Category Archives: Tools for Web App Testing

Project Blacklist3r

TL;DR The goal of this project is to accumulate the secret keys / secret materials related to various web frameworks, that are publicly available and potentially used by developers. These secrets will be utilized by the Blacklist3r tools to audit the target application and verify the usage of these pre-published… Read More

Defcon 17 Slides, Demos and Tools

Here are my slides and video demonstrations which i presented at Defcon 17. Defcon_Oracle_The_Making_of_the_2nd_sql_injection_worm View more documents from guest785f78. There are 3 demos to go with the slides: Demo 1: Exploiting PL/SQL Injection from Web Applications. Demo 2: Exploiting SQL Injection in Oracle Applications with Bsqlbf Demo 3: A proof… Read More