Contribuez à SecuObs en envoyant des bitcoins ou des dogecoins.
Nouveaux articles (fr): 1pwnthhW21zdnQ5WucjmnF3pk9puT5fDF
Amélioration du site: 1hckU85orcGCm8A9hk67391LCy4ECGJca
Tips: DLovLUzkYsFNbAT5xwewQ6BAWztH4MtDgn

Contribute to SecuObs by sending bitcoins or dogecoins.
New content (en): 1pwnwwLjiu8U6jgqEchPXibM2dJA2CqQq
New website: 1hckU85orcGCm8A9hk67391LCy4ECGJca

44i3VeDHHoL5U6cULcgP6gPWw4p2oCoSGZXepBSDV42mGuLpuSbn5Kh3uGJ8Z9YqkaRwbQqq8op4nShvptRMByNxQFfBvVd
Chercher :
Newsletter :  

Revues :
- Presse
- Presse FR
- Vidéos
- Twitter
- Secuobs




Sommaires :
- Tendances
- Failles
- Virus
- Concours
- Reportages
- Acteurs
- Outils
- Breves
- Infrastructures
- Livres
- Tutoriels
- Interviews
- Podcasts
- Communiques
- USBsploit
- Commentaires

Revue Presse:
- Tous
- Francophone
- Par mot clé
- Par site
- Le tagwall


Top bi-hebdo:
- Ensemble
- Articles
- Revue
- Videos
- Twitter
- Auteurs

Articles :
- Par mot clé
- Par auteur
- Par organisme
- Le tagwall


Videos :
- Toutes
- Par mot clé
- Par site
- Le tagwall


Twitter :
- Tous
- Par mot clé
- Par compte
- Le tagwall


Commentaires :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques

RSS/XML :
- Articles
- Commentaires
- Revue
- Revue FR
- Videos
- Twitter

RSS SecuObs :
- sécurité
- exploit
- windows
- attaque
- outil
- microsoft

RSS Revue :
- security
- microsoft
- windows
- hacker
- attack
- network

RSS Videos :
- curit
- security
- biomet
- metasploit
- biometric
- cking

RSS Twitter :
- security
- linux
- botnet
- attack
- metasploit
- cisco

RSS Comments :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques

RSS OPML :
- Français
- International



Revue de presse francophone :
- Appaloosa AppDome nouent un partenariat pour accompagner les entreprises dans le déploiement et la protection des applications mobiles
- D-Link offre une avec un routeur VPN sans fil AC
- 19 mai Paris Petit-Déjeuner Coreye Développer son business à l'abri des cyberattaques
- POYNTING PRESENTE LA NOUVELLE ANTENNE OMNI-291, SPECIALE MILIEU MARITIME, CÔTIER ET MILIEU HUMIDE
- Flexera Software Les utilisateurs français de PC progressent dans l'application de correctifs logiciels, mais des défis de tailles subsistent
- Riverbed lance SD-WAN basé sur le cloud
- Fujitsu multi-récompensé VMware lui décerne plusieurs Partner Innovation Awards à l'occasion du Partner Leadership Summit
- Zscaler Private Access sécuriser l'accès à distance en supprimant les risques inhérents aux réseaux privés virtuels
- QNAP annonce la sortie de QTS 4.2.1
- Une enquête réalisée par la société de cyber sécurité F-Secure a décelé des milliers de vulnérabilités graves, potentiellement utilisables par des cyber criminels pour infiltrer l'infrastru
- Trouver le juste équilibre entre une infrastructure dédiée et cloud le dilemme de la distribution numérique
- 3 juin - Fleurance - Cybersécurité Territoires
- Cyber-assurances Seules 40 pourcents des entreprises françaises sont couvertes contre les violations de sécurité et les pertes de données
- Des étudiants de l'ESIEA inventent CheckMyHTTPS un logiciel qui vérifie que vos connexions WEB sécurisées ne sont pas interceptées
- Les produits OmniSwitch d'Alcatel-Lucent Enterprise ALE gagnent en sécurité pour lutter contre les cyber-attaques modernes

