While building Vulnerable Docker VM, I encountered some interesting behaviour from PHP meterpreter shell. This blog post documents what was identified as issues and what were the solutions for the same.
Continue reading “Fun with PHP Meterpreter”
Response to : Vulnerability Disclosure, Free Bug Reports & Being a Greedy Bastard
Chris gates at Carnal0wnage wrote a thought provoking article today and raised couple of questions. This topic is something i definitely have been thinking for past couple of years. Here are my thoughts outlined with respect to various questions asked.
Before i answer these let this be very clear, the answers are my own and are not associated with any of my work or company i work for. The below answers are my own and are subjected to change if adequate reasons provided refer disclaimer here. Also the answers are from a point of view of someone who is a pentester, does public disclosures or bug hunting for opensource, did a stint in bug bounty also but i have had very little experience on the other side of bug bounty table i.e. receiving bugs found in my own applications or websites.
Continue reading “Response to : Vulnerability Disclosure, Free Bug Reports & Being a Greedy Bastard”
Do you like what you read, What to share it
The Glorification of Pentesters
TLDR: A wannabe defender trying to reason with the world that only appreciates pentesters
Continue reading “The Glorification of Pentesters”
Do you like what you read, What to share it
Hunchly and Custom Chromium Data Directories
TL;DR: how to setup hunch.ly within Chromium browser along with various quirks.
Hunchly by Justin Seitz is one of the recommended tools when it comes to OSINT related work. However I was attracted to hunchly for its capabilities specially saving all browsed pages in a session. So long story short after a bunch of email exchanges with Justin it was clear that this investment will be fruitful. end result I bought hunchly. If you are a someone interested in OSINT I would definitely recommend using hunch.ly
Continue reading “Hunchly and Custom Chromium Data Directories”
Do you like what you read, What to share it
Helper Script: ip
Most of the time when we type ipconfig / ifconfig we are looking for a very simple information i.e. what’s the ip address and which interface is up and running.
So here is another simple script that i write in both shell script and batch file format to ensure that i can extract the basic information in quick turnaround.
Continue reading “Helper Script: ip”
Do you like what you read, What to share it
Monitoring HTTP and TLS Versions in use via Awstats
With all the hype and craze around HTTP/2 and various TLS Versions, there is one questions which appears every now and then. I am doing all this upgrading versions allowing new ciphers enabling https etc, but is anyone using them. Also with PCI mandate of closing TLS 1.0 and TLS 1.1 looming large, we need to be in a position to identify what TLS versions are in use on website and what about HTTP Versions.
Continue reading “Monitoring HTTP and TLS Versions in use via Awstats”
Do you like what you read, What to share it
Pentest Helper Script: Hash Generator
Another Script i wrote long back and have been using to in various capacities.
This script allows you to quickly generate various types of hashes for a specific string.
Continue reading “Pentest Helper Script: Hash Generator”
Do you like what you read, What to share it
Pentest Helper Script: loop
TL;DR: 5-line custom iterator over a file and executing command per line.
Here is a custom helper script that i have written and been using for a very long time. Sometimes something so simpler in nature could very well be useful a lot of times that you feel like sharing it out with everyone.
Continue reading “Pentest Helper Script: loop”
Do you like what you read, What to share it
My Journey with markdown
Image Credit https://github.com/dcurtis/markdown-mark
This post outlines my experience with markdown & how its integrated in my workflow. This is specially useful if you are starting with markdown and / or want to see how others use markdown. For someone who doesn’t know what’s markdown this could be a simpler path to get the right direction.
Markdown for uninitiated is a plain text formatting syntax. Read more details here
Continue reading “My Journey with markdown”
Do you like what you read, What to share it
A story of forgotten disclosure and DOM XSS
This post is about a vulnerability disclosure around DOM XSS which as forgotten somewhere during the process and i encountered it recently and then went on my way to get it fixed. This post outlines various learnings and observations i made during this effort.
Continue reading “A story of forgotten disclosure and DOM XSS”