API Tuenti Oficial
febrero 13, 2011
5 comentarios
No me interesa demasiado, pero bueno ahí por si a alguien le hace falta 
{
"ignoreFriendRequest": {
"results": {
"keys": {
},
"isDictionary": false
},
"requestContentTypeMultipartFormData": false,
"code": "ignoreFriendRequest",
"arguments": {
"friend_id": {
"optional": false,
"code": "friend_id"
}
},
"sessionRequired": true
},
"getThread": {
"results": {
"keys": {
"messages": "messages",
"is_replied": "is_replied"
},
"isDictionary": true
},
"requestContentTypeMultipartFormData": false,
"code": "getThread",
"arguments": {
"thread_key": {
"optional": false,
"code": "thread_key"
},
"messages_per_page": {
"optional": true,
"code": "messages_per_page"
},
"page": {
"optional": true,
"code": "page"
}
},
"sessionRequired": true
},
"getFriendsNotifications": {
"results": {
"keys": {
"friends": "friends"
},
"isDictionary": true
},
"requestContentTypeMultipartFormData": false,
"code": "getFriendsNotifications",
"arguments": {
"types.constants.new_tagged_photos": "new_tagged_photos",
"types.constants.accepted_friend_requests": "accepted_friend_requests",
"page": {
"optional": true,
"code": "page"
},
"types": {
"optional": false,
"code": "types"
},
"types.constants.new_profile_wall_posts": "new_profile_wall_posts"
},
"sessionRequired": true
},
"getFriendsData": {
"results": {
"keys": {
},
"constants.male": 1,
"isDictionary": false,
"constants.female": 0
},
"requestContentTypeMultipartFormData": false,
"code": "getFriendsData",
"arguments": {
"fields.constants.name": "name",
"fields.constants.phoneNumber": "phone_number",
"fields.constants.id": "id",
"fields.constants.chatServer": "chat_server",
"fields.constants.avatar": "avatar",
"friends_per_page": {
"optional": true,
"code": "friends_per_page"
},
"fields": {
"optional": false,
"code": "fields"
},
"page": {
"optional": true,
"code": "page"
},
"fields.constants.status": "status",
"fields.constants.surname": "surname",
"fields.constants.sex": "sex"
},
"sessionRequired": true
},
"getFriends": {
"results": {
"keys": {
"friendIds": "friends"
},
"isDictionary": true
},
"requestContentTypeMultipartFormData": false,
"code": "getFriends",
"arguments": {
"id": {
"optional": true,
"code": "id"
}
},
"sessionRequired": true
},
"addPostToPhotoWall": {
"results": {
"keys": {
},
"isDictionary": false
},
"requestContentTypeMultipartFormData": false,
"code": "addPostToPhotoWall",
"arguments": {
"body": {
"optional": false,
"code": "body"
},
"notify_in_profile_walls": {
"optional": true,
"code": "notify_in_profile_walls"
},
"photo_id": {
"optional": false,
"code": "photo_id"
}
},
"sessionRequired": true
},
"acceptFriendRequest": {
"results": {
"keys": {
},
"isDictionary": false
},
"requestContentTypeMultipartFormData": false,
"code": "acceptFriendRequest",
"arguments": {
"friend_id": {
"optional": false,
"code": "friend_id"
}
},
"sessionRequired": true
},
"getWall": {
"results": {
"keys": {
"can_post": "can_post",
"posts": "posts"
},
"isDictionary": true
},
"requestContentTypeMultipartFormData": false,
"code": "getProfileWall",
"arguments": {
"user_id": {
"optional": true,
"code": "user_id"
},
"page": {
"optional": true,
"code": "page"
},
"posts_per_page": {
"optional": true,
"code": "posts_per_page"
}
},
"sessionRequired": true
},
"getSession": {
"results": {
"keys": {
"timestamp": "timestamp",
"challenge": "challenge",
"seed": "seed"
},
"isDictionary": true
},
"requestContentTypeMultipartFormData": false,
"code": "getSession",
"arguments": {
"timestamp": {
"optional": false,
"code": "timestamp"
},
"seed": {
"optional": false,
"code": "seed"
},
"passcode": {
"optional": false,
"code": "passcode"
},
"applicationKey": {
"optional": false,
"code": "application_key"
},
"email": {
"optional": false,
"code": "email"
}
},
"sessionRequired": false
},
"setUserData": {
"results": {
"keys": {
},
"isDictionary": false
},
"requestContentTypeMultipartFormData": false,
"code": "setUserData",
"arguments": {
"status": {
"optional": true,
"code": "status"
}
},
"sessionRequired": true
},
"getPhotosData": {
"results": {
"keys": {
"photos": "photos"
},
"isDictionary": true
},
"requestContentTypeMultipartFormData": false,
"code": "getPhotosData",
"arguments": {
"ids": {
"optional": false,
"code": "ids"
},
"fields": {
"optional": false,
"code": "fields"
}
},
"sessionRequired": true
},
"getChallenge": {
