Social
Recent Comments
- joey Green on Know Your Rights
- Andy on Know Your Rights
- Kristin Bashaw on Know Your Rights
- Sandra Rouse on Know Your Rights
- Nnylat on Know Your Rights
Archives
- May 2020
- September 2019
- June 2019
- March 2019
- December 2018
- October 2018
- April 2018
- February 2018
- October 2017
- July 2017
- January 2017
- December 2016
- November 2016
- October 2016
- September 2016
- June 2016
- February 2016
- January 2016
- December 2015
- October 2015
- September 2015
- August 2015
- June 2015
- December 2014
- September 2014
- July 2014
- June 2014
- May 2014
- April 2014
- March 2014
- February 2014
- January 2014
- December 2013
- November 2013
- October 2013
- September 2013
- August 2013
- July 2013
- June 2013
- May 2013
- April 2013
- March 2013
- February 2013
- January 2013
- December 2012
- November 2012
- September 2012
- August 2012
- July 2012
- June 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- November 2011
- October 2011
- September 2011
- August 2011
- July 2011
- June 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
Categories
- 2600
- 3d printer
- android
- anonymous
- arduino
- bash script
- carding
- CONS
- contest
- DIY
- EFF
- exploit
- Firsties
- flytouch
- freedom
- group news
- hacking
- hardware
- holiday
- javascript
- jquery
- lib
- meetings
- misc
- mobile
- party
- perl
- phishing
- picking
- privacy
- projects
- python
- radio
- recaps
- release
- repair
- security
- site news
- social engineering
- software
- upcoming
- wardriving
- whitepaper
- windows
- XSS
Meta
Category Archives: exploit
Format string $20 challenge
At the last meeting I showed everyone how to use a format string vulnerability in a password storage app to bypass the master password and pull data out of memory. That is just one way to exploit this type of … Continue reading
Posted in contest, DIY, exploit, group news, hacking, meetings, security, software
Leave a comment
Telmanik CMS Press 1.01 SQLi 0day
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ [x] Type: SQL Injection [x] Vendor: www.telmanik.com [x] Script Name: Telmanik CMS Press [x] Script Version: 1.01b [x] Script DL: http://www.telmanik.com/download/Telmanik_CMS_Press/1.01_beta/telmanik_cms_press_v1.01_beta.zip [x] Author: Anarchy Angel [x] Mail : anarchy[at]dc414[dot]org ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Exploit: http://site.org/themes/pages.php?page_name=[SQLi] you have to formate you injection like … Continue reading
Upload your own XSS
A few meetings ago i gave a demo on uploading a flash file to file hosting sites that contains a evil XSS payload. Here is my write up on it. A while back I was doing a penetration test on … Continue reading
Posted in exploit, hacking, javascript, misc, security, software
Leave a comment
May meeting recap
The May meeting was another great one. Both Ngharo and my self were late because of traffic and junk so darkwind got things started with his popular demo of sniffing pager messages from the air. I Showed up at the … Continue reading
Posted in exploit, hacking, hardware, javascript, meetings, projects, security, XSS
Leave a comment
Cisco DDR2200 ADSL2 Residential Gateway Router Vulnerabilities
I have discovered two Vulnerabilities in the Cisco DDR2200 ADSL2 Residential Gateway Router. The first vulnerability is that this device responds to UPNP multicast packets and UPNP SOAP requests out side of its local area network. Allowing attackers to forward … Continue reading
Posted in exploit, hacking, hardware, security
Leave a comment
Upnp Exploiter
dc414 and I are proud to introduce Upnp Exploiter! A Upnp scanner and exploit tool. This tool comes with two main scanning functions and exploit functions. The first scanning functions is the target scan. Here you can pick a single … Continue reading
April meeting recap
Aprils meeting was awesome! Ngharo started us off with room introductions, which was helpful considering all the new faces at this meeting. Next I gave a quick demo of my new tool Upnp Exploiter. Which lead to me disclosing two … Continue reading
March meeting madness!
The March meeting was no let down, we had lots of people and as always great demos. Ngharo got it started with a make your own pringles can cantenna. 9 luck attendees got to make and take home their own cantenna! Then he kept it going … Continue reading
December meeting recap
Ngharo got this started with going around the room and asking everyone what they have been hacking and what they plan on hacking on next, then talking about some improvements to the dc414 server, such as how it is now … Continue reading
Posted in exploit, freedom, group news, hacking, meetings, privacy, security, site news
Leave a comment
September meeting recap
Last meeting was awesome as always, we had some good demos and new faces which is always great. Ngharo started it off going around the room and asking ppl what they hacked last month and what they plan to hack … Continue reading