zoczus.blogspot.com
ZoczuS Blog: [PL] Bypassing Same-Origin Policy - slajdy z 4Developers 2015
http://zoczus.blogspot.com/2015/04/pl-bypassing-same-origin-policy-slajdy.html
Środa, 22 kwietnia 2015. PL] Bypassing Same-Origin Policy - slajdy z 4Developers 2015. W poniedziałek 20.04.2015r. miałem przyjemność bycia prelegentem na konferencji 4Developers. W ścieżce Security organizowanej przez SecuRing. Slajdy z prezentacji: https:/ drive.google.com/file/d/0B7U6Q1zbqTkyOEY3TmRXWl8tODQ/view? Nagranie będzie dostępne w przyszłości. :). Udostępnij w usłudze Twitter. Udostępnij w usłudze Facebook. Udostępnij w serwisie Pinterest. Subskrybuj: Komentarze do posta (Atom).
zoczus.blogspot.com
ZoczuS Blog: CSAW CTF Web300 writeup
http://zoczus.blogspot.com/2014/09/csaw-ctf-web300-writeup.html
Niedziela, 21 września 2014. CSAW CTF Web300 writeup. In this post I want to show my solution for CSAW CTF. Web300. This is the service, where we are able to post some links, that are parsed by bot, and looks like this:. There are two important things about this task. First of all, we can notice that page using jquery 1.6.1 (which prone to XSS - CVE-2011-4969. And serving this kind of code:. Pretty simple. doesn't it? Udostępnij w usłudze Twitter. Udostępnij w usłudze Facebook. CSAW CTF Web300 writeup.
zoczus.blogspot.com
ZoczuS Blog: kwietnia 2013
http://zoczus.blogspot.com/2013_04_01_archive.html
Środa, 10 kwietnia 2013. EN] DNS missing allow-transfer. Ten Post wyjątkowo będzie napisany w języku angielskim. Z góry przepraszam. :-). Before we start pentesting it's always good to gather some information about our target. One thing which we'd like to know are additional resources - SQL servers, developers and test machines, backups, etc. For example, we can check PTR records (revDNS) for IP class (manually or using this tool. Sometimes, our target configures his zone without allow-transfer. Awk -F: ...
hshrzd.wordpress.com
Tic-Tac-Toe (16 bit, tasm) | hasherezade's 1001 nights
https://hshrzd.wordpress.com/mycode/tic-tac-toe-16-bit-asm
Hasherezade's 1001 nights. Projects and tasks that I do in my free time. ASCII painter (16-bit, tasm). Tic-Tac-Toe (16 bit, tasm). Tic-Tac-Toe (16 bit, tasm). Again some piece of my old asm code (writen in 2003). This one works in graphic mode. Can be deployed on DOS and Windows versions = XP. Https:/ github.com/hasherezade/asm16 projects/blob/master/Tic-Tac-Toe/main.asm. Tic tac toe.zip. Compile with tasm, link:. Http:/ hasherezade.net/tools/TASM.zip. Works in 2 modes:. Leave a Reply Cancel reply. Lectu...
hshrzd.wordpress.com
PE-bear – version 0.3.6 avaliable! | hasherezade's 1001 nights
https://hshrzd.wordpress.com/2014/02/11/pe-bear-version-0-3-6-avaliable
Hasherezade's 1001 nights. Projects and tasks that I do in my free time. ASCII painter (16-bit, tasm). Tic-Tac-Toe (16 bit, tasm). PE-bear version 0.3.5 avaliable! Solving 7 years old crackme (CC-Team, Arigo CrackMe8) →. PE-bear version 0.3.6 avaliable! February 11, 2014. 8211; Removed memory leak on file releasing. 8211; Fixed invalid names parsing in bound imports. 8211; Possibility to move any data directory. 8211; Dumping certificate into a file. Programmer and researcher, interested in InfoSec.
hshrzd.wordpress.com
Website | hasherezade's 1001 nights
https://hshrzd.wordpress.com/website
Hasherezade's 1001 nights. Projects and tasks that I do in my free time. ASCII painter (16-bit, tasm). Tic-Tac-Toe (16 bit, tasm). July 20, 2016 at 9:07 am. Thank you for your wonderful blog and for sharing your usefull work and knowledge with us. I like also your sense of humour. On ma favorite Polish persons you are secong just after Fryderyk (Frédéric in French). July 21, 2016 at 11:13 am. Thank you so much🙂. I am happy that you like my work! Leave a Reply Cancel reply. Enter your comment here. Hashe...
hshrzd.wordpress.com
PE-bear | hasherezade's 1001 nights
https://hshrzd.wordpress.com/pe-bear
Hasherezade's 1001 nights. Projects and tasks that I do in my free time. ASCII painter (16-bit, tasm). Tic-Tac-Toe (16 bit, tasm). PE-bear is a freeware reversing tool for PE files. It is coded and designed basically by me (hasherezade), however I welcome every suggestion or feature proposal. Objective: to deliver fast and flexible “first view” tool for malware analysts. Stable and capable to handle malformed PE files. I am sorry, but PE-bear is no longer supported. Changelog and more info. Selective com...
hshrzd.wordpress.com
PE-bear – version 0.3.7 available! | hasherezade's 1001 nights
https://hshrzd.wordpress.com/2014/03/23/pe-bear-version-0-3-7-avaliable
Hasherezade's 1001 nights. Projects and tasks that I do in my free time. ASCII painter (16-bit, tasm). Tic-Tac-Toe (16 bit, tasm). Solving 7 years old crackme (CC-Team, Arigo CrackMe8). Solving KeygenMe V7 by MaxX0r – part 1 →. PE-bear version 0.3.7 available! March 23, 2014. This time I focused on improving usability and implementing the features requested by the users. Greetz to: Vincent, dummys. Javier, and others! Download: https:/ hshrzd.wordpress.com/pe-bear/. 8211; opening files via shortcuts.
hshrzd.wordpress.com
Solving KeygenMe V7 by MaxX0r – part 1 | hasherezade's 1001 nights
https://hshrzd.wordpress.com/2014/10/29/solving-keygenme-v7-by-maxx0r
Hasherezade's 1001 nights. Projects and tasks that I do in my free time. ASCII painter (16-bit, tasm). Tic-Tac-Toe (16 bit, tasm). PE-bear version 0.3.7 available! DMA Unlocker →. Solving KeygenMe V7 by MaxX0r – part 1. October 29, 2014. This KeygenMe I’ve got personally from the author (MaxX0r). Thank you for such a nice gift and congrats for a good job! The difficulity level is 3 (according to Crackmes.de). It doesn’t contain any advanced crypto, but is nicely obfuscated. Create a working keygen. First...
hshrzd.wordpress.com
hasherezade | hasherezade's 1001 nights
https://hshrzd.wordpress.com/author/hshrzd
Hasherezade's 1001 nights. Projects and tasks that I do in my free time. ASCII painter (16-bit, tasm). Tic-Tac-Toe (16 bit, tasm). Programmer and researcher, interested in InfoSec. How to turn a DLL into a standalone EXE. July 21, 2016. Unpacking NSIS-based Crypter part 2. July 15, 2016. Unpacking NSIS-based Crypter – step by step. July 3, 2016. Nowadays we can encounter many malware samples packed by a crypter using installer scripts. We can distinguish them by a NSIS tag on Virus Total: Often, (but...