"results": {
"keys": {
"timestamp": "timestamp",
"challenge": "challenge",
"seed": "seed"
},
"isDictionary": true
},
"requestContentTypeMultipartFormData": false,
"code": "getChallenge",
"arguments": {
"type.constants.login": "login",
"type": {
"optional": false,
"code": "type"
}
},
"sessionRequired": false
},
"getAlbumPhotos": {
"results": {
"keys": {
"album": "album"
},
"isDictionary": true
},
"requestContentTypeMultipartFormData": false,
"code": "getAlbumPhotos",
"arguments": {
"album_id": {
"optional": false,
"code": "album_id"
},
"user_id": {
"optional": true,
"code": "user_id"
},
"photos_per_page": {
"optional": true,
"code": "photos_per_page"
},
"page": {
"optional": true,
"code": "page"
}
},
"sessionRequired": true
},
"addCommentToProfileWall": {
"results": {
"keys": {
},
"isDictionary": false
},
"requestContentTypeMultipartFormData": false,
"code": "addCommentToProfileWall",
"arguments": {
"body": {
"optional": false,
"code": "body"
},
"post_id": {
"optional": false,
"code": "post_id"
},
"user_id": {
"optional": false,
"code": "user_id"
}
},
"sessionRequired": true
},
"tagUser": {
"results": {
"keys": {
},
"isDictionary": false
},
"requestContentTypeMultipartFormData": false,
"code": "tagUser",
"arguments": {
"x": {
"optional": false,
"code": "x"
},
"y": {
"optional": false,
"code": "y"
},
"user_id": {
"optional": false,
"code": "user_id"
},
"photo_id": {
"optional": false,
"code": "photo_id"
}
},
"sessionRequired": true
},
"getUserAlbums": {
"results": {
"keys": {
},
"isDictionary": true
},
"requestContentTypeMultipartFormData": false,
"code": "getUserAlbums",
"arguments": {
"albums_per_page": {
"optional": true,
"code": "albums_per_page"
},
"user_id": {
"optional": true,
"code": "user_id"
},
"page": {
"optional": true,
"code": "page"
}
},
"sessionRequired": true
},
"getInbox": {
"results": {
"keys": {
"threads": "threads",
"num_threads": "num_threads"
},
"isDictionary": true
},
"requestContentTypeMultipartFormData": false,
"code": "getInbox",
"arguments": {
"page": {
"optional": true,
"code": "page"
},
"threads_per_page": {
"optional": true,
"code": "threads_per_page"
}
},
"sessionRequired": true
},
"uploadPhoto": {
"results": {
"keys": {
},
"isDictionary": false,
"convert_Array": true
},
"requestContentTypeMultipartFormData": true,
"code": "uploadPhoto",
"arguments": {
"photo": {
"optional": false,
"code": "photo"
},
"photo.constants.photo_max_width": 600
},
"sessionRequired": true
},
"setPhotoData": {
"results": {
"keys": {
},
"isDictionary": false
},
"requestContentTypeMultipartFormData": false,
"code": "setPhotoData",
"arguments": {
"title": {
"optional": false,
"code": "title"
},
"photo_id": {
"optional": false,
"code": "photo_id"
}
},
"sessionRequired": true
},
"getProfileWallComments": {
"results": {
"keys": {
"can_post": "can_post",
"posts": "posts"
},
"isDictionary": true
},
"requestContentTypeMultipartFormData": false,
"code": "getProfileWallComments",
"arguments": {
"post_id": {
"optional": false,
"code": "post_id"
},
"user_id": {
"optional": true,
"code": "user_id"
},
"page": {
"optional": true,
"code": "page"
},
"posts_per_page": {
"optional": true,
"code": "posts_per_page"
}
},
"sessionRequired": true
},
"getPhotoWall": {
"results": {
"keys": {
"can_notify_in_profile_walls": "can_notify_in_profile_wall",
"can_post": "can_post",
"posts": "posts"
},
"isDictionary": true
},
"requestContentTypeMultipartFormData": false,
"code": "getPhotoWall",
"arguments": {
"page": {
"optional": true,
"code": "page"
},
"photo_id": {
"optional": true,
"code": "photo_id"
},
"posts_per_page": {
"optional": true,
"code": "posts_per_page"
}
},
"sessionRequired": true
},
"addPostToWall": {
"results": {
"keys": {
},
"isDictionary": false
},
"requestContentTypeMultipartFormData": false,
"code": "addPostToProfileWall",
"arguments": {
"body": {
"optional": false,
"code": "body"
},
"user_id": {
"optional": false,
"code": "user_id"
},
"parent_post_id": {
"optional": true,
"code": "parent_post_id"
}
},
"sessionRequired": true
},
"sendMessage": {
"results": {
"keys": {
},
"isDictionary": false
},
"requestContentTypeMultipartFormData": false,
"code": "sendMessage",
"arguments": {
"thread_key": {
"optional": true,
"code": "thread_key"
},
"body": {
"optional": true,
"code": "body"
},
"recipient": {
"optional": true,
"code": "recipient"
}
},
"sessionRequired": true
