Volatile Minds

Various thoughts and projects that grab my attention for more than a few minutes.

Tuesday, February 24, 2015

Authenticated Stacked SQL injection in core Solarwinds Orion service (CVE-2014-9566)

Been a while since I wrote a post, so let's fix that. I found a couple SQL injection vulnerabilities in the core Orion service used in...

Tuesday, October 28, 2014

Bruteforcing random strings, randomly

I haven't written about anything in a while, sorry about that. I come across a type of vulnerability quite often regarding weak codes ...

Thursday, May 1, 2014

F5 BIG-IQ v4.1.0.2013.0 authenticated arbitrary user password change

F5 BIG-IQ is vulnerable to an input validation attack that allows an authenticated user to increase their privileges to that of another use...

Thursday, February 27, 2014

Dark matter

I have convinced myself dark matter doesn't exist. It is our generation's 'aether'. Space is malleable, and has a certain ...

Thursday, January 30, 2014

Mono 3.2.6 on CentOS 6.5

Mono is great as it allows you to run .NET applications on Linux. C# is a great language, and is encouraged as a cross-platform alternative...

Sunday, December 29, 2013

Two exploits added to ExploitHub

Hi, I added two Metasploit exploits to the online ExploitHub non-0day exploit store. I am more than open to feature requests or bug report...

Tuesday, November 26, 2013

Thoughts on vulnerability scans with indirect connections

A long while back, I gave a talk at AHA about various thoughts I had on sort of an "inversion of control" notion of managing vulne...

View web version

Brandon Perry: I am a geek who spends his free time messing around with Linux and security stuffs, programming, and anything that mixes with the two. I also enjoy playing around with mathematics (mainly physics and statistics). Word play is always an onomatopoeia.

View my complete profile

Powered by Blogger.