Brad (theNURSE) Smith, one of our local chapter members, spoke at Defcon 18 on "Weaponizing Lady Gaga".  The session showed live demo's on how to utilize psychosonic attacks vectors in your next pillage.  Brad is know for his calm teaching manner and his cool hair.
Shout Out to x3 Crew - السلام عليكم الاخوة

Shout Out to x3 Crew - السلام عليكم الاخوة

PDFPrintEmail

User Rating: / 8
PoorBest 

AddThis Social Bookmark Button

Need to thank (kind of) 

Group x3 and LOv3rDns \ Shark Hidden

Greetz

I've been so busy that I failed to catch the fact that my JCE was vulnerable, so they showed me. *blushes*

السلام عليكم الاخوة

This site is a HUGE target, and you got in...PROPS

They found a JCE remote file inclusion vunerability announced in the middle of May

They used a web site to leverage the remote file include to upload a file 0day.php

They then uploaded a shell WSO into a file named ls.php

Then they went out and changed the index.php file in several other directories

How do I know?

Because I tracked it all down this morning ...

;)

 

Comments (0)
Only registered users can write comments!

Last Updated on Thursday, 20 September 2012 12:43 Written by DC 406 Webmaster Thursday, 20 September 2012 12:31