So, we have written an article about PHP Command Injection (Applies to other platforms too, we just covered PHP).
Read it here! PHP Command Injection - Insecurety Research
More to come...
~Insecurety Research Team.
Showing posts with label Remote Code Execution. Show all posts
Showing posts with label Remote Code Execution. Show all posts
Thursday, 15 March 2012
Friday, 2 March 2012
Quick note regarding my last demo
Ok, my last demo the reason the LFI-RCE failed was very simple: I messed up the Apache/PHP config in LAMPP while fuzzing earlier and forgot to reset it :/
Don't worry, my next demo will be on leveraging SQLi vulns in order to gain RCE, and I have to setup a better testbox anyway.
I will be showing the manual method + SQLMap methods of doing it all, and might even get a chance to video it!
Don't worry, my next demo will be on leveraging SQLi vulns in order to gain RCE, and I have to setup a better testbox anyway.
I will be showing the manual method + SQLMap methods of doing it all, and might even get a chance to video it!
Subscribe to:
Posts (Atom)