IRC Logs

Network: freenode Channel: #csharp

	Enter your search terms Submit search form
	Web www.irclog.org

[00:00]<eg->exactly
[00:00]<eg->don't count on SS at all
[00:00]<kjr>steven_: he lives in another country
[00:00]<eg->maybe to pay for your medications
[00:00]<eg->that about it
[00:00]<kjr>zn-: well, if they privatize SSN...
[00:00]<eg->the illegal ones you'll be ordering from canada
[00:00]<eg->they won't
[00:00]<eg->now they have illegal mexicans paying into it
[00:00]<svgvgg_>Kog, no thats over here in the uk
[00:00]<eg->you think they will give up that money?
[00:01]<kjr>steven_: huh? zn is talking about the US
[00:01]<eg->10-20 years I'm out of the us
[00:01]<eg->I'm not learning spanish
[00:01]<eg->not for these reasons
[00:01]<svgvgg_>Kog oop's my bad happens when you follow a conversation while trying to answer tech support questions over the phone ;)
[00:02]<kjr>steven_: I hope your tech advice is good.. otherwise I'd feel bad for distracting you
[00:02]<kjr>zn-: you know, someone else in here wants to run off to Brazil to escape from it all
[00:02]<svgvgg_>Kog, don't worry about it been in the office for far too long today
[00:02]<kjr>zn-: perhaps the two of you should open an underground railroad
[00:02]<eg->nah
[00:02]<eg->I'll flee to the uk or canada
[00:03]<mupmvz>colombia
[00:03]<kjr>mufdvr: are you kidding me?
[00:03]<pzw>I need help from someone that is really good with sql injections
[00:03]<eg->or maybe china when it owns the USA in 20 years
[00:03]<mupmvz>i got a job offer for there
[00:03]<pzw>Kunnis: are you there?
[00:03]<kjr>mufdvr: hahaha
[00:03]<mupmvz>guy actually said anywhere i wanted in south america
[00:03]<svgvgg_>uk nah don't wann come here we have teribble weather
[00:03]<kjr>frW: are you attacking a target?
[00:03]<eg->duh
[00:04]<pzw>Kog: yes
[00:04]<kjr>was that sarcastic? or serious
[00:05]<eg->both
[00:05]<kjr>frW: I'm sure there are methods to escape and convert to html characters
[00:05]<kjr>zn-: this channel has a standing no grey/black hat policy
[00:05]<pzw>Kog: i wanna drop their databases
[00:05]<pzw>is that possible?
[00:05]<eg->what would html have to do with sql injection exactly
[00:05]<kjr>frW: see, if I didn't know you were joking, I'd be might upset with you
[00:06]<pzw>im not joking :P
[00:06]<svgvgg_>convert to HTML?
[00:06]<eg->yeah that makes no sense
[00:06]<kjr>steven_: HTML chars, like &amp and whatnot
[00:06]<eg->you mean cross site scripting not sql injection
[00:06]<svgvgg_>as a bit of .NET/mono trivia name a sql injection package built using csharp ?
[00:06]<kjr>steven_: I don't write in ASP(.NET), so the analog would be htmlspecialchars() in PHP
[00:07]<eg->hehe
[00:07]<svgvgg_>ding Absinthe
[00:07]<eg->that tool isn't to great
[00:07]<svgvgg_>yeh but it's the only one i managed to find that i got running under linux
[00:08]<eg->linux Ah
[00:08]<svgvgg_>and didn't have a huge amount of dependancies
[00:08]<svgvgg_>had to run on a live cd
[00:08]<eg->you crazy linux people
[00:09]<svgvgg_>lol that was my other project for uni a web penetration/auiditing livecd
[00:09]<krffnjs>"INSERT INTO Transaktionsdetails (ArtikelDatenID, Verkaufspreis, VK-Datum, EbayNr) VALUES (12, 50 ,#2006-05-26# , '110000170335')" I execute this query for access, therefore # parenthesizers are needed for datetypes (i tried with single quotes too)
[00:09]<krffnjs>Unfortunately, I got a stupid syntax error, anyone has an idea?
[00:09]<kjr>steven_: you gotta be careful about that, at least around here
[00:09]<kjr>steven_: kids keep getting arrested for stuff like that
[00:09]<eg->:)
[00:09]<eg->steven what other tools you used in the uni?
[00:09]<krffnjs>VK-Datum is a cell which expect date type
[00:09]<eg->Kog some people get paid for that stuff legit
[00:10]<svgvgg_>Kog huh u gotta be kidding that was requested for by a lecturer!
[00:10]<kjr>steven_: I know
[00:10]<eg->who was the lecturer?
[00:10]<kjr>steven_: you read in the news every once in a while a guy writing similar software as coursework will be arrested
[00:10]<svgvgg_>does it matter if it's aimed at professionals rather than script kiddes
[00:11]<svzz_wjzc_>huh... now that's a basic thing i never done... can i start a loop from the index of the last loop ? for example : int I = 0; for (I; I < Val1 && I < Val2; I++) ... for (I; I < Val1; I++) ... for (I; I < Val2; I++)
[00:11]<svzz_wjzc_>is there a way to do this without using another value to hold at which I value i'm up to between the loops ?
[00:12]<svgvgg_>Al Graziano
[00:13]<eg->steven who was the guest speaker/lecturer?
[00:13]<svgvgg_>zn-, What do u mean guest speaker ?
[00:13]<eg->at the uni to teach you pen testing was it a teacher, or guest lecturer?
[00:14]<svgvgg_>teacher
[00:14]<svgvgg_>then name mentioned above
[00:14]<eg->I helped design a pen testing lab for GAtech once
[00:14]<svgvgg_>what do you do if you don't mind me asking ?
[00:15]<eg->application security engineer/analyst/qa team lead for security products/r&D
[00:15]<svgvgg_>i was gonna take a masters in security but i can't afford the ?6000 yet!
[00:15]<svgvgg_>so business it is, and hopefully include more security into the business as i can
[00:16]<eg->security biz = good ;p
[00:16]<svgvgg_>seem's like every company under sun is offering security audits these days, or vulnerability assesments
[00:16]<eg->'now adays' they are yes
[00:16]<eg->pays well
[00:17]<svgvgg_>iv'e yet to come across one that doesn't just use a commercial scanner ?
[00:17]<eg->some have in house ones
[00:17]<eg->I know 2 people who coded their own scanners
[00:17]<svgvgg_>thats where im getting my first client from an un-happy customer
[00:18]<svgvgg_>zn, luckily the framework for my EMS provides a base to build an asessment tool, next on my list! lol
[00:19]<eg->good luck with session state management and javascript parsing
[00:19]<eg->talk to ya in 7 years when you get that down
[00:19]<svgvgg_>lol, targeted more at host assessment rather than web app security
[00:21]<eg->that is boring
[00:21]<eg->same old crap
[00:21]<eg->;p
[00:21]<eg->host stuff can be done with automated tools in 90% of situations easy

Back to #csharp
Or go to some related logs:
#gentoo
#gentoo
#suse
#gentoo
#macosx