SecuObs.com

SecuObs.com http://www.secuobs.com L'observatoire de la securite Internet fr webmaster@secuobs.com ESRT @netsparker @jeremiahg - Scanner Review Vendors begin r ... ESRT @netsparker @jeremiahg - Scanner Review Vendors begin responding: HP WebInspect, Acunetix http://www.secuobs.com/twitter/news/63563.shtml http://www.secuobs.com/news/comments1124042009-webshag.shtml#4955 http://www.secuobs.com/news/comments1124042009-webshag.shtml#4955 ESRT @dloss - Python tools for penetration testers ... ESRT @dloss - Python tools for penetration testers http://www.secuobs.com/twitter/news/63496.shtml http://www.secuobs.com/news/comments301102007-scapy.shtml#4954 http://www.secuobs.com/news/comments301102007-scapy.shtml#4954 ESRT @sagar38 @laramies @matalaz - Pyew A Python tool to ana ... ESRT @sagar38 @laramies @matalaz - Pyew A Python tool to analyze malware http://www.secuobs.com/twitter/news/63554.shtml http://www.secuobs.com/news/comments11032008-anubis.shtml#4953 http://www.secuobs.com/news/comments11032008-anubis.shtml#4953 synspam 0.4.0-1 ... synspam 0.4.0-1 http://www.secuobs.com/revue/news/189868.shtml http://www.secuobs.com/news/comments05122007-spam.shtml#4952 http://www.secuobs.com/news/comments05122007-spam.shtml#4952 sipwitch 0.7.0 ... sipwitch 0.7.0 http://www.secuobs.com/revue/news/189870.shtml http://www.secuobs.com/news/comments426112008-ucsniff_sniffer_voip_vlan_hopping.shtml#4951 http://www.secuobs.com/news/comments426112008-ucsniff_sniffer_voip_vlan_hopping.shtml#4951 Airdrop-ng Release ... Airdrop-ng Release http://www.secuobs.com/revue/news/189877.shtml http://www.secuobs.com/news/comments420032007-superrange_ubiquiti.shtml#4950 http://www.secuobs.com/news/comments420032007-superrange_ubiquiti.shtml#4950 GuruPlug, the next generation of SheevaPlug ... GuruPlug, the next generation of SheevaPlug http://www.secuobs.com/revue/news/189775.shtml http://www.secuobs.com/news/comments723092006-hacking_hardware.shtml#4949 http://www.secuobs.com/news/comments723092006-hacking_hardware.shtml#4949 Anomos 0.9 Released Public Tracker Up and Running ... Anomos 0.9 Released Public Tracker Up and Running http://www.secuobs.com/revue/news/189786.shtml http://www.secuobs.com/news/comments202012009-vpn_25c3_onioncat_tor_anonymat.shtml#4948 http://www.secuobs.com/news/comments202012009-vpn_25c3_onioncat_tor_anonymat.shtml#4948 ESRT @IBMFedCyber - DECT crypto cracked academically ... ESRT @IBMFedCyber - DECT crypto cracked academically http://www.secuobs.com/twitter/news/63468.shtml http://www.secuobs.com/news/comments107042009-dedected_com_on_air_kismet_dsaa_dsc.shtml#4947 http://www.secuobs.com/news/comments107042009-dedected_com_on_air_kismet_dsaa_dsc.shtml#4947 Responder Professional 2.0, a Windows physical memory and au ... Responder Professional 2.0, a Windows physical memory and automated malware analysis platform http://www.secuobs.com/revue/news/189763.shtml http://www.secuobs.com/news/comments11032008-anubis.shtml#4946 http://www.secuobs.com/news/comments11032008-anubis.shtml#4946 ESRT @Marsmensch @hdmoore - Metasploit supports owning insec ... ESRT @Marsmensch @hdmoore - Metasploit supports owning insecure IIS WebDAV http://www.secuobs.com/twitter/news/63432.shtml http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4945 http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4945 Added a small hack to ronin-ext, Ronin::Autoload: autoloads ... Added a small hack to ronin-ext, Ronin::Autoload: autoloads