Home 2013 September
Monthly Archives: September 2013

Intercepting Password Changes With Function Hooking

Posted on September 15, 2013 by clymb3r 7 Comments

Last week, Mubix published a malicious Windows password filter DLL (http://carnal0wnage.attackresearch.com/2013/09/stealing-passwords-every-time-they.html). The idea is simple, by installing this password filter, he can intercept the clear text credential whenever a user changes their password. There are two caveats with installing this

Read more ›

Tagged with: , ,
Posted in Hacking, PowerShell

Avoiding PowerShell Command Injection & Unicode Issues

Posted on September 7, 2013 by clymb3r 1 Comment

PowerShell exposes a powerful set of functionality and is increasing in popularity for server management tasks. This post aims to help penetration testers identify issues that may be found when PowerShell scripts handle user input. There are multiple scenarios where

Read more ›

Tagged with: , , ,
Posted in Hacking, PowerShell