(IN)SECURE Magazine Issue #42 Released
June 30th, 2014 📆 | 3483 Views ⚑
(IN)SECURE Magazine is a freely available digital security magazine discussing some of the hottest information security topics. Table of contents:
Monthly Archives: June 2014
Tagged with: issue • magazine • released • secure
Remote Code Execution Vulnerabilty in Disqus Leaves Millions of Blogs Vulnerable
June 30th, 2014 📆 | 7569 Views ⚑
The security team at the security firm Sucuri discovered a critical Remote Code Execution (RCE) flaw while analyzing some custom
Tagged with: disqus • execution • leaves • millions • remote • vulnerabilty
al masyhur distro – toko busana muslim – mesin kasir chanel
June 29th, 2014 📆 | 2012 Views ⚑
Mesin kasir,security butik dan fashion toko baju al masyhur distro support by http://www.hockeycorp.co.id menyediakan mesin kasir lengkap untuk usaha anda,security
Tagged with: busana • chanel • distro • kasir • masyhur • mesin • muslim
Dradis v2.9 – Information Sharing For Security Assessments
June 28th, 2014 📆 | 3852 Views ⚑
Dradis is an open source framework to enable effective information sharing, specially during security assessments. It’s a tool specifically to
Tagged with: assessments • dradis • information • security • sharing
The Mole – Automatic SQL Injection Exploitation Tool
June 28th, 2014 📆 | 3932 Views ⚑
The Mole is an automatic SQL Injection exploitation tool. Only by providing a vulnerable URL and a valid string on
Tagged with: automatic • exploitation • injection
Zero-Day TimThumb WebShot Vulnerability leaves Thousands of WordPress Blogs at Risk
June 26th, 2014 📆 | 7813 Views ⚑
The critical vulnerability discovered by Pichaya Morimoto in the TimThumb WordPress plugin version 2.8.13, resides in its “Webshot” feature that,
Tagged with: leaves • thousands • timthumb • vulnerability • webshot • wordpress
Researchers Find and Decode the Spy Tools Governments Use to Hijack SmartPhones
June 25th, 2014 📆 | 7615 Views ⚑
Researchers from the Citizen Lab at the Munk School of Global Affairs at the University of Toronto and computer security
Tagged with: decode • governments • hijack • researchers • smartphones • tools
Book on Tape Worm – Defcon 5
June 25th, 2014 📆 | 1707 Views ⚑
Song by Book on Tape Worm, from their album “All the World’s A Stage” Website: http://bookontapeworm.com/ Like Book on Tape
Tagged with: defcon
Codesake::Dawn – Static Code Analysis Security Scanner For Ruby
June 24th, 2014 📆 | 4760 Views ⚑
Codesake::Dawn is a source code scanner designed to review your code for security issues. Basically a static analysis security scanner
Tagged with: analysis • codesake • scanner • security • static
Google takes OpenSSL and turns it into BoringSSL, Another Flavor of OpenSSL
June 24th, 2014 📆 | 2497 Views ⚑
The biggest Internet giant Google is launching a new fork of OpenSSL, which they dubbed as BoringSSL, developed by its
Tagged with: another • boringssl • google • openssl • takes • turns
Hexorbase – Multiple Database Management and Audit Tool
June 23rd, 2014 📆 | 4028 Views ⚑
HexorBase is a database application designed for administering and auditing multiple database servers simultaneously from a centralized location, it is
Tagged with: audit • database • hexorbase • management • multiple
Exploit Writing Part1 – Verify the bug
June 23rd, 2014 📆 | 5170 Views ⚑
Exploit writing tutorial: Part 1 ======================= Vulnerable Program: Easy RM to MP3 Converter 2.7.3.700 (.m3u) http://www.exploit-db.com/exploits/9177/ http://www.exploit-db.com/wp-content/themes/exploit/applications/707414955696c57b71c7f160c720bed5-EasyRMtoMP3Converter.exe Verify the bug:
Tagged with: exploit • part1 • verify • writing
Gmail and Google Plus – double XSS
June 22nd, 2014 📆 | 5274 Views ⚑
Read more: http://blog.bentkowski.info/2014/06/gmail-and-google-tale-of-two-xss-es.html 2014-06-22 21:01:28 source
Tagged with: double • gmail • google
HackPorts – Mac OS X Penetration Testing Framework and Tools
June 22nd, 2014 📆 | 6195 Views ⚑
HackPorts was developed as a penetration testing framework with accompanying tools and exploits that run natively on Mac platforms. HackPorts
