Open in app
Sign inGet started
Go to the profile of Claudio Salazar
Claudio Salazar in alertot

“Web scraping considered dangerous”: Leaking files from the spider’s host

This is the next post of this serie called “Web scraping considered dangerous”. You can read the previous post here and as an update, my pull request fixing FormRequest.from_response behaviour was merged!

Read more…
Go to the profile of Claudio Salazar
Claudio Salazar in alertot

“Web scraping considered dangerous”: Exploiting the telnet service in scrapy < 1.5.2

Disclaimer: scrapy 1.5.2 has been released on January 22th, to avoid being exploited you must disable telnet console (enabled by default) or upgrade up to 1.5.2 at least.
Read more…
1 response
Go to the profile of Claudio Salazar
Claudio Salazar in alertot

Un buffer overflow para gobernar Chile

El año pasado hubo en Chile una charla titulada “Chile Exposed: un puerto para gobernarlos a…

Read more…
2 responses
Go to the profile of Claudio Salazar
Claudio Salazar in alertot

Un sigiloso ataque en SII.cl

[This post is only available in Spanish because the target audience is in Chile]

Read more…
Go to the profile of Claudio Salazar
Claudio Salazar in alertot

Metasploit Community CTF 2018 writeup

This weekend we participated in Metasploit Community CTF and got the 12th place out of 1000…

Read more…
Go to the profile of Claudio Salazar
Claudio Salazar in alertot

New variant in wp-gdpr-compliance vulnerability and fixing it with virtual patching

Read more…
Go to the profile of Claudio Salazar
Claudio Salazar in alertot

Serialization flaw in wp-gdpr-compliance

Some days ago the people at Wordfence wrote about a wildly exploited vulnerability in…

Read more…
Go to the profile of Claudio Salazar
Claudio Salazar in alertot

8dot8 2018 CTF Writeup

El pasado fin de semana se realizó una nueva edición de 8dot8, la conferencia de seguridad más importante de Chile…

Read more…
Go to the profile of Claudio Salazar
Claudio Salazar in alertot

Brief introduction and Ekoparty talk!

This year I’m going to speak at ekoparty and that is special. Not only because it’s the most…

Read more…
Go to the profile of Claudio Salazar
Claudio Salazar in alertot

Getting the domain list of Chile

Update 13/12/2019: En el último tiempo, ha habido una gran discusión por las solicitudes de dominios a NIC.cl por parte de particulares. Nosotros no hemos realizado ni realizaremos ninguna petición de esa índole. Tal como expone la última sección de este artículo, desde…
Read more…
About
alertot
alertot
alertot's blog
More information
Followers
39
Elsewhere