No Recent Activity
About prashant_uniyal

Basic Information

About prashant_uniyal
Biography:
A student by day..and a Hacker by night :)
Location:
localhost
Interests:
Ethical hacking, Penetration testing ,Exploit code development

Signature


The three great essentials to achieve anything worth while are: Hard work, Stick-to-itiveness, and Common sense. - Thomas A. Edison
__________________________________________________ _____________________

Statistics


Total Posts
Total Posts
505
Posts Per Day
0.20
General Information
Last Activity
01-16-2017 04:06 PM
Join Date
07-08-2010
Referrals
2

10 Friends

  1. ajaysinghnegi ajaysinghnegi is offline

    Garage Member

    • Send a message via MSN to ajaysinghnegi
    • Send a message via Yahoo to ajaysinghnegi
    ajaysinghnegi
  2. AP4CH3 AP4CH3 is offline

    Garage Newcomer

    AP4CH3
  3. c0dist c0dist is offline

    Administrator

    c0dist
  4. chandan chandan is offline

    Garage Newcomer

    chandan
  5. D4rk357 D4rk357 is offline

    Garage Member

    D4rk357
  6. dexter dexter is offline

    Garage Newcomer

    dexter
  7. mayjune mayjune is offline

    Garage Member

    mayjune
  8. rishabhd rishabhd is offline

    Garage Newcomer

    rishabhd
  9. Vydeesh Cherry Vydeesh Cherry is offline

    Garage Newcomer

    Vydeesh Cherry
Showing Friends 1 to 9 of 10
View prashant_uniyal's Blog

Recent Entries

XSS threats on leading Indian mobile operators websites

by prashant_uniyal on 10-22-2012 at 08:38 PM
While passing by common websites, we had came across various security issues in them in the past. Be it a bug on Facebook, Flipkart or Indian Shopping sites, we have brought up many issues in the past and have responsibly disclosed them. This time while passing by few mobile operators website, we noticed Cross-site scripting a.k.a XSS, 2nd top on the OWASP top 10 list. These vulnerabilities can be noticed very easily and can be used by cyber crooks to execute malicious scripts on the website, and

Read More

Categories
Uncategorized

Performing Android malware analysis

by prashant_uniyal on 05-22-2012 at 02:51 PM
In the past few years, malware and Trojans have moved with a rapid pace when it comes to mobile portability. Many famous Trojans and malwares have been detected and analyzed in the past. Android being the latest and a popular mobile platform has become all time famous target of cyber crooks and malware authors. Android application package file or APK is the file format used to distribute and install application software and middle-ware into Android operating system.To make an APK file, a program

Read More

Categories
Uncategorized

Demystifying The Ashi virus--"vinnu" PART III

by prashant_uniyal on 08-23-2010 at 03:26 PM
Now I just need to scramble the code. For this purpose I created a HTML file containing the code and encoder and decoder. This file will assemble the virus and will provide us the viral code. The HTML code is:
<html>
<head><title>Ashi assmebler by "vinnu"</title>
<script language=javascript>
var ashi='trigger();function trigger(){var
vin=document.getElementsByTagName(\"a\");var total=0;var index=0;var
address;for(var

Read More

Categories
Uncategorized

Demystifying The Ashi virus--"vinnu" PART II

by prashant_uniyal on 08-23-2010 at 01:49 PM
This is a google's free page uploading facility (http://sites.google.com/site). I loaded the .js file as an attatchment. But it contained nothing initially.It was meant for controlling the Botnet and commanding it later in forming the XSS tunnels. It was the second stage of two staged botnet formation.Note: The third party free sites are also useful to connect to a botnet if you do not have any dedicated server. In ur script file at free site like google,you can place a script that can redirect

Read More

Categories
Uncategorized

Evading AV Signatures..Derailing the Antivirus--"vinnu"

by prashant_uniyal on 08-10-2010 at 07:44 PM
Evading AV Signatures..Derailing the Antivirus

Author: "vinnu"
Greetz : Prashant Uniyal, b0nd, Lord Deathstorm, D4rk357, G4H
Team : Legion Of Xtremers (LOX).


The perimeter defence (antivirus) is still considered fullproof measure by most of people
in virtual world. Such an assumption is fatal and can lead to more sophisticated compromise
of systems.

Note: In my last paper, "Heap spray -- Slipping CPU

Read More

Categories
Uncategorized