Conference presentations and workshops

Browser Rider: Your way to Fun Browsing (Ruxcon 2008)

Browser exploitation is in fashion but it doesn't seem that there's a popular tool to build and run attacks. Browser Rider will try to fill the gap by providing a framework to build, deploy and manage payloads that exploit the browser. This project aims on the long term to provide a powerful, simple and flexible interface to any client side attack for hackers. (download ppt)


Workshop: Web 2.0 INsecurity (AusCert 2008)

Many service providers have offered their business through web applications. Web services have developed through the past years to a powerful and flexible platform where business meets business and customers. This has triggered a surge for new requirements, leading to some significant changes in the way we use and consume software, store data and develop applications; completely transforming the Web.

Probably the most popular Web development in recent years is AJAX. Together with other technologies, AJAX forms the foundation for Web 2.0 which revolutionised the way we use and experience the web. Unfortunately the industry has created a new popular technology without much security in mind. Not only have new attack vectors evolved but also the attack surface for old web application attacks has increased. Cross Site Scripting (XSS), parameter manipulation, session hijacking are just a few of them. Additionally security professionals have to be concerned about the new data containers like JSON, new architecture principles like REST, new protocols like SOAP and especially the JavaScript language.


Javascript worms: the next step in the evolution (OWASP Australia AppSec 2008)

Hackers are designing JavaScript worms that exploit permanent cross-site scripting attacks, which protects their identity and automatically infect other vulnerable websites. (download ppt)


My latest articles

Advanced XSS exploitation with Ajax

Too many people think that the xss vulnerability is not powerful, well in this article i will try to prove they are wrong and that XSS will become one of the most crucial vulnerability in the future for one reason: Ajax. I show how to bypass javascript code with an xss and what impact it can have on website relying too much on client script code specialy the ones using ajax. After reading this articles you will not think that xss are not important vulnerabilities.
Publish: November 11th, 2007
Language: English
Download: Examples
Format: html

Hacking with Mysql Password

Many articles explain how to become admin with a sql injection vulnerability, in this article I will demonstrate how to get the database password and in certains cases how to become administrator of the complete website. They are sql commands to manage users in the database, for example we can add, edit or delete a user. But one of those commands can be use to show the password of the user. Will see how to brute force it and what we can do with it.
Publish: June, 2006 in The Hackademy Journal
Language: French
Formats: pdf, html, doc

Introduction to PHP application security audits

After my publication about hacking challenge in HackerzVoice, I have been asked to write a more complete article on PHP application security. So this is the result of 4 month of work. I will explain you the basics of web application auditing with many examples on every vulnerability.
Summary: include, xss, sql injection, writing exploit, escape shell, fopen, fread, eval ...
Publish: October 25th, 2005
Language: French
Format: pdf

Introduction to Hacking challenges

This article has been created for a special hackademy journal edition about hacking challenges. I present the common web application vulnerabilities that are propose in most of the challenges and how to solve them.
Publish: Mai, 2005 in The Hackademy Journal
Language: French
Format: pdf, html, doc

My Projects

Browser Rider

"Browser Rider" is a powerful hacking framework to build payloads that exploit the browser. It allows to send javascript on the fly to computers browsing an infected web page. Technically Browser Rider has the following features:

^ Easily create powerful payloads
^ Obfuscation
^ Polymorphisme
^ Control more than one zombie at a time
^ Simple administration panel


Visit the project page

PHP Security Framework

By working in IT companies, I have notice that it is very difficult to make a programmer change his programming habits so that he can improve his code security. Plus, many developers are not aware of new vulnerabilities types and techniques. However it is critical for them to stay in touch with the security world in order to provide secure programmes. For someone who hasn't any security knowledge it is almost impossible to learn how to programme securely and adapt himself quickly. A security problem could require you to re-structure all your application witch can lead to a loss of time and money.


So my goal through this software is to propose a powerful solution to secure your PHP applications against most of the common web vulnerabilities.


With PHP Security Framework you will be able to assure a minimum security to your projects without having to change your ways of programming or having to learn about web hacking. However in this user documentation I will prove the efficiency of my product.


Visit the project page

Miscelleanous

Hijackme #1

After reading Izik's "Reverse Engineering with LD_PRELOAD" i thaught i could write a little challenge on this very nice technique to hijack binaries' functions. So if you want to learn a good technic that can be use in reverse engineering / cracking / hacking try this little hijackme. Feel free to email me feedback on it.
Language: Assembly
Platform: Linux
Download: tar.gz

RedKod's work backup

For two years i have been participating in a security group called RedKod. However this group is now over. But people might be looking for backup of our work so there it is.