Archive for September, 2006
Log 0.7 – The Escape
I noticed a small fire alarm box joined to the right wall, adjacent the glass table in the centre of the room. I had initially thought to make a run for the front door while Cole had been scratching around in the desk for the Temporary Pass. I feared however, that the entry doors would [...]
Cross Context Scripting with Sage
Update:
http://michaeldaw.org/md-hacks/rss-injection-in-sage-part-2/
I would often keep abreast of new vulnerabilities and exploits via my RSS feeds. Visiting page after page was just never fun. RSS allowed me to categorise, organise and track the security mayhem on the Internet. What was the point of employing a security analyst who was outdated and outgunned?
I decided to play with Sage, [...]
Log 0.6 – RFID Part 2
I was captivated as I glanced at the transparent RFID chip that Cole now held before me. With this technology had come a plethora of ideas and possibilities. Passports, driving licenses, petrol stations, cars, the London underground in the form of Oyster cards, anti-theft systems in shops were all RFID driven. Heck, it was now [...]
Log 0.5 – RFID Part 1
I found myself in a long white corridor with Cole. There was not a soul in sight. The drowsiness one feels when waking up after a bad nights sleep began to wear off. I realised the seriousness of my situation. Hours earlier I had been on a train and now I was in some weird [...]
Log 0.4 – XSSing the government
As I stood up I felt as if I was going to be sick. This was attributed to the sinking feeling in my stomach and my raging curiosity. The man began walking towards the door at the far end of the room. I followed a few steps then paused, “So what’s your name?†I [...]
