Sammy!

Posted by Eric | General, Web, Web - Security | Friday 2 February 2007 5:01 pm

<meta content="OpenOffice.org 2.0 (Linux)" name="GENERATOR" /><meta content="eric" name="AUTHOR" /><meta content="20070202;14584700" name="CREATED" /><meta content="16010101;0" name="CHANGED" /><br /> <style type="text/css"> <!-- @page { size: 21.59cm 27.94cm; margin: 2cm } P { margin-bottom: 0.21cm } H4 { margin-bottom: 0.21cm } --> </style> <p>So I got off a little early today because my parents are coming into town to see the baby. I logged onto myspace real quick cause my buddy mentioned a message he sent. and I noticed an “update” from Tom</p> <p> <a href="http://hamsterswheel.com/techblog/?p=17#more-17" class="more-link">(more…)</a></p> </div> <div class="feedback"> <a href="http://hamsterswheel.com/techblog/?p=17#comments" title="Comment on Sammy!">Comments (1)</a> </div> </div> <div class="post"> <h2 id="post-16"><a href="http://hamsterswheel.com/techblog/?p=16" rel="bookmark">ShmooCon</a></h2> <div class="meta">Posted by Eric | <a href="http://hamsterswheel.com/techblog/?cat=8" title="View all posts in Web - Security" rel="category">Web - Security</a> | Thursday 1 February 2007 10:04 pm </div> <div class="storycontent"> <p>y0 reffered me over to the smoocon presentations from last year. Not sure when they were released on the site. I don’t really follow that con. Anyway the only one I checked out was Matt fishers from SPIdynamics.</p> <p>You can check out his video <a href="http://shmoocon.org/2006/videos/Fisher-Web.mp4">here</a>, and his slides <a href="http://shmoocon.org/2006/presentations/webapphack.pdf">here</a></p> </div> <div class="feedback"> <a href="http://hamsterswheel.com/techblog/?p=16#respond" title="Comment on ShmooCon">Comments (0)</a> </div> </div> <div class="post"> <h2 id="post-15"><a href="http://hamsterswheel.com/techblog/?p=15" rel="bookmark">Idq / Code Red wierdness</a></h2> <div class="meta">Posted by Eric | <a href="http://hamsterswheel.com/techblog/?cat=9" title="View all posts in Vulnerabilities" rel="category">Vulnerabilities</a>, <a href="http://hamsterswheel.com/techblog/?cat=8" title="View all posts in Web - Security" rel="category">Web - Security</a>, <a href="http://hamsterswheel.com/techblog/?cat=10" title="View all posts in exploits" rel="category">exploits</a> | Tuesday 14 November 2006 9:53 pm </div> <div class="storycontent"> <p>On a recent pen test I encountered a wierd thing. I discovered a code red vulnerability on a web server using a custom scanner that I modified from source. The check for code red sends the GET /x.ida (220 A’s) =x HTTP/1.0\r\n\r\n and checks for the string “c0000005″ in the return.</p> <p>So, my app shows:</p> <p> <a href="http://hamsterswheel.com/techblog/?p=15#more-15" class="more-link">(more…)</a></p> </div> <div class="feedback"> <a href="http://hamsterswheel.com/techblog/?p=15#comments" title="Comment on Idq / Code Red wierdness">Comments (3)</a> </div> </div> </div> <div id="footer"> © Copyright 2009 | <a href="http://hamsterswheel.com/techblog">Phn1x – Hamsterswheel</a> | Theme by <a href="http://clubparexcellancetech.com/">Club Par Excellance</a> | All Rights Reserved | Sponsored by <a href="http://www.voipkit.ca/">VoIP</a> </div> </body> </html>