|
|
posted in News & media on Aug 8th, 2010
Researchers have identified a kernel-level vulnerability in Windows that allows attackers to gain escalated privileges and may also allow them to remotely execute malicious code. All versions of the Microsoft OS are affected, including the heavily fortified Windows 7. The buffer overflow, which was originally reported here, can be exploited to escalate privileges or crash [...]
posted in Reading material, Stuff on Nov 8th, 2009
This is the document with the proof of concept which explains the attack on the SSL/TLS reconnect vulnerability. It allows to inject data into the encrypted data stream, often without detection by either end of the connection. I normally don’t publish exploit codes because of it’s short time value. But this one is rather special. [...]
posted in External tools on Jul 5th, 2009
Tool name : Nikto Description : Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. Scan items and plugins are frequently [...]
posted in External tools on May 17th, 2009
Tool name : Nessus Description : Nessus was a popular free and open source vulnerability scanner until they closed the source code in 2005 and removed the free “registered feed” version in 2008. A limited “Home Feed” is still available, though it is only licensed for home network use. Some people [...]
© 2010 all rights reserved.