missing constants in a module http://www.secuobs.com/twitter/news/63442.shtml http://www.secuobs.com/news/comments02112009-ronin_exploit_lfi_rfi_sqli_phprpc.shtml#4944 http://www.secuobs.com/news/comments02112009-ronin_exploit_lfi_rfi_sqli_phprpc.shtml#4944 ESRT @proactivedefend - Iptables Limits Connections Per IP ... ESRT @proactivedefend - Iptables Limits Connections Per IP http://www.secuobs.com/twitter/news/63256.shtml http://www.secuobs.com/news/comments223032009-nftables_filtrage_linux_concat_git.shtml#4943 http://www.secuobs.com/news/comments223032009-nftables_filtrage_linux_concat_git.shtml#4943 ESRT @EdiStrosar @spendergrsec - Linux 2618+ infoleak exploi ... ESRT @EdiStrosar @spendergrsec - Linux 2618+ infoleak exploit added to Enlightenment Framework http://www.secuobs.com/twitter/news/63261.shtml http://www.secuobs.com/news/comments08032008-freeradius.shtml#4942 http://www.secuobs.com/news/comments08032008-freeradius.shtml#4942 ESRT @SecMailLists - Full Disclosure: XSS vulnerability in N ... ESRT @SecMailLists - Full Disclosure: XSS vulnerability in NEW orkut http://www.secuobs.com/twitter/news/63345.shtml http://www.secuobs.com/news/comments512032009-scrubbr_xss_suppression_automatique.shtml#4941 http://www.secuobs.com/news/comments512032009-scrubbr_xss_suppression_automatique.shtml#4941 ESRT @helpnetsecurity @lbhuston - Zero-day vulnerabilities o ... ESRT @helpnetsecurity @lbhuston - Zero-day vulnerabilities on the market http://www.secuobs.com/twitter/news/63398.shtml http://www.secuobs.com/news/commentsO5112003etude-telindus.html#4940 http://www.secuobs.com/news/commentsO5112003etude-telindus.html#4940 ESRT @agar38 @achillean @theprez98 - SHODAN for Penetration ... ESRT @agar38 @achillean @theprez98 - SHODAN for Penetration Testers slides from shmoocon http://www.secuobs.com/twitter/news/63335.shtml http://www.secuobs.com/news/comments25112009-shodan_operator_search_vuln.shtml#4939 http://www.secuobs.com/news/comments25112009-shodan_operator_search_vuln.shtml#4939 Video : ESRT @secdocs - Using OpenBSC for fuzzing of GSM han ... Video : ESRT @secdocs - Using OpenBSC for fuzzing of GSM handsets http://www.secuobs.com/twitter/news/63316.shtml http://www.secuobs.com/news/comments126082009-airprobe_sniffer_gsm_usrp_openbsc.shtml#4938 http://www.secuobs.com/news/comments126082009-airprobe_sniffer_gsm_usrp_openbsc.shtml#4938 ESRT @helpnetsecurity - Configure Netfilter Shorewall 4.4.7 ... ESRT @helpnetsecurity - Configure Netfilter Shorewall 4.4.7 RC2 released http://www.secuobs.com/twitter/news/63353.shtml http://www.secuobs.com/news/comments123032009-nftables_filtrage_linux_concat_git.shtml#4937 http://www.secuobs.com/news/comments123032009-nftables_filtrage_linux_concat_git.shtml#4937 PS3 hypervisor exploit reproduced ... PS3 hypervisor exploit reproduced http://www.secuobs.com/revue/news/189722.shtml http://www.secuobs.com/news/comments431122008-md5_pki_cluster_ps3_25c3_certificat.shtml#4936 http://www.secuobs.com/news/comments431122008-md5_pki_cluster_ps3_25c3_certificat.shtml#4936 Mozilla Removes Two Malicious Firefox Add-Ons ... Mozilla Removes Two Malicious Firefox Add-Ons http://www.secuobs.com/revue/news/189725.shtml http://www.secuobs.com/news/comments1014112008-browser_rootkit.shtml#4935 http://www.secuobs.com/news/comments1014112008-browser_rootkit.shtml#4935 Wrapping insecure web apps with Apache ... Wrapping insecure web apps with Apache http://www.secuobs.com/revue/news/189492.shtml