Views: 11,790 The File Disclosure Browser takes .DS_Store files found on websites and parses through them to find a list of all potential files in the directory. It can then either just display the URLs for the files or if you give it a proxy it can browse to the files itself. The author wrote […]
information-leak
Canadian Dating Site PlentyofFish Hacked – Passwords Leaked
Views: 15,081 Something which caused some kind of stir last week was the hacking of the Canadian dating site PlentyofFish Hacked (sometimes known as PoF) which rose to fame on the Webmaster forums for SEO due to a picture of Markus Frind holding an Adsense cheque for $132,000 for two months earning. For anyone not […]
inspathx – Tool For Finding Path Disclosure Vulnerabilities
Views: 10,384 inspathx is a tool that uses local source tree to make requests to the URL and searches for path inclusion (Full Path Disclosure) error messages. It’s a very common problem in PHP web applications that crops up a lot. PHP Web application developers sometimes fail to add safety checks against authentications, file inclusion […]
Binging (BETA) – Footprinting & Discovery Tool (Google Hacking)
Views: 15,261 [ad] It’s been a while since I’ve seen a tool of this type, back in the heydays of Google Hacking (which became the generic term for information gathering via search engines) there were multiple tools such as Gooscan and Goolag. Binging is a simple tool to query Bing search engine. It will use […]
Origami – Parse, Analyze & Forge PDF Documents
Views: 26,073 [ad] origami is a Ruby framework designed to parse, analyze, and forge PDF documents. This is NOT a PDF rendering library. It aims at providing a scripting tool to generate and analyze malicious PDF files. As well, it can be used to create on-the-fly customized PDFs, or to inject (evil) code into already […]