RFID Hacking Tools Workshop (How to create your own Reader ) Requirements

44 con Workshop Overview: A 101 & upwards workshop on Radio Frequency Identification, tools, and how to make your own access control system. If you’re new to Arduino, RFID or basic electronics, this is the workshop for you! If you have stumbled upon this page o nthe internet and do not know what 44Con or … Continue reading RFID Hacking Tools Workshop (How to create your own Reader ) Requirements

Investigation of PHP Web Shell Hexedglobals.3793 Variants

This article covers the analysis work undertaken on the Hexedglobals.3793 family of PHP based malware. The variants are: Kidslug, php.obfuscated!, php.malware.GLOBALS.003 and php.malware.GLOBALS.004. During my investigation I documented my process, steps taken and also put together a separate tutorial on the de-obfuscation of this web shell. I have also put some scripts together which helps … Continue reading Investigation of PHP Web Shell Hexedglobals.3793 Variants

Chrissy Morgan – Winner of the (ISC)² -EMEA Up and Coming Professional

Hi guys, I’m mega excited to let you know that something really nice has happened. I *Edit – I only went and won it!!  been nominated and I’m a finalist for the “Up and Coming Security Professional” category at the ISLA awards!  Here’s some info: “Since 2004, (ISC)² has been recognising the ongoing commitment of … Continue reading Chrissy Morgan – Winner of the (ISC)² -EMEA Up and Coming Professional

Unauthenticated arbitrary file upload vulnerability in Blueimp jQuery-File-Upload <= v9.22.0

Template Hi guys, please find the link below to the google document which shows the report which can be sent to people to let them know their website is vulnerable. There are many website still vulnerable to this issue. I am providing a template report which can be used to disclose to sites to help … Continue reading Unauthenticated arbitrary file upload vulnerability in Blueimp jQuery-File-Upload <= v9.22.0