Hi guys, I am a bit late for this post, sorry. With Bach, we have been able to fly the drone! However, we still need some improvements before to show you. In fact, we wanted to take one of the video when we will be sure about our test. First improvement we have done was …
Hi everybody, today I’m a little bit late but I’ll do a final article about Tapestry. I’ll write about the form system since I spent a little bit of time auditing it. How does it work? The framework will send a parameter to add to each form (as a hidden form value), which will act …
Hi guys! I am in a phase of resting/sleeping, and thinking… And to be honest, it is great to be able to take some time for yourself. I have run out of motivation and ideas lately since the end of the presentation, almost as if I have put all my strength on it… And you …
Hi, today I’ll continue a little bit my exploration about Apache Tapestry. Here’s what I learned today. General architecture of Tapestry Tapestry presents itself as a way to code with an object oriented-programming web applications. It means that when you setup a “page” in tapestry, you won’t have to think in terms of requests, parameters …
Hi guys, Today, let’s talk about this little portable stars map used to check the main constellations in the sky: the Planisphere. In Helsinki, I have got the luck to be able to visit an old observatory with very old astronomy tools. However, even if I haven’t got the chance to get one of these …
Hi everybody, this time, same treatment, I don’t think it deserves its own article so I just don’t categorize it, however it is a pentesting article. I had to test an application using Apache Tapestry today, which is a Java Web Framework, similar to faces or wicket. URLencoding The most obvious thing once you test …
Hi guys, Today, let’s talk about Finland again. It will be the last article for today, so I will talk about some words and sentence I have learnt during the travel. Moi/Hei = Hello Oikea = Right or true Vasen = Left Kuusi = Spruce, a kind of pine that could be find in Finland …
Hi, today I’ll do a quick article that’s talking primarly about security but I won’t enter it into the pentest category since the question I didn’t develop a solution yet. The need for a pseudo-tty Why should we need a pseudo-tty? During a pentest, there are a lot of cases where you would need …
Hi guys, Sorry for the late article, I was trying to get some WiFi during the travel. Today, I will talk about Finland again. — What is really interesting with this country is how you can live with so much opportunities in Finland. It is still hard to know everything about this country but with …
Hi everybody, today I’ll talk about Express, which is a NodeJS framework used to create web applications and how to abuse it to exploit a directory traversal on some implementations. Directory traversal You probably already know what is a directory traversal, but in short, it is based on the ability to use “../”, which …