Visual Portfolio, Posts & Image Gallery for WordPress

How to: not get hacked

Most people don't really care about security. We hope and believe our computers take care of security for us. Posting the latest Facebook update pretending to be our cat is far more important. The cat…

AV Arcade XSS Exploit

During registration, the user name field of the AV Arcade script is open to a stored XSS attack. Code will be processed on the members page. The malicious code can be overflown to the homepage…

Password Security Tips

A simple list of Dos and Donts to consider when creating new accounts or updating passwords for current accounts you have. It may sound simple, but mistakes can often be made when in a rush…

Recent Posts

  • Abeon Podcast #01
    I’m an ex-criminal, ex-blackhat but reformed for over 11 years. Abeon Cast #01 covers the basics of my background. This is a weekly podcast, starting now.
  • nSkid Scambait Tool
    nSkid is a python SERP scraper for scammer phone numbers. I made it for productivity.
  • An XSS attack in action
    Teh Cookie Monster. A full example of how XSS can lead to full account takeover.
  • Hacking My Bank. For teh lulz.
    I lost count how many exploits I found in my bank. They have a huge attack surface.
  • Mocking the Military; Hacking Hackers
    I found a way to add pages to the U.S. Department of Defence. Of course I took the piss. Also, hacking hackers bonus content.