Articles by Erik D

File carving is a useful technique if the file system is not recognized. In certain cases, the imaged device might just contain a large chunk of data; rather than something structured, such as a FAT16 USB. Uncommon file systems may also not be supported by traditional forensics tools. Therefore, file…

A Local File Inclusion (LFI) vulnerability allows an attacker to read internal system files. In a worst case scenario – it could lead to remote access. This post demonstrates how a remote attacker could achieve a reverse meterpreter shell from manually exploiting a LFI vulnerability. The demonstration is conducted by…