http://www.secuobs.com/news/comments503052004mod_security.html#4934 http://www.secuobs.com/news/comments503052004mod_security.html#4934 Oracle Patches Critical WebLogic Flaw ... Oracle Patches Critical WebLogic Flaw http://www.secuobs.com/revue/news/189609.shtml http://www.secuobs.com/news/comments112012010-intevydis.shtml#4933 http://www.secuobs.com/news/comments112012010-intevydis.shtml#4933 Directory traversal as a reconnaissance tool ... Directory traversal as a reconnaissance tool http://www.secuobs.com/revue/news/189629.shtml http://www.secuobs.com/news/comments1124042009-webshag.shtml#4932 http://www.secuobs.com/news/comments1124042009-webshag.shtml#4932 Video : Scanning with the NetChk Configure NIST Policy ... Video : Scanning with the NetChk Configure NIST Policy http://www.secuobs.com/revue/news/189496.shtml http://www.secuobs.com/news/comments24032008-patch_management4.shtml#4931 http://www.secuobs.com/news/comments24032008-patch_management4.shtml#4931 P2P Network Users Allow Access To Private Info ... P2P Network Users Allow Access To Private Info http://www.secuobs.com/revue/news/189643.shtml http://www.secuobs.com/news/comments01122008-gfi_languard_scanner_p2p.shtml#4930 http://www.secuobs.com/news/comments01122008-gfi_languard_scanner_p2p.shtml#4930 UPDATE KreiosC2 v3 ... UPDATE KreiosC2 v3 http://www.secuobs.com/revue/news/189638.shtml http://www.secuobs.com/news/comments24112009-kreiosc2_bot_twitter_tinyurl_jpeg.shtml#4929 http://www.secuobs.com/news/comments24112009-kreiosc2_bot_twitter_tinyurl_jpeg.shtml#4929 TitanEngine and Python SDK ... TitanEngine and Python SDK http://www.secuobs.com/revue/news/189567.shtml http://www.secuobs.com/news/comments420052004it_nbrulez.html#4928 http://www.secuobs.com/news/comments420052004it_nbrulez.html#4928 Securing Java In Oracle and DBMS_JVM_EXP_PERMS ... Securing Java In Oracle and DBMS_JVM_EXP_PERMS http://www.secuobs.com/revue/news/189425.shtml http://www.secuobs.com/news/comments526112008-cadfile_forensic_oracle_orablock.shtml#4927 http://www.secuobs.com/news/comments526112008-cadfile_forensic_oracle_orablock.shtml#4927 New Attack on Threefish ... New Attack on Threefish http://www.secuobs.com/revue/news/189371.shtml http://www.secuobs.com/news/comments227032009-maude_npa_nrl_dhsk_npsk_xor_crypto.shtml#4926 http://www.secuobs.com/news/comments227032009-maude_npa_nrl_dhsk_npsk_xor_crypto.shtml#4926 BlackBerry Spyware Package Shown at Shmoocon ... BlackBerry Spyware Package Shown at Shmoocon http://www.secuobs.com/revue/news/189444.shtml http://www.secuobs.com/news/comments07112006-blackberry-bluetooth.shtml#4925 http://www.secuobs.com/news/comments07112006-blackberry-bluetooth.shtml#4925 ESRT @emgent Fake OpenSSH remote root exploit hexdump ... ESRT @emgent Fake OpenSSH remote root exploit hexdump http://www.secuobs.com/twitter/news/63125.shtml http://www.secuobs.com/news/comments108122008-ssh_attaque_botnet_syncrhonisation.shtml#4924 http://www.secuobs.com/news/comments108122008-ssh_attaque_botnet_syncrhonisation.shtml#4924 Video : @EdiStrosar @spendergrsec Linux 2.6.18+ move_pages() ... Video : @EdiStrosar @spendergrsec Linux 2.6.18+ move_pages() Infoleak Exploit, Code to be released soon http://www.secuobs.com/twitter/news/63069.shtml http://www.secuobs.com/news/comments814112007-kernel_hardening.shtml#4923 http://www.secuobs.com/news/comments814112007-kernel_hardening.shtml#4923 ESRT @xanda - Download Predator – Lock Your PC with a USB Ke ... ESRT @xanda - Download Predator – Lock Your PC with a USB Key http://www.secuobs.com/twitter/news/63065.shtml http://www.secuobs.com/news/comments116102009-usb_evil_maid_fde_mbr_truecrypt_tpm.shtml#4922 http://www.secuobs.com/news/comments116102009-usb_evil_maid_fde_mbr_truecrypt_tpm.shtml#4922 Get your Faraday Bag ... Get your Faraday Bag http://www.secuobs.com/revue/news/189322.shtml http://www.secuobs.com/news/comments21102008-epfl-tempest.shtml#4921 http://www.secuobs.com/news/comments21102008-epfl-tempest.shtml#4921 Creating a live cd for open source SIM Prelude and Suricata ... Creating a live cd for open source SIM Prelude and Suricata http://www.secuobs.com/revue/news/189321.shtml http://www.secuobs.com/news/comments611052008-snort_ids.shtml#4920 http://www.secuobs.com/news/comments611052008-snort_ids.shtml#4920 openssh-53p1-remote-root.c ... openssh-53p1-remote-root.c http://www.secuobs.com/revue/news/189359.shtml http://www.secuobs.com/news/comments115112008-openssh_cbc_ctr_aes_cpni.shtml#4919 http://www.secuobs.com/news/comments115112008-openssh_cbc_ctr_aes_cpni.shtml#4919 Browser Rider being rolled into BeEF ... Browser Rider being rolled into BeEF http://www.secuobs.com/revue/news/189330.shtml http://www.secuobs.com/news/comments225112008-browser_rider_exploitation_massive.shtml#4918 http://www.secuobs.com/news/comments225112008-browser_rider_exploitation_massive.shtml#4918 WordPress iframe injection ... WordPress iframe injection http://www.secuobs.com/revue/news/189157.shtml http://www.secuobs.com/news/comments05032007-wordpress.shtml#4917 http://www.secuobs.com/news/comments05032007-wordpress.shtml#4917 Microsoft awareness kit ... Microsoft awareness kit http://www.secuobs.com/revue/news/189172.shtml http://www.secuobs.com/news/comments1423032009-exploitable_windbg_dump_audit_msec.shtml#4916 http://www.secuobs.com/news/comments1423032009-exploitable_windbg_dump_audit_msec.shtml#4916 New version of Andreas Schuster's Evtx Parser released ... New version of Andreas Schuster's Evtx Parser released http://www.secuobs.com/revue/news/189176.shtml http://www.secuobs.com/news/comments1002032009-caine_forensic_livecd_wintaylor.shtml#4915 http://www.secuobs.com/news/comments1002032009-caine_forensic_livecd_wintaylor.shtml#4915 netsniff-ng 0.5.4.1 a high performance linux network sniffer ... netsniff-ng 0.5.4.1 a high performance linux network sniffer for packet inspection http://www.secuobs.com/revue/news/189210.shtml http://www.secuobs.com/news/comments317112008-netwitness_investigator_pcap.shtml#4914 http://www.secuobs.com/news/comments317112008-netwitness_investigator_pcap.shtml#4914 Hardware based randomness for Linux ... Hardware based randomness for Linux http://www.secuobs.com/revue/news/189291.shtml http://www.secuobs.com/news/comments723092006-hacking_hardware.shtml#4913 http://www.secuobs.com/news/comments723092006-hacking_hardware.shtml#4913 The LWRES dissector in Wireshark allows remote code executio ... The LWRES dissector in Wireshark allows remote code execution due to a stack-based buffer overflow http://www.secuobs.com/revue/news/189164.shtml http://www.secuobs.com/news/comments317112008-netwitness_investigator_pcap.shtml#4912 http://www.secuobs.com/news/comments317112008-netwitness_investigator_pcap.shtml#4912 A Lazy Pen Tester's Guide to Testing Flash Applications ... A Lazy Pen Tester's Guide to Testing Flash Applications http://www.secuobs.com/revue/news/189229.shtml