},
"getUserNotifications": {
"results": {
"keys": {
"unread_friend_messages": "unread_friend_messages",
"new_tagged_photos": "new_tagged_photos",
"new_profile_wall_posts": "new_profile_wall_posts",
"new_photo_wall_posts": "new_photo_wall_posts",
"new_friend_requests": "new_friend_requests"
},
"isDictionary": true
},
"requestContentTypeMultipartFormData": false,
"code": "getUserNotifications",
"arguments": {
"types.constants.new_photo_wall_posts": "new_photo_wall_posts",
"types.constants.new_tagged_photos": "new_tagged_photos",
"types.constants.new_friend_requests": "new_friend_requests",
"types": {
"optional": false,
"code": "types"
},
"types.constants.unread_friend_messages": "unread_friend_messages",
"types.constants.new_profile_wall_posts": "new_profile_wall_posts"
},
"sessionRequired": true
},
"getUploadStatus": {
"results": {
"keys": {
"uploads": "uploads"
},
"isDictionary": true
},
"requestContentTypeMultipartFormData": false,
"code": "getUploadStatus",
"arguments": {
"upload_ids": {
"optional": false,
"code": "ids"
}
},
"sessionRequired": true
},
"getUsersData": {
"results": {
"keys": {
"users": "users"
},
"constants.male": 1,
"isDictionary": true,
"constants.female": 0
},
"requestContentTypeMultipartFormData": false,
"code": "getUsersData",
"arguments": {
"ids": {
"optional": false,
"code": "ids"
},
"fields.constants.name": "name",
"fields.constants.phoneNumber": "phone_number",
"fields.constants.id": "id",
"fields.constants.chatServer": "chat_server",
"fields.constants.avatar": "avatar",
"fields": {
"optional": false,
"code": "fields"
},
"fields.constants.status": "status",
"fields.constants.surname": "surname",
"fields.constants.sex": "sex"
},
"sessionRequired": true
},
"getPhotoTags": {
"results": {
"keys": {
},
"isDictionary": false
},
"requestContentTypeMultipartFormData": false,
"code": "getPhotoTags",
"arguments": {
"photo_id": {
"optional": false,
"code": "photo_id"
}
},
"sessionRequired": true
}
}
Asumo, que se entenderá lo que es esto…sino pues…bueno comentario y hecho una mano.
Categorías:IT Security
WebCT Privilege escalation vulnerability
abril 8, 2008
Deja un comentario
Abstract
The vulnerability relays on the «autosignon script» default behavior and is triggered by the capability of a mal-intended user to capture an HTTP requests to the script, allowing him, without knowing the system shared secret, to properly manipulate the request fields and obtain an authenticated cookie gaining access to the target account, performing a vertical or horizontal privilege escalation.
Content Table
- Abstract
- Theorical Scenario
- Issue Description
- Vulnerability taxonomy
- Exposure Analysis
- ASR Capture
- ASR Manipulation
- Cookie Authentication
- Diagram References
- Technical References and other bibliographies
- Copyrights
Please Note:
The report will soon be free and fully available to public review in a PDF format, however if a proper request is made I will email it under a non-disclosure agreement, still I guess that it’s easier to just wait the public release.
Don’t forget to keep checking as it may be released at any time.
Categorías:IT Security
campus virtual, campusvirtual, compostela, escalation, exploit, exposure, flaw, IT, Privilege, report, santiago, santiago de compostela, security, Universidad, USC, vulnerability, WebCT
El Siglo XVIII: Innovación y modernidad
septiembre 12, 2007
1 Comentario
Introducción
En el siglo de la ilustración se produjo el nacimiento del moderno espíritu científico.
En el inicio del siglo la guerra de sucesiones o la revolución francesa son marcos históricos que ocupan la escena política de la ilustración.
En el contexto socioeconómico se producen también fuertes cambios como el auge de la agricultura que permitiría el incremento de la población o bien la modernización del comercio por el sector burgués con la creación de Sociedades Económicas de Amigos del País.
Culturalmente el analfabetismo de la población y la distancia de las universidades con la ciencia actual fue combatida por los llamados novatores[1] con la proclamación de la razón como fundamento de la ciencia, la experiencia como método y la utilidad como finalidad.
Como factores fundamentales del siglo XVIII son también la aparición de la prensa literaria y científica y del periodismo crítico. Leer más…
Categorías:Literatura Castellana
