Xs-sniper - xs-sniper.com - Billy (BK) Rios
General Information:
Latest News:
Tridium Niagara – Directory Traversal 26 Nov 2012 | 05:30 pm
In July of this year, I wrote about some of the frustrations I encountered when working with Tridium and trying to get them to fix various issues with their Niagara framework. The Niagara framework is...
Content Smuggling 11 Oct 2012 | 11:00 pm
A few years ago, I discovered a peculiar design decision described in the PDF specification. This design flaw allows for an attacker to conduct XSS attacks against some websites that would not normall...
Tridium – An ICS Learning Moment… 13 Jul 2012 | 08:07 am
We are happy to see Robert O’Harrrow is shining a light on the vulnerabilities associated with Industrial Control Systems (ICS). The ICS software community is light years behind modern software securi...
Tridium – An ICS Learning Moment… 13 Jul 2012 | 08:07 am
We are happy to see Robert O’Harrrow is shining a light on the vulnerabilities associated with Industrial Control Systems (ICS). The ICS software community is light years behind modern software securi...
The Siemens SIMATIC Remote, Authentication Bypass (that doesn’t exist) 21 Dec 2011 | 03:22 pm
I have been working with ICS-CERT and various vendors over the last year, finding bugs and “responsibly” reporting nearly 1000 bugs… all for free and in my spare time. Overall, its been a great experi...
The Siemens SIMATIC Remote, Authentication Bypass (that doesn’t exist) 21 Dec 2011 | 10:22 am
I have been working with ICS-CERT and various vendors over the last year, finding bugs and “responsibly” reporting nearly 1000 bugs… all for free and in my spare time. Overall, its been a great experi...
Turning the Tables – Part II 11 Jun 2011 | 10:44 am
I’m posting some of the research I’ve been working on over the last few months. I planned on submitting some of this research to the Blackhat/DEFCON CFP, but it looks like I’ll be tied up for most of ...
Turning the Tables – Part II 11 Jun 2011 | 06:44 am
I’m posting some of the research I’ve been working on over the last few months. I planned on submitting some of this research to the Blackhat/DEFCON CFP, but it looks like I’ll be tied up for most of ...
Bypassing Flash’s local-with-filesystem Sandbox 5 Jan 2011 | 12:00 am
A few weeks ago, I posted a description of a set of bugs that could be chained together to do “bad things”. In the PoC I provided, a SWF file reads an arbitrary file from the victim’s local file syst...
Bypassing Flash’s local-with-filesystem Sandbox 4 Jan 2011 | 04:00 pm
A few weeks ago, I posted a description of a set of bugs that could be chained together to do “bad things”. In the PoC I provided, a SWF file reads an arbitrary file from the victim’s local file syst...