http://www.secuobs.com/news/comments104122007-swfintruder.shtml#4911 http://www.secuobs.com/news/comments104122007-swfintruder.shtml#4911 ESRT @ChrisJohnRiley - Guest stealer tool for VMware server, ... ESRT @ChrisJohnRiley - Guest stealer tool for VMware server, ESX, ESXi CVE-2009-3733 released http://www.secuobs.com/twitter/news/62785.shtml http://www.secuobs.com/news/comments405062009-cloudburst_vmware_framebuffer.shtml#4910 http://www.secuobs.com/news/comments405062009-cloudburst_vmware_framebuffer.shtml#4910 ESRT @xanda - Postgres Fingerprinting with Metasploit ... ESRT @xanda - Postgres Fingerprinting with Metasploit http://www.secuobs.com/twitter/news/62741.shtml http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4909 http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4909 ESRT @komeilipour - Rootkit Unhooker LE 3.8.386.589 SR1 rel ... ESRT @komeilipour - Rootkit Unhooker LE 3.8.386.589 SR1 released http://www.secuobs.com/twitter/news/62836.shtml http://www.secuobs.com/news/comments106112009-hooksafe_xen_koh_rootkit_kernel.shtml#4908 http://www.secuobs.com/news/comments106112009-hooksafe_xen_koh_rootkit_kernel.shtml#4908 ESRT @DidierStevens - The nmap scripting engine chapter is a ... ESRT @DidierStevens - The nmap scripting engine chapter is available online http://www.secuobs.com/twitter/news/62880.shtml http://www.secuobs.com/news/comments114032006-fingerprinting.shtml#4907 http://www.secuobs.com/news/comments114032006-fingerprinting.shtml#4907 ESRT @ChrisJohnRiley - OpenBootTS-1.0 - GSM Base Station Liv ... ESRT @ChrisJohnRiley - OpenBootTS-1.0 - GSM Base Station LiveCD - now released on SourceForge http://www.secuobs.com/twitter/news/62873.shtml http://www.secuobs.com/news/comments126082009-airprobe_sniffer_gsm_usrp_openbsc.shtml#4906 http://www.secuobs.com/news/comments126082009-airprobe_sniffer_gsm_usrp_openbsc.shtml#4906 An In-Depth Exploit Analysis on Multilayer Obfuscations ... An In-Depth Exploit Analysis on Multilayer Obfuscations http://www.secuobs.com/revue/news/189104.shtml http://www.secuobs.com/news/comments201122008-mina_obfuscation_javascript.shtml#4905 http://www.secuobs.com/news/comments201122008-mina_obfuscation_javascript.shtml#4905 tcpjunk 2.8.21 TCP protocols testing tool ... tcpjunk 2.8.21 TCP protocols testing tool http://www.secuobs.com/revue/news/189105.shtml http://www.secuobs.com/news/comments118122008-letdown_complemento_dos_tcp_outpost.shtml#4904 http://www.secuobs.com/news/comments118122008-letdown_complemento_dos_tcp_outpost.shtml#4904 Understanding the output of the PTE debuger comand along wit ... Understanding the output of the PTE debuger comand along with the basics of hardware Virtual Addressing http://www.secuobs.com/revue/news/189085.shtml http://www.secuobs.com/news/comments15062008-gendbg.shtml#4903 http://www.secuobs.com/news/comments15062008-gendbg.shtml#4903 ESRT @opexxx - a printing driver that loads a DLL ($shellcod ... ESRT @opexxx - a printing driver that loads a DLL ($shellcode) in kernel mode (via shared printer) http://www.secuobs.com/twitter/news/62521.shtml http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4902 http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4902 ESRT @ethicalhack3r @etdsoft - Dradis Framework v2.5 release ... ESRT @ethicalhack3r @etdsoft - Dradis Framework v2.5 released http://www.secuobs.com/twitter/news/62508.shtml http://www.secuobs.com/news/comments08022009-webjob_backdoor_botnet_ssl_forensic.shtml#4901 