(IN)SECURE Magazine Issue #42 Released
June 30th, 2014 📅
(IN)SECURE Magazine is a freely available digital security magazine discussing some of the hottest information security topics. Table of contents:
Monthly Archives: June 2014
Remote Code Execution Vulnerabilty in Disqus Leaves Millions of Blogs Vulnerable
June 30th, 2014 📅
The security team at the security firm Sucuri discovered a critical Remote Code Execution (RCE) flaw while analyzing some custom
Dradis v2.9 – Information Sharing For Security Assessments
June 28th, 2014 📅
Dradis is an open source framework to enable effective information sharing, specially during security assessments. It’s a tool specifically to
The Mole – Automatic SQL Injection Exploitation Tool
June 28th, 2014 📅
The Mole is an automatic SQL Injection exploitation tool. Only by providing a vulnerable URL and a valid string on
Zero-Day TimThumb WebShot Vulnerability leaves Thousands of WordPress Blogs at Risk
June 26th, 2014 📅
The critical vulnerability discovered by Pichaya Morimoto in the TimThumb WordPress plugin version 2.8.13, resides in its “Webshot” feature that,
Researchers Find and Decode the Spy Tools Governments Use to Hijack SmartPhones
June 25th, 2014 📅
Researchers from the Citizen Lab at the Munk School of Global Affairs at the University of Toronto and computer security
Codesake::Dawn – Static Code Analysis Security Scanner For Ruby
June 24th, 2014 📅
Codesake::Dawn is a source code scanner designed to review your code for security issues. Basically a static analysis security scanner
Google takes OpenSSL and turns it into BoringSSL, Another Flavor of OpenSSL
June 24th, 2014 📅
The biggest Internet giant Google is launching a new fork of OpenSSL, which they dubbed as BoringSSL, developed by its
Hexorbase – Multiple Database Management and Audit Tool
June 23rd, 2014 📅
HexorBase is a database application designed for administering and auditing multiple database servers simultaneously from a centralized location, it is
HackPorts – Mac OS X Penetration Testing Framework and Tools
June 22nd, 2014 📅
HackPorts was developed as a penetration testing framework with accompanying tools and exploits that run natively on Mac platforms. HackPorts
Source Code Hosting Service Code Spaces Deleted By Hacker
June 21st, 2014 📅
Code Spaces, a code-hosting and software collaboration platform used by different organizations for project management and development needs, was forced
PlayDrone Tool found Thousands of secret keys in Play Store Android apps
June 21st, 2014 📅
A team of researchers from the computer science department of the Columbia University have discovered a critical security problem in
ArchAssault – Arch Linux ISO for Penetration Testers
June 19th, 2014 📅
The ArchAssault Project is an Arch Linux derivative for penetration testers, security professionals and all-around Linux enthusiasts. This means we
Hooker – Automated Dynamic Analysis of Android Applications
June 19th, 2014 📅
Hooker is an opensource project for dynamic analysis of Android applications. This project provides various tools and applications that can
Millions of LinkedIn Users at Risk of Man-in-the-Middle Attack
June 19th, 2014 📅
The popular professional network, LinkedIn has left hundreds of millions of its users exposed to Man-in-the-Middle (MitM) attack due to
XML Schema, DTD, and Entity Attacks A Compendium of Known Techniques
June 18th, 2014 📅
core feature of XML is the ability to define and validate document structure using schemas and document type lead to
SHODAN – Expose Online Devices Wind Turbines, Power Plants & More!
June 17th, 2014 📅
SHODAN is a search engine that lets you find specific computers (routers, servers, etc.) using a variety of filters. Some
Feedly Knocked Offline by DDoS Attack after refusing extortion demands
June 12th, 2014 📅
Feedly is a very popular RSS feed service which is available for desktop, iOS and Android devices with around 15
OWASP Mantra – Browser Based Security Framework
June 10th, 2014 📅
OWASP Mantra is a collection of free and open source tools integrated into a web browser, which can become handy
vulnerabilities discovered in Linux kernel that may lead to a DoS or privilege escalation
June 7th, 2014 📅
A privilege escalation vulnerability has been identified in the widely used Linux kernel that could allow an attackers to take
ByWaf – Web Application Penetration Testing Framework
June 6th, 2014 📅
ByWaf is a Web Application Penetration Testing Framework (WAPTF). It consists of a command-line interpreter and a set of plugins.
