novaca!ne.biz

Sup,
Today Exploit-db published my new paper:

“Authentication Bypass - SQL Injection and magic_quotes“.

Table of contents:

1. Introduction
2. What is Auth Bypass
3. How to exploit it
4. Bypass magic_quotes
5. How to fix it
6. Shouts

You can read it here:
http://www.exploit-db.com/download_pdf/11956

and here:
http://novacaine.me.pn/whitepapers/auth-bypass.pdf

In the following day’s I’m going to make a video tutorial about spawn a shell via LFI (less known method).

Stay tuned, n0va

sup,

The last day’s my blog was not available, I had some server problems but now everything is fixed.
Thanks to bl0b for my new space in Ukraine.

By the way: today my new whitepaper with J0hn.X3r will be published, stay tuned.

n0va

Sup,

Yesterday exploit-db published my whitepaper “Advanced XSS knowledge“.

Big thanks for Vinzenco for the ascII artwork !

Here is the table of contents:

.°.°.°.°.°.°.°.°.°.°.°.°.°.°.°.°.°.°.°.
Index:                                °
--(  I  ]> Introduction               .
                                      °
--( II  ]> What exactly is XSS ?      .
                                      °
--( III ]> How to execute XSS commands.
                                      °
--( IV  ]> Bypass techniques          .
                                      °
--(  V  ]> What can we do with XSS ?  .
                                      °
--( VI  ]> How to fix XSS leakages    .
                                      °
--( VII ]> Cheat Sheets               .
°.°.°.°.°.°.°.°.°.°.°.°.°.°.°.°.°.°.°.°

You can find it here:
http://www.exploit-db.com/papers/11860
and here:
http://novacaine.me.pn/whitepapers/advanced-xss.txt

My exploit-db author account:
http://www.exploit-db.com/author/novaca!ne

stay tuned for new uploads

n0va

Sup fellas,

I own now a new domain www.novacaine.biz
Thanks goes to td0s for my new space and c1ox for the domain.

Some old, alternative mirrors:
www.novacaine.biz
www.novacaine.site11.com
www.nova-blog.host22.com
www.novacaine.6x.to
www.nova-blog.6x.to

Sincerely yours, n0va

I’m sorry for my inactivity, I had some problems with my (not existing) Domain.
At the latest on Sunday (28.03.10) my tld www.novacaine.biz will be available.

Also I wish everyone of you a happy St. Patrick’s Day !

Sup,
minutes ago I wrote with Saltfish.ws admin x0red.

I asked him about the situation at project Saltfish.ws, he answered that he’s hosting at www.back2hack.cc and they updated their server and stuff, so his project was also down.

Besides he told me that he is working at a v2 of Saltfish.ws.
I’m the first who is reporting about Saltfish.ws v2.

He told me some upcoming changes:

• new design,
• new sites were added,
• he will also link blogs from scene members.

Here’s a little preview:

… since I made a new post, I want to apologize for this issue, I had some private reasons for this long, postless period .
I was on my class trip, after that I went to the hospital for a operation and so on … .

In the next day’s I’m going to buy a new domain and post some new articles about websecurity.
Stay tuned,

n0va

Today is my final class trip to austria.

We’re going to ski there.

Enjoy your germany, cu later in 1 week.

n0va

Sup,
Today I finally finished the work on my little Whitepaper database.

You can reach it here:
http://novacaine.site11.com/whitepapers
http://novacaine.biz/whitepapers

and here:
http://novacaine.me.pn/

You can find there a lot of tutorials and knowledge that I collected over the years.

I’m keeping it updated, have fun !

Sincerely yours, n0va

I aways see people talking about god and religion, eventhough they don’t know exactly what they’re believing at.
Those people just read some quotes e.g. from the bible and are like:

HURR DURR GOD IS ON MY SIDE, U BETTER BELIEVE OR STFU.

I personally am an atheist for about one year.
But I also think that everyone should inform himself about what he believes and why.

Try to answer questions like the following just for yourself:

Who told me about god?
Do I need religion?
Did prayers ever helped me?

Besides, look at this picture to read something more about religion: