Register Now and attend Black Hat DC Briefings & Training 2008 Soon !
Registration will be closed on January 1
Location : Westin Washington DC City Center
Training: February 18-19
Briefings: February 20-21
An Indonesian man who goes by the handle Hmei7 hacked to Tuscon Police Department Website by executing Sql injection which gave him access to the media section of the department site. He changed all the titles of the media releases to “Hmei7 has touched your soul” .
Related:
What is CSRF? How does it work ? Well , CSRF is also known as Cross-site request forgery works by exploiting the trust that a site has for the user. Site tasks are usually linked to specific urls allowing specific actions to be executed when it’s requested. If a user is logged into the [...]
Today i have been reading a lot about Web Application Malware / Web Application Worm that spreads through social networking site , like Friendster and Myspace. Embed a malicous Flash swf movie , is one of the most used technique to hack friendster account or hack myspace account as well. In the most dumbest way [...]
Exploit-me is a FireFox plugin which is developed to ease penetration testings via web browser. Exploit-me is currently developed to exploit 2 types of web application vulnerabilties , which are Sql injection and XSS .
Screen shots :