Dernier articles de SecuObs :
- DIP, solution de partage d'informations automatisée
- Sqreen, protection applicative intelligente de nouvelle génération
- Renaud Bidou (Deny All): "L'innovation dans le domaine des WAFs s'oriente vers plus de bon sens et d'intelligence, plus de flexibilité et plus d'ergonomie"
- Mises à jour en perspective pour le système Vigik
- Les russes ont-ils pwn le système AEGIS ?
- Le ministère de l'intérieur censure une conférence au Canada
- Saut d'air gap, audit de firmware et (in)sécurité mobile au programme de Cansecwest 2014
- GCHQ: Le JTRIG torpille Anonymous qui torpille le JTRIG (ou pas)
- #FIC2014: Entrée en territoire inconnu
- Le Sénat investit dans les monnaies virtuelles

Revue de presse internationale :
- VEHICLE CYBERSECURITY DOT and Industry Have Efforts Under Way, but DOT Needs to Define Its Role in Responding to a Real-world Attack
- Demand letter served on poll body over disastrous Comeleak breach
- The Minimin Aims To Be The Simplest Theremin
- Hacking group PLATINUM used Windows own patching system against it
- Hacker With Victims in 100 Nations Gets 7 Years in Prison
- HPR2018 How to make Komboucha Tea
- Circuit Bender Artist bends Fresnel Lens for Art
- FBI Director Suggests iPhone Hacking Method May Remain Secret
- 2016 Hack Miami Conference May 13-15, 2016
- 8-bit Video Wall Made From 160 Gaming Keyboards
- In An Era Of Decline, News Sites Can t Afford Poor Web Performance
- BeautifulPeople.com experiences data breach 1m affected
- Swedish Air Space Infringed, Aircraft Not Required
- Why cybercriminals attack healthcare more than any other industry
- Setting the Benchmark in the Network Security Forensics Industry

Annuaire des videos
- FUZZING ON LINE PART THREE
- Official Maltego tutorial 5 Writing your own transforms
- Official Maltego tutorial 6 Integrating with SQL DBs
- Official Maltego tutorial 3 Importing CSVs spreadsheets
- install zeus botnet
- Eloy Magalhaes
- Official Maltego tutorial 1 Google s websites
- Official Maltego tutorial 4 Social Networks
- Blind String SQL Injection
- backdoor linux root from r57 php shell VPS khg crew redc00de
- How To Attaque Pc With Back Track 5 In Arabique
- RSA Todd Schomburg talks about Roundup Ready lines available in 2013
- Nessus Diagnostics Troubleshooting
- Panda Security Vidcast Panda GateDefender Performa Parte 2 de 2
- MultiPyInjector Shellcode Injection

Revue Twitter
- RT @fpalumbo: Cisco consistently leading the way ? buys vCider to boost its distributed cloud vision #CiscoONE
- @mckeay Looks odd... not much to go on (prob some slideshow/vid app under Linux)
- [SuggestedReading] Using the HTML5 Fullscreen API for Phishing Attacks
- RT @BrianHonan: Our problems are not technical but cultural. OWASP top 10 has not changed over the years @joshcorman #RSAC
- RT @mikko: Wow. Apple kernels actually have a function called PE_i_can_has_debugger:
- [Blog Spam] Metasploit and PowerShell payloads
- PinkiePie Strikes Again, Compromises Google Chrome in Pwnium Contest at Hack in the Box: For the second time thi...
- @mikko @fslabs y'all wldn't happen to have lat/long data sets for other botnets, wld you? Doing some research (free/open info rls when done)
- RT @nickhacks: Want to crash a remote host running Snow Leopard? Just use: nmap -P0 -6 --script=targets-ipv6-multicast-mld #wishiwaskidding
- An inexpensive proxy service called is actually a front for #malware distribution -

