Pipes Output

CODENAME: Samurai Skills – Real World Penetration Testing Training

Mon, 14 May 2012 08:30:25 +0000

Introduction Yes, there’s another new kid on the block when it comes to penetration testing training, this course is known as CODENAME: Samurai Skills by Ninja-Sec. I’m not going to go and compare this to any other course out there as I think there’s a place for all of them, and they all have pros [...]

Read the full post at darknet.org.uk

t2'12: Call for Papers 2012 (Helsinki / Finland)

Sun, 13 May 2012 00:05:55 +0000

A survey on web application attacks

Sat, 12 May 2012 00:34:18 +0000

Webcast: Penetration Testing - Not Just For Networks Anymore

Fri, 11 May 2012 00:08:42 +0000

TA12-129A: Microsoft Updates for Multiple Vulnerabilities

Tue, 08 May 2012 21:01:03 +0000

Basic Fuzzing Framework (BFF) From CERT – Linux & Mac OSX Fuzzer Tool

Tue, 08 May 2012 10:36:23 +0000

The CERT Basic Fuzzing Framework (BFF) is a software testing tool that finds defects in applications that run on the Linux and Mac OS X platforms. BFF performs mutational fuzzing on software that consumes file input. (Mutational fuzzing is the act of taking well-formed input data and corrupting it in various ways, looking for cases [...]

Read the full post at darknet.org.uk

Announce: Italian Hacker Game Cracca al Tesoro - Crack A Treasure

Fri, 04 May 2012 17:01:15 +0000

VU#520827: PHP-CGI query string parameter vulnerability

US-CERT — Thu, 03 May 2012 18:18:40 +0000

nullcon Delhi 2012 Call for Paper/Call for Event

Wed, 02 May 2012 04:22:39 +0000

VU#359816: Oracle database TNS listener vulnerability

US-CERT — Tue, 01 May 2012 18:43:31 +0000

xSQL Scanner 1.6 - Released

Tue, 01 May 2012 16:48:52 +0000

With a real team, it's not about the numbers

Tue, 01 May 2012 14:15:35 +0000

Russian Cyber-Crime Market Doubled In 2011

Mon, 30 Apr 2012 12:18:24 +0000

It’s been quite a while since we’ve posted any news about Russia, so here’s an article which in some ways is quite scary. The global cybercrime market is being dominated by Russian-speaking nations and their activity doubled in 2011. It’s certainly a disproportionate amount of crime when you look at their population size....

Read the full post at darknet.org.uk

[Tool update] VoIP Hopper 2.04 released

Sun, 29 Apr 2012 17:40:21 +0000

ERPScan has released ERPScan Security Scanner for Sap 2.0

Sat, 28 Apr 2012 07:10:22 +0000

72 hours

Thu, 26 Apr 2012 21:24:46 +0000

Spooked at RSA 2012

Thu, 26 Apr 2012 14:22:23 +0000

Abusing Password Managers with XSS

Thu, 26 Apr 2012 01:51:05 +0000

What's happening at SyScan'12 Singapore

Wed, 25 Apr 2012 14:46:39 +0000

Anti-fingerprinting techniques

Wed, 25 Apr 2012 14:34:55 +0000

creepy – A Geolocation Information Aggregator AKA OSINT Tool

Wed, 25 Apr 2012 08:14:23 +0000

creepy is an application that allows you to gather geolocation related information about users from social networking platforms and image hosting services. The information is presented in a map inside the application where all the retrieved data is shown accompanied with relevant information (i.e. what was posted from that specific location) to...

Read the full post at darknet.org.uk

[HITB-Announce] HITB Magazine Issue 008 (now with print edition!)

Tue, 24 Apr 2012 02:40:07 +0000

[New tool] - Exploit Pack - Web Security

Mon, 23 Apr 2012 22:17:21 +0000

Save yourself 20% by tweeting

Mon, 23 Apr 2012 19:48:25 +0000

Anonymous Take Down Official F1 Site As Bahrain Protest

Mon, 23 Apr 2012 11:34:10 +0000

It seems like the latest target for Anonymous is the F1 due to the race that took place in Bahrain and the human rights issues in the country. They DDoSed the official F1 site (formula1.com), which was up and down on Saturday and defaced another related site (f1-racers.net) which also contains some details from ticket [...]

