As a perfect follow-up to our Wireless CTF win, I present some hashcat WPA2 cracking.
Category Archives: Security Not Included
Another year in Vegas, and DEF CON 25 is in the books.
As I got one for Prime Day, I figured that I would write an Alexa Port Scanner.
Finally back to VulnHub, and next up is my Brainpan 2 walkthrough.
I recently had to demonstrate the dangers of loading external resources over HTTP as well as security libraries running on the client side. In this case, I went with an attack to MITM XSS protection, and this was the result.
Most people are already aware of using XSS to pop alerts or steal cookies. Today I’d like to show XSS password stealing.
The following is an older Easy Chat Server Exploit for versions <3.1 (CVE-2004-2466). That said, this is a great example of utilizing SEH for exploit writing and reliability.
This week I’d like to show XSS without dots, as a method of filter avoidance.