of reference. The most widely scene form is called reflective cross site scripting (XSS). This is when user supplied data is submitted to a application and the data is reflected back...
read more
