My Notes From: Hacking Sites for Fun and Profit
MailCatcher
SQL Injection
?id=5 and 1=1
?id=5 and 1=2
?id=5 and substring(@@version)
XSS send session to another site.
Filter Input. Escape Output.
Command Injection
Escape Shell Arg
Code, Regex, Log, LDAP Injection
Session Puzzling
** Admin Password From the Forgot Password Form
Forgot Password with Username "admin" and email of registered user.
Emailed to the user without any problems.
** Registration Form
username1').('email', 'fist2', 'last2', 'x', 'pw2', 'username2'
first
last
password
** Search Input
Passing the input unescaped into a grep command. *; ls -al
gouda *; cat....
** Dev Mode
http://192.168.33.199/apigility/ui#/
Hackathon On Wednesday
Get involved in OpenSource and a Project
No comments:
Post a Comment