SECFORCE will present Tunna framework and a number of techniques penetration testers can benefit from to bypass network firewalls.
The presentation will include common scenarios in which HTTP tunnels can be use to bridge the gap between web application testing and infrastructure testing.
Please find information about the conference here.
Tunna is a HTTP tunnel framework to aid penetration testing for web applications protected by a firewall. Tunna is integrated with Metasploit.
See more
This blog post explains the process that we followed in a recent penetration test to gain command execution from a CSV import feature. One of the most challenging issues was that we had to escape commas during the SQL injection attack, as it would break the CSV structure.
See moreThank you!
Please try again later.