Read the full post at darknet.org.uk

Clowns Base Key Financial Rate on Feelings, Not Data

Richard Bejtlich — Sat, 21 Apr 2012 14:44:00 +0000

TIME IS RUNNING OUT

Fri, 20 Apr 2012 14:29:42 +0000

Ruxcon 2012 Call For Papers

Thu, 19 Apr 2012 10:50:52 +0000

RIT!

Wed, 18 Apr 2012 16:34:49 +0000

CISPA == MAPP

Wed, 18 Apr 2012 16:28:57 +0000

Passwords^12 : Call for Presentations

Wed, 18 Apr 2012 11:10:02 +0000

winAUTOPWN v3.0 Released

Wed, 18 Apr 2012 11:07:24 +0000

SEC Consult whitepaper :: The Source Is A Lie

Wed, 18 Apr 2012 11:03:32 +0000

NfSpy – ID-spoofing NFS Client Tool – Mount NFS Shares Without Account

Wed, 18 Apr 2012 10:44:38 +0000

We wrote about this tool originally last year – NfSpy – ID-spoofing NFS Client – Falsify NFS Credentials – and a new version just came out! NfSpy has just been updated to support NFSv3, a more efficient and widespread protocol than the previous NFSv2. NfSpy is a FUSE filesystem written in Python that automatically changes [...]

Read the full post at darknet.org.uk

Android Trojan Targets Japanese Market – Steals Personal Data

Mon, 16 Apr 2012 10:38:22 +0000

Early last year we wrote about China Facing Problems With Android Handsets & Pre-installed Trojans, then later last year there was a possibility Cybercrooks May Be Able To Force Mobile Phones To Send Premium-Rate SMS Messages. The latest news about Android malware is malicious apps that are in the official Google marketplace (called Play)...

Read the full post at darknet.org.uk

web-sorrow – Remote Web Security Scanner (Enumeration/Version Detection etc)

Thu, 12 Apr 2012 18:32:58 +0000

web-sorrow is a PERL based tool used for checking a Web server for misconfiguration, version detection, enumeration, and server information. It is NOT a vulnerability scanner, inspection proxy, DDoS tool or an exploitation framework. Current Functionality -S – stands for standard. a set of Standard tests and includes: indexing of directories...

Read the full post at darknet.org.uk

TA12-101B: Adobe Reader and Acrobat Security Updates and Architectural Improvements

Tue, 10 Apr 2012 22:02:05 +0000

TA12-101A: Microsoft Updates for Multiple Vulnerabilities

Tue, 10 Apr 2012 18:37:12 +0000

VU#400619: Pluck SiteLife software multiple XSS vulnerabilities

US-CERT — Tue, 10 Apr 2012 15:21:12 +0000

OWASP ZAP 1.4.0 released

Mon, 09 Apr 2012 01:25:37 +0000

Salvaging Poorly Worded Statistics

Richard Bejtlich — Wed, 04 Apr 2012 20:43:00 +0000

VU#232979: Multiple vulnerabilities in Intuit QuickBooks

US-CERT — Mon, 02 Apr 2012 18:26:39 +0000

VU#928795: Netgear FVS318N router default remote management vulnerability

US-CERT — Mon, 02 Apr 2012 15:42:13 +0000

VU#834723: TP-Link 8840T DSL router default remote management vulnerability

US-CERT — Mon, 02 Apr 2012 14:12:13 +0000

Rootcon Blog: Introducing 35 Pentesting Tools Used for Web Sec Assessments

Mon, 02 Apr 2012 12:53:12 +0000

Original post at:
http://blog.rootcon.org/2012/03/introducing-35-pentesting-tools-used.html?m=1

1. w3af

w3af or Web Application Attack and Audit Framework is an open source penetration testing tool for finding web vulnerabilities and an exploit tool that comes with cool plugins like sqlmap, xssBeef, and davShell. w3af automatically updates itself every time you launch the tool making it a very reliable tool for website hacking. For more information just check out their website hosted at SourceForge.

