LinkBack URL
About LinkBacksSo, I need tips.
I'm currently using firewalk, scanrand, nmap, and w3af to audit a website, but have turned up empty handed. I believe that this website has a government-grade security penetration test done against it every year or three. It has more than a hundred thousand users. It is well secured, but not THAT well secured.
Can anyone give me tips on finding anything remotely vulnerable on the target website? I can give a list of almost every single utility they use on their webservers, from Apache to their search bar version.
Results 1 to 16 of 16
Thread: Anyone give tips?
- 03 Dec. 2012 05:10pm #1Banned Epic
- Join Date
- Apr. 2010
- Location
- When freedom is outlawed only outlaws will be free
- Posts
- 5,113
- Reputation
- 195
- LCash
- 1120.00
- Awards
Anyone give tips?
- 03 Dec. 2012 06:31pm #2Donator Worst DJ
- Age
- 31
- Join Date
- Nov. 2009
- Location
- PALLET TOWN
- Posts
- 10,363
- Reputation
- 487
- LCash
- 161.00
- Awards
-
I just want post count.
And to warn you that's a scary tree to take down.
Made by Use.
used to be known as the once fabled "Ethan," Slayer of Theocules, Bringer of Rain!
- 03 Dec. 2012 06:51pm #3
Post count~
- 04 Dec. 2012 05:20am #4Administrator
- Join Date
- May. 2012
- Location
- Alabama
- Posts
- 7,717
- Reputation
- 363
- LCa$h (Rank 1)
- 379.00
- Awards
-
GUYS DO YOU KNOW ABOUT SECURITY EXPLOITS IN SOFTWARE THAT NOT EVEN THE MULTI-MILLION DOLLAR CORPORATIONS KNOW ABOUT THEIR OWN SOFTWARE THAT THEY DEVELOPED FROM THE GROUND UP?
plzthnxE-Mail: charlesstover@charlesstover.com / Text: (920) 786-8379 / Steam: GAMEchief
Originally Posted by Drakonid 
Originally Posted by La Vie Cruelle 
- 04 Dec. 2012 08:33pm #5 Because his question is completely out of the realm of possibility. Originally Posted by GAMEchief
Happens all the time actually (a la Microsoft).
I bet you've never even developed extensive software from the ground up, lol. If you did, I wager that it'd be riddled with bugs and flaws.
- 05 Dec. 2012 01:01am #6Administrator
- Join Date
- May. 2012
- Location
- Alabama
- Posts
- 7,717
- Reputation
- 363
- LCa$h (Rank 1)
- 921.00
- Awards
-
My specialty in web programming was actually security. People paid me to debug their software, or design it from the ground up without flaws. RE: exploited every single extension LG was using, lulolulolulolulol
It's not out of the realm of possibility, but the fuck are we supposed to tell him?
"Hey guys, I'm trying to exploit some high-profile software. Tips?"
Examples of appropriate replies:
There fucking aren't any, because it's a stupid question.E-Mail: charlesstover@charlesstover.com / Text: (920) 786-8379 / Steam: GAMEchief
Originally Posted by Drakonid Originally Posted by La Vie Cruelle
- 05 Dec. 2012 01:11am #7 Add lrn2prgm to that list. Originally Posted by GAMEchief
- 05 Dec. 2012 01:50am #8Banned Epic
- Join Date
- Apr. 2010
- Location
- When freedom is outlawed only outlaws will be free
- Posts
- 5,113
- Reputation
- 195
- LCash
- 175.00
- Awards
-
I don't think programming will help me here.
Anyway, off to look somewhere else.
- 05 Dec. 2012 02:06am #9 You'd be surprise at how much programming could help you actually. In many different ways. Originally Posted by Flareboy323
- 05 Dec. 2012 02:07am #10
so know u a video game designer and a pro exploiter. damn what next a space cowboy?
- 05 Dec. 2012 02:10am #11 lelelelelel Originally Posted by 2pac
- 05 Dec. 2012 02:40am #12Administrator
- Join Date
- May. 2012
- Location
- Alabama
- Posts
- 7,717
- Reputation
- 363
- LCa$h (Rank 1)
- 1047.00
- Awards
-
Me? I'm not a game designer. My entire problem with my game engine is that I can't do graphics for shit. I'm a programmer, and I used programming to make the engine. I didn't make a single graphic or soundbit in it, unfortunately. Originally Posted by 2pac
Exploiting comes with the trade of programming, which I imagine is what Unintjerkable is talking about. I learned about security flaws through programming.
You can't plan a prison break if you've never been inside a prison. You can't exploit software if you've never designed software.E-Mail: charlesstover@charlesstover.com / Text: (920) 786-8379 / Steam: GAMEchief
Originally Posted by Drakonid Originally Posted by La Vie Cruelle
- 05 Dec. 2012 02:53am #13 He's talking about Flare, not you. Originally Posted by GAMEchief
Sheesh, paranoid.
Also well put analogy. Surprisingly.
- 05 Dec. 2012 04:21pm #14Administrator
- Join Date
- May. 2012
- Location
- Alabama
- Posts
- 7,717
- Reputation
- 363
- LCa$h (Rank 1)
- 95.00
- Awards
-
I didn't know Flare was a game designer.
E-Mail: charlesstover@charlesstover.com / Text: (920) 786-8379 / Steam: GAMEchief
Originally Posted by Drakonid Originally Posted by La Vie Cruelle
- 05 Dec. 2012 04:56pm #15
Obvious sarcasm is obvious.
- 05 Dec. 2012 07:47pm #16Banned Epic
- Join Date
- Apr. 2010
- Location
- When freedom is outlawed only outlaws will be free
- Posts
- 5,113
- Reputation
- 195
- LCash
- 665.00
- Awards
-
I'm not a game designer, I was working on a game engine in C++. Like you, though, I can't do graphics for the shit of me. I've been trying to find a free open-source graphics engine, but so far I can't find anything good.
But anyways, does anyone here THINK they can help? I can send you all of my compiled information if so.
Reply With Quote
