SQL Injection

Microsoft TechBlog
http://technet.microsoft.com/en-us/library/cc512676.aspx

“Advanced SQL Injection” by Chris Anley, NGS Software
URL: http://www.nextgenss.com/papers/more_advanced_sql_injection.pdf

“Blindfolded SQL Injection” by Ofer Maor and Amichai Shulman, Imperva
URL: http://www.imperva.com/application_defense_center/white_papers/blind_sql_server_injection.html

“Blind SQL Injection Automation Techniques” by Cameron Hotchkies, BlackHat Conferences
URL: https://www.blackhat.com/presentations/bh-usa-04/bh-us-04-hotchkies/bh-us-04-hotchkies.pdf

“Absinthe” by Cameron Hotchkies, 0×90.
URL: http://www.0×90.org/releases/absinthe/download.php

“Data Mining with SQL Injection and Inference” by David Litchfield, NGS Software
URL: http://www.ngssoftware.com/research/papers/sqlinference.pdf

“SQL Injection Cheat Sheet” by Ronald van den Heetkamp, 0×000000
URL: http://www.0×000000.com/?i=14&bin=1110

“ Solar Empire Exploit” by Blackhawk. Milw0rm.
URL: http://www.milw0rm.com/exploits/4078

“…a SQL Server Injection & takeover tool… ” by icesurfer, SQLNinja
URL: http://sqlninja.sourceforge.net

“SQL PowerInjector” by Francois Larouche, SQL PowerInjector
URL: http://www.sqlpowerinjector.com

Posted on 07.04.2010 at 09:37 by Mucho · Permalink · Comments Closed
In: Uncategorized

Password generator

<?php

echo “Password generator</br>”;

$pole = array (”a”,”b”,”c”,”d”,”e”,”f”,”g”,”h”,”i”,”j”,”k”,”l”,”m”,”n”,”o”,”p”,”r”,”s”,”t”,
“u”,”v”,”x”,”y”,”z”,”q”,”w”, “A”,”B”,”C”,”D”,”E”,”F”,”G”,”H”,”I”,”J”,”K”,”L”,”M”,”N”,”O”,”P”,”R”,”S”,”T”,
“U”,”V”,”X”,”Y”,”Z”,”Q”,”W”,
“1″,”2″,”3″,”4″,”5″,”6″,”7″,”8″,”9″,”0″,
“!”,”@”,”#”,”$”,”%”,”^”,”&”,”*”,”(”,”)”,);

$heslo=”";

for( $i=1 ; $i<9 ; $i++ ){
$vyber=((rand()%71)+1);
$heslo=$pole[$vyber].$heslo;
}

echo “heslo je: “.$heslo;
?>

Posted on 05.02.2010 at 16:33 by Mucho · Permalink · Leave a comment
In: Uncategorized

Timestamp

Odrbavka timestampu, okopirovanie suboru s jeho povodnym casom vytvorenia..

vytvorenie noveho filu pr.:

$touch -t 200509291144 new //vytvoril som novy file s timestamp 29. 09. 2005 0 11:44

vytvorenie kopie filu

$cp new new_new

zmena timestampu pre file new_new

$touch -t 200508291144 new_new

that is all

Posted on 04.01.2010 at 13:34 by Mucho · Permalink · Leave a comment
In: Uncategorized

NoMachine.com <- navirtualizuj si svoj unix

Nasiel som sikovny tool na virtualiziu roznych desktop managerov pre rozne operacne systemy.

Ja som NX server skusal na debiane a connectoval som sa z wintenda.

Instalacia:

potebny software pre masinu ktora bude serve su:

http://www.nomachine.com/select-package.php?os=linux&id=1

su potrebne vsetky baliky (server, node, clint)

1. sa instaluje client

2. node

3. server

na wintendo som potreboval klienta na pripojenie:

http://www.nomachine.com/download-package.php?Prod_Id=1411

Do klienta po installacii som zadal ip  a nastavil desktop manager

To bolo vsetko

Ja som mal osobne problemy s .XAuthority

jednoduche riesenie # mv  ~/.XAuthority ~/.XAuthority_back

pri spusteni DM si system vytvori novy.

Pridanie noveho usera:

#sudo /usr/NX/bin/nxserver –useradd [user] –system

Posted on 13.11.2009 at 13:05 by Mucho · Permalink · Leave a comment
In: Uncategorized

multi-monitors config

Podarilo sa mi doriesit problem s pripojenim druheho monitoru ku Kubuntu.

Jednoduchy navod ako na to:

1, po dlhych hodinach nezmyselneho googlenia a zaoberani sa xorgom som nasiel soft EnvyNg link: http://albertomilone.com/nvidia_scripts1.html

2. po spusteni som vybral driver k svojej grafickej karte (neodporucam instalvat not recommended, zhodilo mi to xsa dolu)

3. nainstaloval som driver, rebootol masinu

4.  po spusteni nvidia xorg server v configuracii som enablol druhy monitor, nastavil rozlisenie.

Ak by som mal ati kartu tak konfiguracia a spustanie druheho monitoru je v ati catalis centre.

Posted on 04.09.2009 at 10:15 by Mucho · Permalink · Comments Closed
In: Uncategorized