2. Acunetix Web Vulnerability Scanner

Acunetix WVS or Web Vulnerability Scanner is a pentesting tool for Windows users so that they may be able to check for SQL Injection, Cross Site Scripting (XSS), CRLF injection, Code execution, Directory Traversal, File inclusion, checks for vulnerabilities in File Upload forms and other serious web vulnerabilities. You can download this tool here.

3. SQLninja

SQLninja is a an sql injection tool for web applications that use Microsoft SQL Server as its back-end though it runs only in Linux, Mac and BSD. It requires perl modules; NetPacket, Net-Pcap, Net-DNS, Net-RawIP, and IO-Socket-SSL. You can download this tool here.

4. Nikto

Nikto is an open source web server scanner “which performs comprehensive tests against web servers for multiple items, including over 6400 potentially dangerous files or CGIs, checks for outdated versions of over 1200 servers, and version specific problems on over 270 servers." The good thing about Nikto is that it easy to use and and performs scanning faster. Nikto is coded in Perl and written by Chris Sullo and David Lodge. Although not all checks are really a big security problem but most are like XSS (Cross Site Scripting) Vulnerabilities, phpmyadmin logins, etc. Nikto alerts and gives you security tips in order to prevent your website from various attacks.

5. SQLmap

SQLmap is an open source automatic SQL injection and database takeover tool that fully supports MySQL, Oracle, PostgreSQL and Microsoft SQL Server. It partially supports Microsoft Access, DB2, Informix, Sybase and Interbase. Download sqlmap here.

6. Pangolin 3.2.3

Pangolin is another sql injection scanner for web applications using Access,DB2,Informix,Microsoft SQL Server 2000,Microsoft SQL Server 2005,Microsoft SQL Server 2008, MySQL, Oracle, PostgreSQL, Sqlite3, and Sybase. Its features include keyword auto analysis, supports HTTPS, has bypass firewall setting, injection digger, data dumper, etc. You can download its zip file here.

7. Havij v1.15 Advanced SQL Injection

Havij is another famous automatic sql injection tool that has a free and premium version. The free version only supports a few injection methods like MsSQL 2000/2005 with error, MsSQL 2000/2005 no error union based, MySQL union based, MySQL Blind, MySQL error based, MySQL time based, Oracle union based, MsAccess union based, and Sybase (ASE). It also includes an admin finder and an md5 cracker.

8. SQL Power Injector

SQL Power Injector is a web pentesting application created in .Net 1.1 that helps the penetration tester and hackers find and exploit SQL injections on a web application that uses SQL Server, Oracle, MySQL, Sybase/Adaptive Server and DB2 compliant, but it is possible to use it with any existing Database Management System when using the inline injection or normal mode. You can download the latest version of this tool which includes a Firefox plugin here.

9. VulnDetector

VulnDetector is a project coded in python which scans a website and detects various web based security vulnerabilities in the website. It was developed by Brad Cable who is into coding open source tools. You can download the script here.

10. SQLIer 0.8.2b

SQLIer is another project of Brad Cable and is a shell script that determines all the necessary information to build and exploit an SQL Injection vulnerability to a URL by itself without user interaction unless it can't guess the table or field names for the database correctly. SQLIer can build a UNION SELECT query designed to brute force passwords out of the database. This script also does not use quotes in the exploit to operate, meaning it will work for a wider range of sites. Download the shell script here.

11. bsqlbf-v2

bsqlbf-v2 or Blind Sql Injection Brute Forcer version 2 is a perl script that allows extraction of data from Blind SQL Injections. It accepts custom SQL queries as a command line parameter and it works for both integer and string based injections. It supports MySQL, Oracle, PostgreSQL and Microsoft SQL Server databases. You can download the perl script on a Google hosted project.

12. Marathon Tool

Marathon Tool is an alpha release SQL Injection tool or project that extracts information from web applications using Microsoft SQL Server, Microsoft Access, MySQL or Oracle Databases by using Time-Based Blind SQL Injection attack. The alpa release can be found here.

13. XSSer

XSSer or Cross Site "Scripter" is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications. It also includes a GUI interface by using the command : ./xxser --gtk. You can download xxser's beta version here.