OpenSSL Vulnerable to Man-in-the-Middle Attack , other Six new bugs
June 5th, 2014 📅
Remember OpenSSL Heartbleed vulnerability? Several weeks ago, the exposure of this security bug chilled the Internet, revealed that millions of
GnuTLS Flaw Leaves SSL Clients Vulnerable to Remote Code Execution
June 4th, 2014 📅
The bug (CVE-2014-3466) was independently discovered by Joonas Kuorilehto of security firm Codenomicon, the same security firm who discovered the
Shellter v1.0 – A Dynamic ShellCode Injector
June 4th, 2014 📅
Shellter is a dynamic shellcode injection tool aka dynamic PE infector. It can be used in order to inject shellcode
12
-
-
Popular
Expert shares PoC exploit code for remote iOS 12… January 26, 2019 Researcher published a PoC exploit code for critical vulnerabilities that could…
Jok3R – Network And Web Pentest Framework January 24, 2019 Jok3r is a Python3 CLI application which is aimed at helping penetration…
Experts found popular beauty apps in the Play Store… February 6, 2019 Researchers at Trend Micro discovered at least 29 malicious photo…
Zero-Day Virus Forces EHR Downtime at 21 Health… February 2, 2019 On Thursday morning, staff at Canada-based HSN at Sudbury discovered…
LeakLooker – Find Open Databases With Shodan January 26, 2019 Find open databases with Shodan Background: https://medium.com/@woj_ciech/leaklooker-find-open-databases-in-a-second-9da4249c8472 Requirements: Python 3…
WiGLE – Wifi Wardriving (Nethugging Client For… January 26, 2019 Open source network observation, positioning, and display client from the…
Fierce – Semi-Lightweight Scanner That Helps… February 1, 2019 Fierce is a semi-lightweight scanner that helps locate non-contiguous IP space and…
Pown Recon – A Powerful Target Reconnaissance… January 31, 2019 Pown Recon is a target reconnaissance framework powered by graph theory. The…
Latest
-
GameGuardian – Android Game Hack/Alteration Tool
February 21st | by
-
New GandCrab Decryptor Unlocks Files of Updated Ransomware
February 21st | by
-
Apple macOS 10.13.5 Local Privilege Escalation
February 21st | by
-
OSINT-SPY – Search using OSINT (Open Source Intelligence)
February 21st | by
-
Phishers’ new trick for bypassing email URL filters
February 21st | by
-
BoNeSi – The DDoS Botnet Simulator
February 20th | by
-
Australia’s major political parties hacked in ‘sophisticated’ attack ahead of election
February 20th | by
-
Maltego CE – An Interactive Data Mining Tool That Renders Directed Graphs For Link Analysis
February 20th | by
-
FaceTime Texture Processing Memory Corruption
February 20th | by
Now Trending Topics
-
How to crack "unprotected" wifi that takes you to a username/password screen
by
shiftguy
-
Assistance using Tor's Hammer
by
kaka79
-
A spammer is using my email address
by
tomalot
-
AOL security breach affects a significant number of users
by
elbala32
-
Finding password hashes in OSx
by
consarock
-
Port Forwarding
by
nairhost
-
Security Certifications
by
bland
-
Help me with the MSF Payload
by
fawkes
-
5 alarming things that can be undeleted from your phone using police software
by
maher
-
How do proxys work and which is best?
by
pinka
-
French hacker arrested after bragging on TV
by
frankstein
-
drive.bat virus removal
by
Padavan
-
looking for a command line to auto start my usb in someone elses PC.
by
aradorn
-
How to crack "unprotected" wifi that takes you to a username/password screen
by
Comments