// BLOG

BSidesCTF 2016 – n0m n0m… n0m

Intro n0m n0m... n0m was a 250 point forensics challenge written by myself for the BSides Canberra CTF. The event was great fun and this challenge was solved by 9% of the actively playing teams. Before we start looking at the solution, you can have a crack at most of...

read more

Offensive Security and the Playground

Who's Offensive Security? Offensive Security are known as arguably the leading training provider in the Information Security industry today. Focusing on highly practical certifications the team are responsible for some of the most well known penetration testing...

read more

LFI? RFI? NFI?

This post is intended to give an overview of the common methods of exploiting file inclusion vulnerabilities. Both remote and local file inclusion topics will be covered. What is File Inclusion? Let's look at the following code: [crayon-5c1670da40876724888591/] This...

read more

Canberra OWASP 2014 Chapter meetings

Well folks, its been a while since we've had an OWASP meeting and this time we're planning something a little different. Rather than have very interesting folks talk to you, we're going to roll our sleeves up and get with breaking web apps. The next few chapter...

read more

What do you do about a problem like Java?

The recent deluge of Java vulnerabilities that have been released (some patched and some exploited in the wild) has given rise to a chorus of ditching Java. I recall a similar village riot when Flash was the subject of a string of vulnerabilities. The main arguments...

read more

Pastebin as an intelligence tool

Pastebin and its many clones have been around since 2002. During the 11 years of their evolution, we have observed the change from its original purpose of sharing of code snippets to an anonymous dead drop for hackers. The latest one being a "hacker" disclosing SQLi...

read more

Want to find out more?

CONTACT

Open: Mon-Fri 9am - 5pm
Phone: (02) 6162 1783
Email: info@ionize.com.au
Address: Suite 5, 16 National Circuit
BARTON ACT 2600

ABOUT

Ionize was established in 2008, and has been servicing clients both within Australia and overseas ever since. Our focus is on providing honest advice to our clients, maintaining the integrity of our work, while building and giving back to the information security community.