Category Archives: Hacking

This weekend I (abs|Zer0|) participated in the PlaidCTF organized by PPP. That was an awesome experience. Our team solved 3 out of 4 web challenges and I spent most of my time on the web challenge #16 which was related … Continue reading →

I coded a small stored procedure to detect which host are in the same Local Network with the SQL Server for further access. It’s kinda convenient since you don’t need any external scanner for this job. Only Transact-SQL is enough. Note: … Continue reading →

SQL  Server 2005 or later, for security purpose, following procedures are disabled by default: xp_cmdshell : allows executing shell commands sp_oacreate : creates an instance of an OLE object. sp_makewebtask: creates output file With sysadmin’s right, you can resurrect them: … Continue reading →