Comments for HackTalk

Comment on vulnerability-lab.com XSS Vulnerability by vulnerability-lab.com XSS | HackTalk | Security Scrapbook | Scoop.it

Fri, 03 Feb 2012 19:38:05 +0000

[...] background-position: 50% 0px; background-color:#222222; background-repeat : no-repeat; } blog.hacktalk.net – Today, 2:38 [...]

Comment on How to do it wrong by Episode 580 – Weekend Wrap-up with Dr. b0n3z | InfoSec Daily

Episode 580 – Weekend Wrap-up with Dr. b0n3z | InfoSec Daily — Sun, 29 Jan 2012 02:53:14 +0000

[...] Source: http://blog.hacktalk.net/how-to-do-it-wrong/ [...]

Comment on Mysql Error Based injection by jezebeth

jezebeth — Sun, 25 Dec 2011 15:06:42 +0000

Just lovely! nice read

Comment on Mysql Error Based injection by Mysql Error Based Injection | HackTalk | comp-sec | Scoop.it

Mysql Error Based Injection | HackTalk | comp-sec | Scoop.it — Wed, 21 Dec 2011 13:25:53 +0000

[...] jQuery("#errors*").hide(); window.location= data.themeInternalUrl; } }); } blog.hacktalk.net – Today, 8:26 [...]

Comment on mazur.harvard.edu database leak by connection

connection — Thu, 01 Dec 2011 01:37:07 +0000

Well I didn’t alert them to this issue (the one that led to the database leak) as the database itself was given to me by someone on IRC. I do know a while back when I initially reported the vulns to Harvard ( http://pastebin.com/ymZzEMxF ) I not only emailed their listed security contact in their Whois lookup but I also used the contact form on the Harvard website and never got any word back although I know they read the emails as they removed the vulnerable scripts.

Comment on mazur.harvard.edu database leak by H@XoR

H@XoR — Thu, 01 Dec 2011 00:31:50 +0000

Just out of curiosity who at Harvard did you report these discovered vulnerabilities to in the past that were not acted on?

Comment on mazur.harvard.edu database leak by Javantea

Javantea — Wed, 30 Nov 2011 19:48:24 +0000

You should always give the vulnerable party the benefit of first notification even if they have been absent in the past. You never know what awful security issues are higher priority than yours at the moment. I made that mistake a few years ago and have been working with vendors and vulnerable parties for the past few years. They get the point sometimes and that’s what we really want, right?

Keep up the good work, this dump is interesting.

Comment on Google Dork Mega List by Google dork | Kiroset

Google dork | Kiroset — Sat, 30 Jul 2011 22:00:21 +0000

[...] Google Dork Mega List | HackTalkAug 30, 2010 … A massive compiled list of Google Dorks from all over the internet, from Google site caches to foreign sites, 7000+ lines. [...]

Comment on NodeZero Linux Is Now Available by netinfinity

netinfinity — Mon, 18 Oct 2010 20:36:29 +0000

Thanks a lot Luis for mirroring the NodeZero

Comment on NodeZero Linux Is Now Available by Tweets that mention NodeZero Linux Is Now Available | HackTalk -- Topsy.com

Tweets that mention NodeZero Linux Is Now Available | HackTalk -- Topsy.com — Mon, 18 Oct 2010 19:11:11 +0000

[...] This post was mentioned on Twitter by Hack Talk, WopotYaer. WopotYaer said: RT @hacktalkblog: New blog post: #HackTalk: NodeZero Linux Is Now Available http://su.pr/1adRhm [...]