|
|
|
posted in Reading material, Stuff on Nov 8th, 2009
This is the document with the proof of concept which explains the attack on the SSL/TLS reconnect vulnerability. It allows to inject data into the encrypted data stream, often without detection by either end of the connection.
I normally don’t publish exploit codes because of it’s short time value. But this one is rather special. It [...]
posted in External tools on Jul 5th, 2009
Tool name :
Nikto
Description :
Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. Scan items and plugins are frequently updated and can be automatically updated (if desired).
Homepage [...]
posted in External tools on May 17th, 2009
Tool name :
Nessus
Description :
Nessus was a popular free and open source vulnerability scanner until they closed the source code in 2005 and removed the free “registered feed” version in 2008. A limited “Home Feed” is still available, though it is only licensed for home network use. Some people avoid paying by violating the “Home Feed” [...]
© 2010 all rights reserved.