http://www.secuobs.com/news/comments08022009-webjob_backdoor_botnet_ssl_forensic.shtml#4901 ESRT @xanda @hdmoore @Kingcope - Exploiting the Samba Symlin ... ESRT @xanda @hdmoore @Kingcope - Exploiting the Samba Symlink Traversal with Metasploit http://www.secuobs.com/twitter/news/62535.shtml http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4900 http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4900 Video : ESRT @kellepc - ShmooCon live via uStream ... Video : ESRT @kellepc - ShmooCon live via uStream http://www.secuobs.com/twitter/news/62465.shtml http://www.secuobs.com/news/comments23032009-har2009.shtml#4899 http://www.secuobs.com/news/comments23032009-har2009.shtml#4899 How To Use CAT.NET V2.0 Beta ... How To Use CAT.NET V2.0 Beta http://www.secuobs.com/revue/news/188825.shtml http://www.secuobs.com/news/comments21102009-microsoft_web_protection_library.shtml#4898 http://www.secuobs.com/news/comments21102009-microsoft_web_protection_library.shtml#4898 ESRT @lhebbes - JavaScript implementation of Shamir's Secure ... ESRT @lhebbes - JavaScript implementation of Shamir's Secure Secret Sharing scheme http://www.secuobs.com/twitter/news/62354.shtml http://www.secuobs.com/news/comments227032009-maude_npa_nrl_dhsk_npsk_xor_crypto.shtml#4897 http://www.secuobs.com/news/comments227032009-maude_npa_nrl_dhsk_npsk_xor_crypto.shtml#4897 ESRT @Detecting Botnets with Network ADS ... ESRT @Detecting Botnets with Network ADS http://www.secuobs.com/twitter/news/62341.shtml http://www.secuobs.com/news/comments115112009-dispatcher_reverse_botnet.shtml#4896 http://www.secuobs.com/news/comments115112009-dispatcher_reverse_botnet.shtml#4896 Intel Desktop Boards Privilege Escalation, new BIOS update ... Intel Desktop Boards Privilege Escalation, new BIOS update http://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00022languageid=en-fr http://www.secuobs.com/news/comments24122009-dma_intel_txt_mchbar_sinit.shtml#4895 http://www.secuobs.com/news/comments24122009-dma_intel_txt_mchbar_sinit.shtml#4895 ESRT @bojanz - Flash FTL Immunity released a working Aurora ... ESRT @bojanz - Flash FTL Immunity released a working Aurora exploit that defeats both DEP and ASLR http://www.secuobs.com/twitter/news/62358.shtml http://www.secuobs.com/news/comments725022009-gazelle_isolation_os_navigateur.shtml#4894 http://www.secuobs.com/news/comments725022009-gazelle_isolation_os_navigateur.shtml#4894 Video : ESRT @SecMailLists - Samba Remote Zero-Day Exploit - ... Video : ESRT @SecMailLists - Samba Remote Zero-Day Exploit - Full Disclosure http://www.secuobs.com/twitter/news/62429.shtml http://www.secuobs.com/news/comments25022009-scannedonly_clamav_samba_antivirus.shtml#4893 http://www.secuobs.com/news/comments25022009-scannedonly_clamav_samba_antivirus.shtml#4893 ESRT @ebellis @csoandy - Why don't websites default to SSL ... ESRT @ebellis @csoandy - Why don't websites default to SSL http://www.secuobs.com/twitter/news/62266.shtml http://www.secuobs.com/news/comments117112009-renegociation_tls_twitter_poc_mitm.shtml#4892 http://www.secuobs.com/news/comments117112009-renegociation_tls_twitter_poc_mitm.shtml#4892 ESRT @jeremiahg - Converting unimplementable Cookie-based XS ... ESRT @jeremiahg - Converting unimplementable Cookie-based XSS to a persistent attack http://www.secuobs.com/twitter/news/62282.shtml http://www.secuobs.com/news/comments512032009-scrubbr_xss_suppression_automatique.shtml#4891 http://www.secuobs.com/news/comments512032009-scrubbr_xss_suppression_automatique.shtml#4891 