14. ASP Auditor v2.2

ASP Auditor v2.2 is a an auditing tool for ASP that sends initial probe request, path discovery request, ASP.NET validate discovery request, ASP.NET Apr/07 XSS Check, application trace request, and null remoter service request. By using the opt command -bf, it allows you to brute force ASP.NET version using JS Validate directories.

15.Absinthe

"Absinthe is a GUI-based tool that automates the process of downloading the schema and contents of a database that is vulnerable to Blind SQL Injection. This tool does not aid in the discovery of SQL Injection holes but speeds up the process of data recovery." It supports Microsoft SQL Server, MSDE, Oracle, and Postgres and the tool runs on Linux, Windows and Mac OSX. Download here.

16. SQID

SQID or SQL injection digger is a command line tool written in ruby by Metaeye Security Group that looks for SQL injections and common errors in web sites. It performs a Google search when finding for SQL injections and common errors in web site URLs and crawls a webpage. You can download this tool by checking out its project SVN:

svn checkout svn://rubyforge.org/var/svn/sqid

17.DarkMySQLi

DarkMySQLi is a multi purpose MySQL Injection tool coded in python which is also available for BackTrack 5 as one of its packed tools.

18. fimap

fimap is an automatic LFI/RFI scanner and exploiter coded in python by Iman Karim. It allows a pentester to scan a single URL for File inclusion errors, scan a list of URLS for File Inclusion errors, scan Google search results for FiIe inclusion errors, and harvest all links of a webpage with recurse level of 3 and write the URLs to a file directory.

19.Script Hex Dump – Forensic Tool

Script Hex Dump - Forensic Tool is a java application that helps you in parsing your scripts like PHP and automatically converts it as a hex value, some penetration testers use this to test for possible sql injection vulnerability in a website. SQL Injection attack has been a chronic threat especially for those websites running PHP and MySQL as the backend of their database server, one of its capability if the server is not properly configure is the command for writing arbitrary files. You can download this tool here.

20. PHP Vulnerability Hunter

PHP Vulnerability Hunter is a PHP web application fuzzer that scans for common vulnerabilities like local file inclusion, SQL Injection, full path disclosure, arbitrary command execution and many more. A good tool for analyzing your own web server. You can grab the new version of this toolhere which is 1.1.4.6.

21. WSTOOL : Web vulnerable scan tool

WATOOL is a server error and SQL Injection, XSS or Cross Site Scripting scanner which uses PHP Check up collate with HTML FORM and LINK. You can download this tool here.

22. ProjectX WHMCS Pentesting Tool v.1

Projectx WHMCS Pentesting Tool v.1 is a vulnerability scanner coded in VB.NET that uses a black box approach. It echos the db_username and the db_password of a website that is vulnerable to WHMCS Local File Disclosure. This kind of vulnerability is only applicable to versions 3.x.x and some 4.x.x which was a viral exploit last year that some website administrators took for granted. You can download the tool here.

23. Wpscan

WPscan or Wordpress Security Scanner is a pentesting tool written in ruby for Wordpress installations. The tools is coed by Ryan Dewhurst which uses a black box approach in finding security holes for Wordpress like timthumb, easy to guess passwords, plugin holes, etc. You can download wpscan here.

24. Skipfish

Skipfish is an active web application security reconnaissance tool written by Michal Zalewski. Skipfish spiders a URL using the wordlists, a very powerful web scanning tool with a simple implementation. It also scans for vulnerabilities like php injection, XSS, format string vulnerabilities, overflow vulnerabilities, file inclusions , etc. You can download this tool here.

25. WhatWeb

WhatWeb is a web scanner coded by Andrew Horton aka urbanadventurer from Security-Assessment.com. It is used for information gathering because it identifies content management systems (CMS), blogging platforms, stats/analytics packages, javascript libraries, servers, etc. You can download this tool here.

26. OWASP ZAP

Zed Attack Proxy (ZAP) is a project of OWASP which is a GUI penetration testing tool for finding website vulnerabilities and flaws. This open source tool includes features like intercepting proxy, active scanner, passive scanner, brute force scanner, spider, fuzzer, port scanner, dynamic SSL certificates, API, and Beanshell integration. For more information about this tool, check out their website.

27. Webshag

Webshag is a multi-threaded, multi-platform web server auditing tool coded in python. It is used for crawling a URL, port scanning, file fuzzing and audits your website. You can download this security auditing tool here.

