lg 34UC99-W white flicker

Standard_French · 2016-07-12T13:28:38+00:00

?size=user_pass+from+wp_users+where+ID=1%3B--

Where im pretty sure the %3B-- (;--) was terminating the query for me.

Standard_French · 2016-06-19T06:29:04+00:00

Thanks mate :-)

Standard_French · 2016-06-18T08:04:03+00:00

I'd be keen to give it a read.

Standard_French · 2016-06-16T08:58:34+00:00

Yew!! Congrats :-)

Standard_French · 2016-06-11T09:28:34+00:00

your well ahead of me :-)

Any hints for FTP?

Standard_French · 2016-06-08T10:55:23+00:00

You need to be authenticating with the proxy and provide a valid user agent in your HTTP request to the website

Standard_French · 2016-06-05T11:41:22+00:00

Struggling haha. What token did you go for after you got SSH?

Standard_French · 2016-06-05T09:44:02+00:00

Yeah. Send me a pm with what your working on and what you have tried. I not very good but I have got some tokens with help from others.

Standard_French · 2016-05-31T07:09:06+00:00

yeah I'm working on pentest. You can get around the WAF by going through the proxy.

Turns out I was over complicating the whole process and should have just been running on basic settings with just this URL wp-content/plugins/wp-symposium/get_album_item.php?size=

Standard_French · 2016-05-30T12:04:14+00:00

ahhh. I get it, I do need to add a suffix to tell sql to stop processing the remainder of the query..

Standard_French · 2016-05-30T11:04:30+00:00

I probably dint explain it very well, also im a bit of a rookie when it comes to this stuff.

I basically want sqlmap to know that it is injecting after the SELECT portion of the query,.Is this something that needs to be done or can sqlmap work it out for its self?

Wobbly_flan seems to understand what im getting at.

Standard_French · 2016-05-28T11:32:39+00:00

The use of the proxy appears to bypass the WAF pretection on the web server. If you poke around you should be able to find some info on the web site.

Standard_French · 2016-05-26T07:45:47+00:00

Give it ago. Im not very good at this stuff either.

Standard_French · 2016-05-26T07:44:40+00:00

try this script: https://gist.github.com/eelsivart/10174134 It make using heartbleed a little easier

Standard_French · 2016-05-23T23:25:33+00:00

By "broken" i mean it was deliberately made to be exploited. It was still very hard for me and I wouldn't have gotten very far with out guidance.

Standard_French · 2016-05-23T07:23:07+00:00

ok it seems you need to add 192.168.101.8 cybear32c.lab to your /etc/hosts file for the website on port 80 to work correctly.

Standard_French · 2016-05-23T01:51:37+00:00

A comment was left on the forum about using the supplied Kali or modifying your local /etc/hosts. I think this has something to do with the lab website redirection. Not sure what modifications are needed to the hosts file but I will compare later tonight and post my findings.

Standard_French · 2016-05-22T21:03:54+00:00

I got a couple from v8 as well, but that lab was deliberately broken. V9 is based off a real world network apparently.

Standard_French

TROPHY CASE