Introducing Heyoka: DNS Tunneling 2.0

AYR — Fri, 26 Apr 2013 18:02:28 +0000

Slides from SOURCE Boston 2009, presenting heyoka, a new DNS tunneling tool that uses spoofed traffic to avoid detection and multiple encodings to improve speed. By Alberto Revelli and Nico Leidecker.

Heyoka-SOURCEBoston2009.pdf
April 26, 2013

1.3 MiB
MD5 hash: 23faa2e1e5f9d4e25e5a440d9c740968
Details

The post Introducing Heyoka: DNS Tunneling 2.0 appeared first on Portcullis Labs.

GUI Access Through SQL Injection

AYR — Fri, 26 Apr 2013 18:05:08 +0000

Slides presented by Alberto Revelli at OwaspDay II in Rome, 31/03/2008. They describe some SQL Injection tricks that can be used to get a full access to the DB server’s operating system. The examples are mainly focused on MS SQL Server, but the concepts are valid for other DBMS as well.

Revelli-OwaspDay2-Rome.pdf
April 26, 2013

1.0 MiB
MD5 hash: fedd665e8d631ed67e4e210108715974
Details

The post GUI Access Through SQL Injection appeared first on Portcullis Labs.

Portcullis Labs » AYR

Introducing Heyoka: DNS Tunneling 2.0

GUI Access Through SQL Injection