28. OWASP DirBuster

DirBuster is another project of OWASP that a multi threaded java application designed to brute force directories and files names on web/application servers that uses a black box approach for application testing by trying to find hidden content. You can download this tool here.

29. Grendel-Scan

Grendel-Scan is free and open source web application pentesting tool that has an automatic scanning feature which detects common web application vulnerabilities, and features geared at aiding manual penetration tests. Get this tool now.

30. Mopest

Mopest is a PERL Local PHP Vulnerability Scanner for exploits PhpBB 2.0.20 Disable Administrator, PhpBB 2.0.19 Denial of Service - Infinitely topic, phpBB 2.0.15 Database Authentication Details, Invision Power Board 2.0.2 Multipl Users DoS, Invision Power Board 2.1.5 Code Execution, MyBB 1.0 RC4 Sql injection, MyBB 1.1.3 Create An Admin, MyBB Sql Injection, and WordPress 1.5.11 Sql Injection. It also has tools like Fake Mailer, Email Bomber, and MD5 Cracker. You can check out this project here.

31. SecuBat

SecuBat is another web vulnerability scanner which automatically analyzes web sites with the aim of finding exploitable SQL injection and XSS vulnerabilities. You can check this tool here.

32. Arachni

Arachni is an open source web application security scanner framework coded in ruby that helps website administrators and penetration testers evaluate the security of a web application. Arachni asks you for the URL of the target and it automatically performs a simple scan and presents you with its findings which could be a very risky flaw or loophole. You can download this tool here.

33. WebSlayer

WebSlayer is another OWASP project that slays your web application by brute forcing the GET and POST parameters, checking the directories, brute forcing the login forms, fuzzing, brute forcing sessions, Ntml brute forcing, and many more. For more information of this project just check this site.

34. Burp Suite

Burp Suite is penetration testing tool and integrated platform for website security. Burp Suite has cool features like an intercepting proxy, application spider for crawling, detects numerous web application vulnerabilities, repeater tool, allows you to write your own plugins, and many more. The free edition is available for download here.

35. ProxMon

ProxMon is not a Digimon but a Python based open source framework that automates web application tests. Its key features include:

- automatic value tracing of set cookies, sent cookies, query strings and post parameters across sites,
- proxy agnostic
- included library of vulnerability checks
- active testing mode
- cross platform
- easy to program extensible python framework

You can download this tool here.

Original post at:
http://blog.rootcon.org/2012/03/introducing-35-pentesting-tools-used.html?m=1

Time based Blind SQL injection

Fri, 30 Mar 2012 22:29:05 +0000

Inside a Commission Hearing on the Chinese Threat

Richard Bejtlich — Mon, 26 Mar 2012 20:09:00 +0000

Job opportunities in Kuwait and Dubai

Sun, 25 Mar 2012 01:37:08 +0000

VU#551715: Quagga contains multiple vulnerabilities

US-CERT — Fri, 23 Mar 2012 12:10:13 +0000

Zend Server Multiple HTML Injection Vulnerabilities

Fri, 23 Mar 2012 07:08:47 +0000

EJBCA "issuer" Parameter Cross-Site Scripting

Fri, 23 Mar 2012 07:08:32 +0000

Vegas Movie Studio HD "CFHDDecoder.dll" DLL Loading Arbitrary Code Execution

Fri, 23 Mar 2012 07:08:00 +0000

Microsoft Expression "wintab32.dll" DLL Loading Arbitrary Code Execution

Fri, 23 Mar 2012 07:07:38 +0000

Jenkins Multiple Cross-Site Scripting and Directory Traversal Vulnerabilities

Thu, 22 Mar 2012 13:19:48 +0000

SquirrelMail Autocomplete Plugin Email Addresses Cross-Site Scripting

Thu, 22 Mar 2012 13:19:35 +0000

Google Chrome Remote Code Execution

Thu, 22 Mar 2012 13:19:23 +0000

XnView Multiple Buffer Overflow Vulnerabilities

Thu, 22 Mar 2012 13:19:10 +0000

VU#743555: @Mail Open webmail client contains multiple vulnerabilities

US-CERT — Thu, 22 Mar 2012 12:40:14 +0000

VU#523027: LG-Nortel ELO GS24M Switch contains multiple vulnerabilities

US-CERT — Wed, 21 Mar 2012 12:40:14 +0000

winAUTOPWN v2.9 - As [ C4 - WAST ]

