Posts

How I could've accessed personal details of tens of thousands of people

Image
This is a security issue I found in one of the company that work in different fields. They make different type of electronic equipments as well as offers the public an easy way to enroll and avail benefits of different Govt Schemes. Let's say the company name is XYZ and the domain is xyz.com.

They provide people a way to enroll to various govt services with their service centres, like a govt agency and public can register/ apply for any kind of govt services, schemes, etc. They're also an authorized service provider of a Govt Scheme by a state govt.





I was checking the functionalities in their website and noticed a login url under /admin. I visited /admin/login.php and saw a Login page.
I tried 5-10 different user:pass combinations and none of them worked. I then decided to try sqli in the login form. Like most of the PHP sites created by noooobs, this site is also vulnerable to sqli in login form.

I got access to the admin panel, I saw scanned copies of ID cards, PAN cards, Aadhar…

Taking over Facebook Page Tabs

Image
In this post, I'm describing how I was able to take over 4 tabs on Facebook's own Pages.

1. Facebook India Ambassadors
I was browsing Facebook as usual and not in a mood to test anything. I then visited Facebook India's page to check is there any update from Facebook India and that's when I noticed a page tab Facebook India Ambassadors. I clicked on it to see Facebook India's Brand Ambassadors and the tab showed a heroku error page. I was surprised to see that there.It looked interesting to me so I decided to dig further. I found out that it loads a third party website in an iframe in main section.

The url was http://immense-atoll-4159.herokuapp.com/ and I visited the url directly to verify that the subdomain doesn't exist. Heroku shows a does not exist error page if the subdomain doesn't exist.





So I logged into my Heroku account and created a new project and give immense-atoll-4159 as project id. Then I created a simple NodeJS Script for PoC and deployed it to…

Awww!!! It's *Public* Service Commission.....

Image
In this post, I'd like to talk about multiple issues I found on a website owned by Kerala Public Service Commission. The issues here are otp bypass to achieve IDOR. For those who don't know what's IDOR, quoting from OWASP "Insecure Direct Object References occur when an application provides direct access to objects based on user-supplied input. As a result of this vulnerability attackers can bypass authorization and access resources in the system directly".

The site url is `https://mailer.psc.kerala.gov.in/KPSCAptitudeTest/home`, which is a temporary site they've opened for the Aptitude Exam for engineering students.









How the site worksStudents can register for the aptitude exam by providing following details : College ID card number, Mobile Number, Email, Name, Address, College Name, Desired Center Name and the photographs of themself, signature and id card.
Question : This is for engineering students. What I'm doing there?




We're everywhere. In this case,…

Send request to Martians. Earthlings are already your friends.

Image
Hello everyone,

I'm back with another write up. This time it's a Google bug. YouTube is Google's video sharing site and a great place to explore. As a bug hunter, you can spend hours or days or even weeks in YouTube without hesitation.I always used YouTube to play some music when I worked as a developer last year.

When I started bug hunting, I tried YouTube multiple times and can't find any. Then I started hunting on another google services.

After hunting for more than 2 hours, I found a bug on one of Google's acquisition. According to Google, a video PoC is required only if it is contributing something that the text can't. But I'm a great fan of videos and my first bug to google (duplicate) contained a 15min video 😎.

I recorded a video of that bug I found and visited YouTube to upload it. when I clicked upload button, I noticed something strange aside it, something new. It looked like a message button.




But then, the upload page has loaded suddenly and the butt…

Setting up your environment for Hacking - Part 1 : Tools

Image
Hello everyone,

In previous posts, I gave you introduction on XSS, one of the vulnerability. In case if you missed it, you can read it here

Introduction to XSS

Hands on | Google XSS Game




The above 2 posts are well reached and I got lots of mails and facebook messages asking "Can you teach me hacking".

Most of the people are noobs and they don't know how to hack or what is hacking. So, In this and the next few posts, I am going to tell you about setting up your environment for hacking (or) to learn hacking.

In this post, I am talking about the common tools used for hacking. Don't worry. They're open source and you can get it for free.

1. FireFox

Firefox is a web browser you must have to perform testing against websites and web applications. Firefox is not as interesting as chrome but it does have lots of add-ons which help us to test against a target. I'll tell about them later.

Visit Firefox Official Page  |  Download Firefox Web Installer





2. Python

Python is a programm…

How to earn some internet points on Stack Overflow

Image
Stack Overflow, the largest QA site for professional, founded by Jeff and Joel in 2008 and became an encyclopedia for everyone who work or interested in Information Technology. It became an essential part of every programmer's life. Unlike other sites, Stack Overflow focuses only on technology. Any question that are not related to technology will be closed as off topic there. Also questions to recommend some software or hardware is unacceptable by the community.

To get high reputation on Stack Overflow, you have to consider lot of things.

1. Choose your Tag(s)

Each Stack Overflow question is tagged with programming language, tools, etc. So you can watch the tags of your interest to see new questions immediately when they posted.




Choose wisely because if you answer wrongly, you may lose reputation because of down votes.

There are certain tags that have high traffic. If you choose such a tag, your earnings will be high.

2. Be a FGIW

Try to be the first answer. Being the first one to…