HackMag – Security, malware, coding, devops

Bug in Laravel. Disassembling an exploit that allows RCE in a popular PHP framework

Written by aLLy

Bad news: the Ignition library shipped with the Laravel PHP web framework contains a vulnerability. The bug enables unauthorized users to execute arbitrary code. This article examines the mistake made by the Ignition developers and discusses two exploitation methods for this vulnerability.

Read full article →

Step by Step. Automating multistep attacks in Burp Suite

Written by empty.jack

When you attack a web app, you sometimes have to perform a certain sequence of actions multiple times (e.g. brute-force a password or the second authentication factor, repeatedly use the same resource, etc.). There are plenty of tools designed for this purpose. Which one to choose if you need, for instance, to make five requests over HTTP a thousand times in a row, while maintaining the same session? My choice is Burp Suite, and in this article, I will explain why.

Read full article →

Post-quantum VPN. Understanding quantum computers and installing OpenVPN to protect them against future threats

Written by Andrey Parkhomenko

Quantum computers have been widely discussed since the 1980s. Even though very few people have dealt with them by now, such devices steadily become a harsh reality threatening traditional cryptography. In response to this threat, computer engineers have developed post-quantum encryption algorithms. In this article, I will show how these algorithms are applied in OpenVPN and will give an overview of the current situation in the world of quantum technologies.

Read full article →

First contact. Attacks against contactless cards

Written by Timur Yunusov

Contactless payment cards are very convenient: you just tap the terminal with your card, and a few seconds later, your phone rings indicating that the transaction is completed. But this convenience has a downside: malefactors can steal money from such cards. This article provides an overview of methods used to hack NFC (near-field communication) payment cards.

Read full article →

Pentest in your own way. How to create a new testing methodology using OSCP and Hack The Box machines

Written by Evgeniy Gryaznov

Each aspiring pentester or information security enthusiast wants to advance at some point from reading exciting write-ups to practical tasks. How to do this in the best way and what should you pay attention to in the first place? In this article, I will describe my own pentesting journey and share some of my findings.

Read full article →

Persistence cheatsheet. How to establish persistence on the target host and detect a compromise of your own system

Written by s0i37

Once you have got a shell on the target host, the first thing you have to do is make your presence in the system ‘persistent’. In many real-life situations, you have only one RCE attempt and cannot afford losing access due to some unexpected event.

Read full article →

It’s a trap! How to create honeypots for stupid bots

Written by Hackat and Mikhail Artyukhin

If you had ever administered a server, you definitely know that the password-based authentication must be disabled or restricted: either by a whitelist, or a VPN gateway, or in some other way. We decided to conduct an experiment and check what happens if this simple step isn’t taken.

Read full article →