Wed, 21 Mar 2012 11:16:36 +0000

VU#364363: WebGlimpse command injection vulnerability

US-CERT — Tue, 20 Mar 2012 20:35:13 +0000

VU#212651: InspIRCd heap corruption vulnerability

US-CERT — Mon, 19 Mar 2012 20:33:49 +0000

VU#913483: Quantum Scalar i500, Dell ML6000 and IBM TS3310 tape libraries web interface and preconfigured password vulnerabilities

US-CERT — Mon, 19 Mar 2012 19:00:12 +0000

FBController - (Facebook Control Utility) version 4.0 { With 0-DAY Features }

Thu, 15 Mar 2012 21:00:26 +0000

VU#624051: Microsoft Remote Desktop Protocol (RDP) insecurely deallocates memory

US-CERT — Thu, 15 Mar 2012 19:05:13 +0000

VU#339177: Cisco AnyConnect Clientless SSL VPN Portforwarder ActiveX control buffer overflow

US-CERT — Wed, 14 Mar 2012 18:17:27 +0000

Impressions: Fuzzing

Richard Bejtlich — Wed, 14 Mar 2012 06:00:00 +0000

TA12-073A: Microsoft Updates for Multiple Vulnerabilities

Tue, 13 Mar 2012 18:34:31 +0000

Impressions: Hunting Security Bugs

Richard Bejtlich — Tue, 13 Mar 2012 06:00:00 +0000

Impressions: The Web Application Hacker's Handbook, 2nd Ed

Richard Bejtlich — Mon, 12 Mar 2012 06:00:00 +0000

Impressions: Web Application Security: A Beginner's Guide

Richard Bejtlich — Sun, 11 Mar 2012 14:33:00 +0000

VU#504019: AjaXplorer contains multiple vulnerabilities

US-CERT — Thu, 08 Mar 2012 12:40:14 +0000

Review of SSH Mastery Posted

Richard Bejtlich — Tue, 06 Mar 2012 06:00:00 +0000

Keep CIRT and Internal Investigations Separate

Richard Bejtlich — Sun, 04 Mar 2012 12:00:00 +0000

TaoSecurity Blog Wins Most Educational Security Blog

Richard Bejtlich — Sat, 03 Mar 2012 15:31:00 +0000

VU#523889: libpng chunk decompression integer overflow vulnerability

US-CERT — Thu, 23 Feb 2012 21:48:14 +0000

Secure Ninja Appoints Leonard Chin as VP to Lead International Expansion

Thu, 23 Feb 2012 01:56:44 +0000

VU#273502: EasyVista single sign-on authentication bypass vulnerability

US-CERT — Tue, 21 Feb 2012 21:05:13 +0000

VU#707254: UTC Fire & Security Master Clock contains hardcoded default administrator login credentials

US-CERT — Mon, 20 Feb 2012 21:39:31 +0000

VU#885499: HP StorageWorks P2000 G3 directory traversal vulnerability

US-CERT — Mon, 20 Feb 2012 12:17:14 +0000

TA12-045A: Microsoft Updates for Multiple Vulnerabilities

Tue, 14 Feb 2012 18:37:26 +0000

I Want to Detect and Respond to Intruders But I Don't Know Where to Start!