Mini-Tagwall
Revue de presse : security, microsoft, windows, hacker, attack, network, vulnerability, google, exploit, malware, internet, remote, iphone

+ de mots clés pour la revue de presse
Annuaires des videos : curit, security, biomet, metasploit, biometric, cking, password, windows, botnet, defcon, tutorial, crypt, xploit

+ de mots clés pour les videos
Revue Twitter : security, linux, botnet, attack, metasploit, cisco, defcon, phish, exploit, google, inject, server, firewall

+ de mots clés pour la revue Twitter

Top bi-hebdo des articles de SecuObs
- [Ettercap – Partie 2] Ettercap par l'exemple - Man In the Middle et SSL sniffing
- [Infratech - release] version 0.6 de Bluetooth Stack Smasher
- [IDS Snort Windows – Partie 2] Installation et configuration
- [Infratech - vulnérabilité] Nouvelle version 0.8 de Bluetooth Stack Smasher
- Mises à jour en perspective pour le système Vigik
- USBDumper 2 nouvelle version nouvelles fonctions !
- EFIPW récupère automatiquement le mot de passe BIOS EFI des Macbook Pro avec processeurs Intel
- La sécurité des clés USB mise à mal par USBDUMPER
- Une faille critique de Firefox expose les utilisateurs de Tor Browser Bundle
- Installation sécurisée d'Apache Openssl, Php4, Mysql, Mod_ssl, Mod_rewrite, Mod_perl , Mod_security

Top bi-hebdo de la revue de presse
- StackScrambler and the Tale of a Packet Parsing Bug

Top bi-hebdo de l'annuaire des videos
- DC++ Botnet. How To DDos A Hub With Fake IPs.
- Comment creer un server botnet!!!!(Réseau de pc zombies)
- Defcon 14 Hard Drive Recovery Part 3

Top bi-hebdo de la revue Twitter
- RT @secureideas: I believe that all the XSS flaws announced are fixed in CVS. Will test again tomorrow if so, release 1.4.3. #BASESnort
- Currently, we do not support 100% of the advanced PDF features found in Adobe Reader... At least that's a good idea.
- VPN (google): German Foreign Office Selects Orange Business for Terrestrial Wide: Full
- @DisK0nn3cT Not really, mostly permission issues/info leak...they've had a couple of XSS vulns but nothing direct.
- Swatting phreaker swatted and heading to jail: A 19-year-old American has been sentenced to eleven years in pris..
- RT @fjserna You are not a true hacker if the calc.exe payload is not the scientific one... infosuck.org/0x0035.png

Top des articles les plus commentés
- [Metasploit 2.x – Partie 1] Introduction et présentation
- Microsoft !Exploitable un nouvel outil gratuit pour aider les développeurs à évaluer automatiquement les risques
- Webshag, un outil d'audit de serveur web
- Les navigateurs internet, des mini-systèmes d’exploitation hors de contrôle ?
- Yellowsn0w un utilitaire de déblocage SIM pour le firmware 2.2 des Iphone 3G
- CAINE un Live[CD|USB] pour faciliter la recherche légale de preuves numériques de compromission
- Nessus 4.0 placé sous le signe de la performance, de l'unification et de la personnalisation
- [Renforcement des fonctions de sécurité du noyau Linux – Partie 1] Présentation
- [IDS Snort Windows – Partie 1] Introduction aux IDS et à SNORT
- Origami pour forger, analyser et manipuler des fichiers PDF malicieux

JBrownSEC Changes Code
Si vous voulez bloquer ce service sur vos fils RSS
Si vous voulez nous contacter ou nous proposer un fil RSS

Menu > Articles de la revue de presse : - l'ensemble [tous | francophone] - par mots clé [tous] - par site [tous] - le tagwall [voir] - Top bi-hebdo de la revue de presse [Voir]
S'abonner au fil RSS global de la revue de presse


JBrownSEC Changes Code

Par Jeremy's Computer Security Blog
Le [2009-07-20] à 01:29:02


Présentation : As you might have noticed, there has been some changes to JBrownSEC lately. I want to thank Stashbox for hosting our files which are available through the right side bar along with other news and information feeds. I hope these new additions and other slight changes benefit all our the readers out there.. I know I sure like them. I have also released some exploits recently including some memory leaks in Konqueror and a remote code execution for 3com's old tftp server, for fun. You also might have to play with the data amount on the 'link href' leak on Konqueror to make it less likely to recover, if at all. Netsurf also has some integer overflows and memory leaks in its rendering engine and such, the advisory and exploits are available now Check your favorite security site and or the right side info panel . A while back I discovered a xss-turned-cmd execution exploit utilizing Wscript, so not very reliable for Novell Netware's Remote Manager. Sometime thereafter I recieved an email from someone at Novell asking to work with me concerning this flaw. I would have helped more than I did, but at the time of my email my Netware server was down or something happened so I wasn't very helpful. Long email short, the person asking for information about the bug claimed that they could not reproduce it and, I suppose, dismissed it I think they were using Netware 6.5 SP7 and the bug was tested on my 6.5 SP6 server . But the bug is real. You can actually inject code for some session-wide action in the target browser. I was also fuzzing a version of ICEbrowser, the browser that Novell uses for Remote Manager and web surfing in general and found that I could trigger a fault and actually reboot the system. Note that this exploit is not completely reliable, it has shown signs of being fatal to the health of the server if continually faulted and rebooted over and over again. Abend 1 on P00 Server-5.70.06 Page Fault Processor Exception Error code 00000000 Registers CS 0008 DS 0010 ES 0010 FS 0010 GS 007B SS 0010 EAX 00000000 EBX 9687EF4C ECX 004EB8F0 EDX 000000E4 ESI 00000000 EDI 00000001 EBP 8D9E7F3C ESP 86179EF4 EIP 00000000 FLAGS 00010086 Access Location 0x00000000 Running process Interrupt service routine nested count 2 Interrupted process Server 12 Process Thread Owned by NLM SERVER.NLM Stack pointer 86179F60 OS Stack limit 86172020 CPU 0 Thread 89D24220 is in a NO SLEEP state Scheduling priority 67371008 Wait state 50500F0 Waiting for work Stack 002048F1 SERVER.NLMPerformCallOuts 105 --00000000 LOADER.NLMKernelAddressSpace 0 --000022B6 LOADER.NLMKernelAddressSpace 22B6 00214018 SERVER.NLMWorkerThread 344 --39252B31 --86179F6C 00227F55 SERVER.NLMSchedTimerISR 85 --00000000 LOADER.NLMKernelAddressSpace 0 --00000001 LOADER.NLMKernelAddressSpace 1 --00000000 LOADER.NLMKernelAddressSpace 0 -001337F0 LOADER.NLMinterruptVectorPool 0 -0013C570 LOADER.NLMkVirtualInterruptTable0 0 --00000010 LOADER.NLMKernelAddressSpace 10 0010818B LOADER.NLMkTimer1Interrupt 1D 001077E9 LOADER.NLMkProcessProtectedModeInterrupt 39 --00000000 LOADER.NLMKernelAddressSpace 0 -0013C570 LOADER.NLMkVirtualInterruptTable0 0 --00000000 LOADER.NLMKernelAddressSpace 0 --392529C6 00107147 LOADER.NLMkProtectedModeInterruptContinue 5F --00000010 LOADER.NLMKernelAddressSpace 10 --00000010 LOADER.NLMKernelAddressSpace 10 --00000010 LOADER.NLMKernelAddressSpace 10 --00000000 LOADER.NLMKernelAddressSpace 0 --00000000 LOADER.NLMKernelAddressSpace 0 --00000000 LOADER.NLMKernelAddressSpace 0 --FFA1276D --00000000 LOADER.NLMKernelAddressSpace 0 --839FE2A0 IDEATA.HAMIfYouSeeThisYoureWayPastTheIDEDriver 3BA0 --FDE3AF4A 00214018 SERVER.NLMWorkerThread 344 --00000008 LOADER.NLMKernelAddressSpace 8 --00000246 LOADER.NLMKernelAddressSpace 246 --00000000 LOADER.NLMKernelAddressSpace 0 --89D24220 JVM.NLM__fprem1_chk 1486 --00000000 LOADER.NLMKernelAddressSpace 0 --89D24220 JVM.NLM__fprem1_chk 1486 00221158 SERVER.NLMTcoNewSystemThreadEntryPoint 40 --89D24220 JVM.NLM__fprem1_chk 1486 --00000000 LOADER.NLMKernelAddressSpace 0 --00000000 LOADER.NLMKernelAddressSpace 0 --00000000 LOADER.NLMKernelAddressSpace 0 --00000000 LOADER.NLMKernelAddressSpace 0 --00007F80 LOADER.NLMKernelAddressSpace 7F80 --00000000 LOADER.NLMKernelAddressSpace 0 --8616904C 003682FE SERVER.NLMSwitchStacksAndCall 44 --FE00B0A0 LOADER.NLMOSAllocMemory B0A0 --8616FF48 --00002088 LOADER.NLMKernelAddressSpace 2088 --34343434 --65657246 --65657246 --65657246 --65657246 --65657246 --65657246 --65657246 --34343434 --65657246 --65657246 --65657246 --65657246 --65657246 --65657246 --65657246 --65657246 Stack dump exceeded the valid memory limit Additional Information The hardware detected a problem while executing an interrupt service routine. The code being executed is owned by SERVER.NLM. It may be the source of the problem or there may have been a memory corruption. Memory at EAX Invalid dump address Memory at EBX 9687EF4C 00000000 00000000-00000000 00000000 .... .... .... .... 9687EF5C 00000000 00000000-00000000 464C4143 .... .... .... FLAC 9687EF6C 00000000 00000000-00000000 00000000 .... .... .... .... 9687EF7C 00000000 00000000-00000000 00000000 .... .... .... .... 9687EF8C 00000000 000003E8-85E53B00 000003E8 .... ...h .e . ...h 9687EF9C 00000000 00000246-00000003 856E6F0D .... ...F .... .no. 9687EFAC FE2756A0 000003E8-C188BFC0 00000000 'V ...h A. .... 9687EFBC 00000000 000003E8-00000002 00000246 .... ...h .... ...F 9687EFCC 8C027090 00000000-0000000C FE2756A0 ..p. .... .... 'V 9687EFDC 00000000 00000000-8B377420 00000003 .... .... .7t .... 9687EFEC 855EC6C0 00000246-00000000 00000002 . F ...F .... .... 9687EFFC 8B377508 00000008-00000000 0000002F .7u. .... .... ... 9687F00C C188BFC0 00000000-856F2E28 0000002F A. .... .o. ... 9687F01C C188BFC0 00000000-00000000 C188CFC8 A. .... .... A.OH 9687F02C 9687F030 00261EE6-00000000 00000008 ..p0 . .f .... .... 9687F03C 00000000 00000000-856FBB8D 0000002F .... .... .o . ... Memory at ECX 004EB8F0 00000000 00000000-00000000 00000000 .... .... .... .... 004EB900 DA381B1E 00000658-FE00AD00 00000000 Z8.. ...X .-. .... 004EB910 00000000 00000000-00000000 00000000 .... .... .... .... 004EB920 00000000 00000000-00000000 EC51D54E .... .... .... lQUN 004EB930 00000000 00000000-00000000 00000000 .... .... .... .... 004EB940 00000000 00000000-00000000 FE001900 .... .... .... ... 004EB950 00000008 FE001B9C-942A64DC 00000124 .... ... . d ... 004EB960 01031618 00000000-00000000 00000000 .... .... .... .... 004EB970 00000000 00000000-FE0AD980 99D29EC0 .... .... .Y. .R. 004EB980 00001018 01031618-00000000 00000000 .... .... .... .... 004EB990 00000000 00000000-00000000 FE004084 .... .... .... . . 004EB9A0 9A09A744 00004A1B-01031618 00000000 ..'D ..J. .... .... 004EB9B0 00000000 00000000-00000000 00000000 .... .... .... .... 004EB9C0 004EB9BC 8DFA1978-99A392BC 002091D0 .N97X .... . Y. 8D9E7FDC 9619C180 00000000-00221158 9619C180 ..A. .... . .X ..A. 8D9E7FEC 8C295900 00000000-00000000 00000000 . Y. .... .... .... 8D9E7FFC 34343434 - 4444 Pointer exceeds valid memory limit Memory at ESP 86179EF4 002048F1 00000000-000022B6 00214018 . Hq .... .. 6 . . 86179F04 39252B31 86179F6C-00227F55 00000000 9pourcents 1 ...l . .U .... 86179F14 00000001 00000000-001337F0 0013C570 .... .... ..7p ..Ep 86179F24 00000010 0010818B-001077E9 00000000 .... .... ..wi .... 86179F34 0013C570 00000000-392529C6 00107147 ..Ep .... 9pourcents F ..qG 86179F44 00000010 00000010-00000010 00000000 .... .... .... .... 86179F54 00000000 00000000-FFA1276D 00000000 .... .... . 'm .... 86179F64 839FE2A0 FDE3AF4A-00214018 00000008 ..b c J . . .... 86179F74 00000246 00000000-89D24220 00000000 ...F .... .RB .... 86179F84 89D24220 00221158-89D24220 00000000 .RB . .X .RB .... 86179F94 00000000 00000000-00000000 00007F80 .... .... .... .... 86179FA4 00000000 8616904C-003682FE FE00B0A0 .... ...L .6. .0 86179FB4 8616FF48 00002088-34343434 65657246 ...H .. . 4444 eerF 86179FC4 65657246 65657246-65657246 65657246 eerF eerF eerF eerF 86179FD4 65657246 65657246-34343434 65657246 eerF eerF 4444 eerF 86179FE4 65657246 65657246-65657246 65657246 eerF eerF eerF eerF Stack Walk Current EIP 00000000 Stack Contents EIP invalid. I have decided to release bf2, but no release date has been set yet. I am now and will be open for suggestions after Browser Fuzzer 2 is released, to take into consideration for bf3, which I plan to begin working on in the near future. Bug on




AddThis Social Bookmark Widget



Les derniers articles du site "Jeremy's Computer Security Blog" :

- What did they fix
- Adobe Flash Temporary Filename Scheme
- Reverse Engineering File Formats
- Browser Fuzzer 3
- Writing Code that Breaks Code
- Mozilla Code sighs
- From Static Analysis to 0day Exploit
- Some vendors are 'unconcerned'
- Firefox Local Download Manager Vulnerability
- Desktop Management Interface DMI



S'abonner au fil RSS global de la revue de presse
Menu > Articles de la revue de presse : - l'ensemble [tous | francophone] - par mots clé [tous] - par site [tous] - le tagwall [voir] - Top bi-hebdo de la revue de presse [Voir]

Si vous voulez bloquer ce service sur vos fils RSS :
 - avec iptables "iptables -A INPUT -s 88.191.75.173 --dport 80 -j DROP"
- avec ipfw et wipfw "ipfw add deny from 88.191.75.173 to any 80"
- Nous contacter par mail




SecuToolBox :

Mini-Tagwall des articles publiés sur SecuObs :

Mini-Tagwall de l'annuaire video :

Mini-Tagwall des articles de la revue de presse :

Mini-Tagwall des Tweets de la revue Twitter :