Tagged with: framework • hackports • penetration • testing • tools
Source Code Hosting Service Code Spaces Deleted By Hacker
June 21st, 2014 📆 | 7699 Views ⚑
Code Spaces, a code-hosting and software collaboration platform used by different organizations for project management and development needs, was forced
Tagged with: deleted • hacker • hosting • service • source • spaces
PlayDrone Tool found Thousands of secret keys in Play Store Android apps
June 21st, 2014 📆 | 5874 Views ⚑
A team of researchers from the computer science department of the Columbia University have discovered a critical security problem in
Tagged with: android • found • playdrone • secret • store • thousands
VirusTotal Intelligence – Malware Hunting with YARA
June 20th, 2014 📆 | 5793 Views ⚑
Demo video showcasing YARA malware hunting features in VirusTotal Intelligence. For more information see: https://www.virustotal.com/intelligence/help/malware-hunting/ (Account Registration Required) https://www.virustotal.com/#/hunting-overview 2014-06-20
Tagged with: hunting • intelligence • malware • virustotal
ArchAssault – Arch Linux ISO for Penetration Testers
June 19th, 2014 📆 | 5232 Views ⚑
The ArchAssault Project is an Arch Linux derivative for penetration testers, security professionals and all-around Linux enthusiasts. This means we
Tagged with: archassault • linux • penetration • testers
Hooker – Automated Dynamic Analysis of Android Applications
June 19th, 2014 📆 | 7451 Views ⚑
Hooker is an opensource project for dynamic analysis of Android applications. This project provides various tools and applications that can
Tagged with: analysis • android • applications • automated • dynamic • hooker
Millions of LinkedIn Users at Risk of Man-in-the-Middle Attack
June 19th, 2014 📆 | 6019 Views ⚑
The popular professional network, LinkedIn has left hundreds of millions of its users exposed to Man-in-the-Middle (MitM) attack due to
Tagged with: attack • linkedin • middle • millions • users
XML Schema, DTD, and Entity Attacks A Compendium of Known Techniques
June 18th, 2014 📆 | 6126 Views ⚑
core feature of XML is the ability to define and validate document structure using schemas and document type lead to
Tagged with: attacks • compendium • entity • known • schema • techniques
SHODAN – Expose Online Devices Wind Turbines, Power Plants & More!
June 17th, 2014 📆 | 6533 Views ⚑
SHODAN is a search engine that lets you find specific computers (routers, servers, etc.) using a variety of filters. Some
Tagged with: devices • expose • online • power • shodan • turbines
Cyber security careers – A day in the life of Andrea Simmons, CISO, HP Enterprise Services
June 16th, 2014 📆 | 4750 Views ⚑
Andrea Simmons, Chief Information Security Officer, HP Enterprise Services talks about her role, how she got into the industry and
Tagged with: andrea • careers • cyber • enterprise • security • services • simmons
Feedly Knocked Offline by DDoS Attack after refusing extortion demands
June 12th, 2014 📆 | 8571 Views ⚑
Feedly is a very popular RSS feed service which is available for desktop, iOS and Android devices with around 15
Tagged with: after • attack • feedly • knocked • offline • refusing
12
-
-
Popular
Fortnite Search O-N-F-I-R-E (ONFIRE) Letters… May 24, 2019 Here are all of the locations of the letters in…
Pharma-testing biz Eurofins Scientific says it fell… June 3, 2019 Bio-analytical testing biz Eurofins Scientific today admitted it was the…
Oh Canada: Why half of phishing attacks target the… May 25, 2019 Though phishing volume remained relatively stable, attacks against Canadian users…
0day.today Agreement – 0day.today Exploit… May 24, 2019 0day Today is the ultimate database of exploits and vulnerabilities…
PoC Exploits Released for Two More Windows Vulnerabilities May 23, 2019 Right on the heels of a privilege escalation zero-day vulnerability…
Is your company prepared for a cyber-attack? June 3, 2019 Recently, Facebook encountered the largest data breach in its history.…Huawei is a ‘national security threat’… May 26, 2019 As American technology firms heed Trump’s executive order effectively banning U.S. equipment…
Comments