Unauthorized access to PraxisMMT simulator(Business Talents 2014) results

Twitter: @teh_h3ck Email: teh3ck@gmail.com I participated in Business Talents 2014 competition. BusinessTalents is a four-month long simulation using a Praxis MMT simulator. The goal is to manage a company and perform all of the…

Persistence: 1 (Stack Canary(SSP) + NX bypass)

Twitter: @teh_h3ck Email: teh3ck@gmail.com Persistence is a boot 2 root machine by sagi- and superkojiman, hosted in Vulnhub. URL: http://vulnhub.com/entry/persistence-1,103/ Portscan Nmap scan report for 192.168.74.148…

MyInternet CMS SQL injection in admin panel

MyInternet admin panel login bypass I contacted the company via email reporting that i have found a critical vulnerability affecting some of their customers. They didn't reply back and i decided to make a call to inform the company about the vulnerability. I explained the impact and they answered "I…

Xerxes2 writeup

Xerxes2 is a boot2root machine that is built by barrebas and hosted by Vulnhub.com Contact: [email protected] Twitter: @teh_h3ck Let's start At start port 8888 isn't open. With a second nmap scan here it is! Nmap Scan Nmap scan report for 192.168.74.136 PORT…

Skytower 1 boot2root

URL: http://vulnhub.com/entry/skytower-1,96/ Starting Nmap 6.46 ( http://nmap.org ) at 2014-06-28 23:18 EEST Nmap scan report for 192.168.74.134 Host is up (0.00075s latency). Not shown: 997 closed ports PORT STATE SERVICE 22/tcp filtered ssh 80/tcp open http 3128…

Webmaster Platinum multiple vulnerabilities

Product : Diehl AKO | Platinum | Papendorf Software Engineering Product : Webmaster Platinun Reported by : Evangelos Mourikis Contact : vag.mourikis () gmail [dot] com Affected versions : All [tested on 1.2.1.7, 1.2.4.1] Contact Vendors (1st attempt) : 26/05/2014 (No answer) Contact Vendors (2nd attempt) : 03/06/2014 (No…