Richard Bejtlich — Mon, 13 Feb 2012 13:59:00 +0000

Pen Tests Evolved: The Advanced Threat Cycle

Thu, 09 Feb 2012 15:40:05 +0000

VU#542123: ISC BIND 9 resolver cache vulnerability

US-CERT — Wed, 08 Feb 2012 19:11:14 +0000

Impressions: Network Warrior, 2nd Ed

Richard Bejtlich — Sat, 04 Feb 2012 15:18:00 +0000

Impressions: Windows Sysinternals Administrator's Reference

Richard Bejtlich — Sat, 04 Feb 2012 15:01:00 +0000

Impressions: The Tangled Web

Richard Bejtlich — Sat, 04 Feb 2012 14:23:00 +0000

VU#732115: Project Open cross-site scripting vulnerability

US-CERT — Fri, 03 Feb 2012 19:48:32 +0000

Security Kaizen Magazine Issue 4 is released

Fri, 03 Feb 2012 18:58:28 +0000

VU#410281: Apple Mac OS X CoreText embedded font vulnerability

US-CERT — Thu, 02 Feb 2012 15:10:14 +0000

VU#403593: Apple Mac OS X ATS data-font memory corruption vulnerability

US-CERT — Thu, 02 Feb 2012 15:10:14 +0000

VU#763355: 802.1X password exploit on many HTC Android devices

US-CERT — Wed, 01 Feb 2012 14:59:32 +0000

VU#470151: Linux Kernel local privilege escalation via SUID /proc/pid/mem write

US-CERT — Fri, 27 Jan 2012 15:22:35 +0000

Modeling Security Pentests - New Issue of WebAppPentesting is Out!

Wed, 25 Jan 2012 16:58:26 +0000

VU#738961: Oracle Outside In contains an exploitable vulnerability in Lotus 123 v4 parser

US-CERT — Thu, 19 Jan 2012 01:00:48 +0000

TA12-010A: Microsoft Updates for Multiple Vulnerabilities

Tue, 10 Jan 2012 19:11:29 +0000

Best Book Bejtlich Read in 2011

Richard Bejtlich — Mon, 09 Jan 2012 21:40:00 +0000

Telling a Security Story with Charts

Richard Bejtlich — Sun, 08 Jan 2012 17:10:00 +0000

Happy 9th Birthday TaoSecurity Blog

Richard Bejtlich — Sun, 08 Jan 2012 16:07:00 +0000

TA11-350A: Adobe Updates for Multiple Vulnerabilities

Fri, 16 Dec 2011 19:19:11 +0000

TA11-347A: Microsoft Updates for Multiple Vulnerabilities

Tue, 13 Dec 2011 20:47:45 +0000

Mandiant Webinar Wednesday; Help Us Break a Record!

Richard Bejtlich — Tue, 06 Dec 2011 22:06:00 +0000

Tripwire Names Bejtlich #1 of "Top 25 Influencers in Security"

Richard Bejtlich — Tue, 06 Dec 2011 21:52:00 +0000

Bugtraq: [ MDVSA-2012:079 ] sudo

Bugtraq: DC4420 - London DEFCON - May meet - Tuesday May 22nd 2012

Bugtraq: [Announcement] CHMag's Issue 28, May 2012 Released

Xen PV Bootloader Bug Lets Local Guest Users Crash the System

PHP Windows com_print_typeinfo() Buffer Overflow Lets Local Users Gain Elevated Privileges

Linux Kernel kiocb_batch_free() Bug Lets Local Users Deny Service

Linux Kernel KVM Memory Slot Management Flaw Lets Local Guest Users Deny Service on the Guest Operating System

SANSFIRE 2011

(1) HIGH: Google Chrome Sandbox Escapes

(2) HIGH: Microsoft Remote Desktop Protocol Vulnerability

(3) HIGH: Mozilla Firefox Use-After-Free Vulnerability

2.8 Mozilla Firefox/Thunderbird/SeaMonkey "shlwapi.dll" Use-After-Free Memory Corruption

12.11.11 IBM DB2 Multiple Security Vulnerabilities

12.11.12 IBM Maximo Asset Management Multiple Security Vulnerabilities

12.11.14 Google Chrome Remote Code Execution

12.11.16 Apple Safari International Domain Name URI Spoofing

12.11.5 Microsoft Expression "wintab32.dll" DLL Loading Arbitrary Code Execution

12.11.6 Microsoft Visual Studio Add-In Local Privilege Escalation

12.11.7 DAEMON Tools "IOCTL" Handling Local Privilege Escalation

12.11.9 XnView Multiple Buffer Overflow Vulnerabilities

12.11.10 Vegas Movie Studio HD "CFHDDecoder.dll" DLL Loading Arbitrary Code Execution

12.11.23 LotusCMS Multiple PHP Code Execution Vulnerabilities

12.11.24 Jenkins Multiple Cross-Site Scripting and Directory Traversal Vulnerabilities