Hacking the Skiddies
Written by: MaXe - Founder of InterN0T.net
Abstract
To be able to hack the script kiddies, One could f.ex. find a security hole aka vulnerability in the
application used. In this case a browser exploitation pack written in PHP was checked for
vulnerabilities in order to find a potential attack vector.
Due to insufficient sanitizing, a SQL-query could be used to inject HTML which this paper
describes in detail. By releasing this information, some script kiddies may hopefully learn more
and stop their malicious actions.
Introduction
Eleonore is a browser exploit pack / kit which is used to infect unknowing victims with an
executable file which in most cases is a trojan, keylogger or similar malicious software.
The price for such a pack goes from 700$ to $1500 (and even more) when it has just been released.
The contents of such a package are usually well known exploits and occasionally if the script kiddy
is lucky, a 0day exploit or two.
for more article
visit
www.dodotz.at.vu/paper/hacking-skiddies.pdf
Berhenti memikirkan apa yg tak kamu miliki. Pikirkan apa yg kamu miliki tp tak dimiliki orang lain. Think Positive!
Mereka yg SUKSES bukanlah mereka yg selalu BERHASIL, tapi juga mereka yg TAK MENYERAH meski mereka GAGAL. jangan tkut gagal
Written by: MaXe - Founder of InterN0T.net
Abstract
To be able to hack the script kiddies, One could f.ex. find a security hole aka vulnerability in the
application used. In this case a browser exploitation pack written in PHP was checked for
vulnerabilities in order to find a potential attack vector.
Due to insufficient sanitizing, a SQL-query could be used to inject HTML which this paper
describes in detail. By releasing this information, some script kiddies may hopefully learn more
and stop their malicious actions.
Introduction
Eleonore is a browser exploit pack / kit which is used to infect unknowing victims with an
executable file which in most cases is a trojan, keylogger or similar malicious software.
The price for such a pack goes from 700$ to $1500 (and even more) when it has just been released.
The contents of such a package are usually well known exploits and occasionally if the script kiddy
is lucky, a 0day exploit or two.
for more article
visit
www.dodotz.at.vu/paper/hacking-skiddies.pdf
Berhenti memikirkan apa yg tak kamu miliki. Pikirkan apa yg kamu miliki tp tak dimiliki orang lain. Think Positive!
Mereka yg SUKSES bukanlah mereka yg selalu BERHASIL, tapi juga mereka yg TAK MENYERAH meski mereka GAGAL. jangan tkut gagal
0 comments:
Post a Comment