Blog (Default)

May 12th, 2009

Comments: 2
Category: Metasploit
Read More

Some Metasploit and Oracle Notes – Part 2

So More Oracle and Metasploit stuff tonight. as CG pointed out on the last post, most of this has been covered on his series of posts at the carnal0wnage blog (and lots more besides), this is just my working through the process for my own benefit and hopefully pointing out some of the potential things […]

May 10th, 2009

Comments: 2
Category: Metasploit
Read More

Some Metasploit and Oracle Notes – Part 1

Todays fun with Metasploit is exploiting Oracle… There’s lots of good information on this on the Carnal 0wnage blog and the metasploit page for mc. First things first, we’ll need the relevant ruby modules (dbi and oci8) installed and working for some of this. dbi can be installed using the usual ‘sudo gem install dbi’ […]

May 7th, 2009

Comments: 0
Category: Metasploit
Read More

Tonights Metasploit links

Been taking a look at another one of the newer Metasploit features tonight. WMAP is looking to integrate web application scanning functionality into Metasploit. There’s a couple of good overviews Here, Here and Here Getting it up and running is a little bit finicky at the moment, as you need to used a patched copy […]

May 5th, 2009

Comments: 0
Category: Metasploit
Read More

More metasploit resources

So another night of metasploitage, and some good additional info Pivoting Good write-up on some of the challenges with pivoting Greate Demo video of using pivoting to attack a host indirectly Another good video demo of pivoting, but without the cool tunes 🙂

May 4th, 2009

Comments: 0
Category: Metasploit
Read More

Metasploit Resources

So I’ve been playing a bit with Metasploit over the holiday weekend (hey what are days off for..), and as usual when researching stuff, I’ve come across a load of links I don’t want to lose track of, so I’ll put them up here, may be useful to someone else as well.. I’ll refrain from […]

Mar 31st, 2009

Comments: 0
Category: Penetration Testing
Read More

Rack for Pen Testing

One of the many things I got introduced to at Scotland on Rails was the Rack project. Designed to help create flexible web application deployments, it creates an interface between webservers and ruby web app. frameworks (rails, sinatra etc). Reading some of the examples, it occurred to me that Rack could be pretty handy for […]

Mar 31st, 2009

Comments: 1
Category: Ruby On Rails
Read More

Scotland on Rails – Web Application Security

It was the Scotland on Rails 2009 conference on Friday/Saturday of last week. A great couple of days with loads of interesting Ruby and Rails talks (I’m planning more of a recap once the videos are out) I presented on Web Application Security (slides here), which seemed to go down reasonably well. One of the […]

Mar 25th, 2009

Comments: 0
Category: Web Security
Read More

Thoughts on Secure Data Handling in web applications…

I had an interesting conversation/debate over on reddit today on the topic of input handling and I thought it was worth posting up. Essentially there are two approaches handling data in an web applications. 1. Carry out input validation as the data enters your application. This can either be white-list (only allow “known good” data […]

Mar 8th, 2009

Comments: 0
Category: Ruby On Rails
Read More

XSS in Rails Applications

I’m doing some research at the moment for a presentation I’m doing for the Scotland on Rails conference, later this month. As part of that I’ve been downloading some sample Rails applications to get an idea of common security issues that I can discuss. Interestingly on popular applications that I’ve downloaded so far, I’m 2 […]