Hey! Remember the good old days when the web spouted RFI’s everywhere? We miss those days. So me and Fredrik figured out a new way to reincarnate the old dusty RFI’s! This is an unexpected feature in PHP that allows you to communicate with external servers even though allow_url_include = Off.
More+I had a hard time finding the Stuxnet-rootkit and the credentials it used to exploit the Siemens WINCC6 SCADA system. So here you go, here’s the default credentials it used towards the WINCC6′s MSSQL Server…
More+Well well, this time I’ve moved along from the theoretical area into the more practical one. So, okay, if you didn’t know already, I live in Sweden. In Sweden there is this very huge company called ICA, and they’re basically a nation wide supermarket company.
More+I made a program which will monitor the air for connections between wireless hot spots and hosts…
More+Both me and my fellow researcher Mathias have heard all from “It’s impossible to make DNS requests in MySQL” to “There is no out-of-band techniques for MySQL”. So we both thought “Hey, it can’t be that hard…” So ladies and gentlemen, here’s a (so far) theory on a MySQL out-of-band request. As long as you have the File_priv set to Y in MySQL it is a possible scenario. So let’s…
More+