Irregular Expressions:

August, 2010


August 16, 2010  5:02 PM

The SQL CAST statement..

Dan O'Connor Dan O'Connor Profile: Dan O'Connor

http://isc.sans.edu/diary.html?storyid=9397 I have played with this before, the most effective method I found of blocking these was looking for the CAST statement itself. The statement at least from the ones that I was playing with all had a "CAST", "SET", "VARCHAR", and "EXEC".  I found...

August 16, 2010  4:55 PM

Security Reporting

Dan O'Connor Dan O'Connor Profile: Dan O'Connor

Here is a usful link from isc.sans.edu on "The Seven Deadly Sins of Security Reporting" http://isc.sans.edu/diary.html?storyid=9400 All of them are great points, but I think # 1 is really important and one of the places where a lot of people can run into trouble.  Also # 3 ties into that,...


August 12, 2010  12:38 PM

Part 2 of the Inj3ct0r facebook hack

Dan O'Connor Dan O'Connor Profile: Dan O'Connor

Enjoy! http://inj3ct0r.com/exploits/13403


August 12, 2010  12:35 PM

Cheque counterfitting, old school problem with new toys!

Dan O'Connor Dan O'Connor Profile: Dan O'Connor

This will be fully released at blackhat, but here is a link to what has been released. http://news.cnet.com/8301-27080_3-20011885-245.html They were using a network of infected machines and mules to have checks cashed and sent to Russia.  They used PPTP VPN's to moving the information around...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: