Lately, we have updated our design to be a brand new fresh concept and ready for the road. We have been working on new products and services that are going to give you more choices and more possibility in the future. For us, that means a new product lineup, a new website and a new […]
Sebelumnya saya berterima kasih kepada mas Ade pemilik blog nakanosec.com Laravel Phpunit RCE (Remote Code Execution) Vulnerable path: /phpunit/src/Util/PHP/eval.stdin.phpVuln Indicator: Blank Page Exploit: curl -d “<?php echo php_uname(); ?>” http://webtarget/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php Respond: Laravel dot env (Laravel Environment) Impact: Sensitive Information ExposureVuln Indicator: Laravel App Debug Impact: Sensitive Information Exposure (Path,.env conf)Cara Men-Trigger:1.Gunakan Query/String SQL Injection pada […]
Perkenalkan nama saya William Laurent. saya akan menjelaskan CVE-2018-6389 CVE : CVE-2018-6389 detailnya adalah dengan menggunakan fitur load-script dan load-style.php dapat menciptakan serangan DoS yang mampu membuat website down. Apa itu Dos? Dos yang mempunyai kepanjangan dari Denial of Service, adalah jenis serangan terhadap sebuah komputer atau server di dalam jaringan internet dengan cara menghabiskan sumber/resource […]
Hey Folks, it’s been while since last post guys but just wanted to say thanks for everyone on ExploiterID team which has been Patching xForum and rising once more! so what actually happened? is it really bad? it is not harming anyone but may closuring our directory which usually contain sensitive data. But Now don’t […]
All Right folks, you know computer stuff isn’t really simple as you think such a permission attributes is existed controlled by technology called File System which determine if files nor directory has permission and the Operating System will obey the file system rules. Unix-like and otherwise POSIX-compliant systems, including Linux-based systems and all macOS versions, […]
you might looking for really cheap domains or even free? here you go, aByte was our project to be cheap domain registrar, but rather called sub-domain registrar than domain registrar. first year is always free, we are gaving away tons of domains. visit it now for more information https://abyte.site/
Recently where we publish early beta snapshot which is unstable to use and then should be fixing, our team are working hard in this problem. not just given preview we wanted, but we also looking further for user research where our snapshot published in live server. but why we doing this? we want you can […]
Okay Folks! today we gonna discuss about maintaining Exploited Router (but in the attacker perspective), so why we so caring about vuln router? determine if the router was safe knowing people connected to them (but, this sound privacy stuff and you aren’t want jailed after sniffing several packets) and lastly, you can report them to […]
at this moment where people need entertainment in their life, we had found community and wanted to support it more and may gave us bigger chance to expanding our services and their products. so where do we start? last year, we doing research on people but one person gave me something that actually entertaining called […]
ever you find strange timestamp on file metadata? it may manipulated with program called touch where you can change timestamp whatever you want. so eventually you want to make a change to file obviously without leaving suspicious to file owner, you should try this one that will make people unconscious, in that case where this […]