Grepping functions with srcML
pubsub.slavino.sk / sjoerdlangkemper · Wednesday, 29 January, 2020 - 00:00 edit
In a previous post, Grepping functions with ANTLR , we looked into parsing source code to perform queries on it using XPath. For that post, I implemented a custom parser using ANTLR. In this post we look at an alternative: srcML is a software project that converts source code to XML so we can query it using XPath.
Cracking password hashes in Yclas
pubsub.slavino.sk / sjoerdlangkemper · Wednesday, 15 January, 2020 - 00:00 edit
Yclas is a CMS for classified advertisements. Its administrator interface has general search functionality, and was vulnerable to path traversal. Combined, these could be abused by administrators to obtain the passwords of other users.
Matrix.org hack
pubsub.slavino.sk / sjoerdlangkemper · Wednesday, 1 January, 2020 - 00:00 edit
Matrix.org develops standards and software for messaging and other online communication. In April 2019, Matrix.org was hacked. Starting from a public Jenkins with a months-old bug, the attacker quickly gained full access to all servers the developers could access. Both Matrix.org and the attacker reflected on the attack, making this an interesting hack to learn from.
Should each form have a different CSRF token?
pubsub.slavino.sk / sjoerdlangkemper · Wednesday, 18 December, 2019 - 00:00 edit
A common protection against CSRF attacks is to have a secret token in each POST request. Typically, this token is the same throughout the session, but in some circumstances it is more secure to rotate CSRF tokens often, or make them specific to the form they are on.
XSS in username in Sakai
pubsub.slavino.sk / sjoerdlangkemper · Wednesday, 4 December, 2019 - 00:00 edit
Sakai is educational software, to keep track of classes, students and test marks.