ESRT @ghostnomad @wikidsystems - New tutorial on adding two- ... ESRT @ghostnomad @wikidsystems - New tutorial on adding two-factor authentication to the OpenVPN AS server http://www.secuobs.com/twitter/news/62273.shtml http://www.secuobs.com/news/comments10112003magiq.html#4890 http://www.secuobs.com/news/comments10112003magiq.html#4890 ESRT @threatpost - Wiretapping Flaws Found in Cisco Web Surv ... ESRT @threatpost - Wiretapping Flaws Found in Cisco Web Surveilliance http://www.secuobs.com/twitter/news/62244.shtml http://www.secuobs.com/news/comments506012009-rommon_exploit_cisco_router_25c3_fx.shtml#4889 http://www.secuobs.com/news/comments506012009-rommon_exploit_cisco_router_25c3_fx.shtml#4889 ESRT @securitypro2009 - Researchers Devise Reverse Engineeri ... ESRT @securitypro2009 - Researchers Devise Reverse Engineering Technique for Spam Botnets http://www.secuobs.com/twitter/news/62134.shtml http://www.secuobs.com/news/comments115112009-dispatcher_reverse_botnet.shtml#4888 http://www.secuobs.com/news/comments115112009-dispatcher_reverse_botnet.shtml#4888 ESRT @helpnetsecurity - grsecurity 2.1.14 released ... ESRT @helpnetsecurity - grsecurity 2.1.14 released http://www.secuobs.com/twitter/news/62237.shtml http://www.secuobs.com/news/comments814112007-kernel_hardening.shtml#4887 http://www.secuobs.com/news/comments814112007-kernel_hardening.shtml#4887 This Just In: IPS is now DLP ... This Just In: IPS is now DLP http://www.secuobs.com/revue/news/188572.shtml http://www.secuobs.com/news/comments611052008-snort_ids.shtml#4886 http://www.secuobs.com/news/comments611052008-snort_ids.shtml#4886 Releases.mozilla.org SSL and Update Fail ... Releases.mozilla.org SSL and Update Fail http://www.secuobs.com/revue/news/188602.shtml http://www.secuobs.com/news/comments1014112008-browser_rootkit.shtml#4885 http://www.secuobs.com/news/comments1014112008-browser_rootkit.shtml#4885 Microsoft hits DECAF with DMCA take-down notice ... Microsoft hits DECAF with DMCA take-down notice http://www.secuobs.com/revue/news/188694.shtml http://www.secuobs.com/news/comments1002032009-caine_forensic_livecd_wintaylor.shtml#4884 http://www.secuobs.com/news/comments1002032009-caine_forensic_livecd_wintaylor.shtml#4884 Microsoft to patch 26 holes in Windows, Office ... Microsoft to patch 26 holes in Windows, Office http://www.secuobs.com/revue/news/188734.shtml http://www.secuobs.com/news/comments1423032009-exploitable_windbg_dump_audit_msec.shtml#4883 http://www.secuobs.com/news/comments1423032009-exploitable_windbg_dump_audit_msec.shtml#4883 Oracle 11g 0day exploit published ... Oracle 11g 0day exploit published http://www.secuobs.com/revue/news/188751.shtml http://www.secuobs.com/news/comments426112008-cadfile_forensic_oracle_orablock.shtml#4882 http://www.secuobs.com/news/comments426112008-cadfile_forensic_oracle_orablock.shtml#4882 ESRT @dragosr - Elcomsoft util to crack encrypted iphone bac ... ESRT @dragosr - Elcomsoft util to crack encrypted iphone backups http://www.secuobs.com/twitter/news/62116.shtml http://www.secuobs.com/news/comments701012009-iphone_3g_yellowsn0w_deblocage_sim.shtml#4881 http://www.secuobs.com/news/comments701012009-iphone_3g_yellowsn0w_deblocage_sim.shtml#4881 Whitepaper : Playing in a Satellite Environment 1.2 - Black ... Whitepaper : Playing in a Satellite Environment 1.2 - Black Hat DC 2010 http://blackhat.com/presentations/bh-dc-10/Nve_Leonardo/BlackHat-DC-2010-Nve-Playing-with-SAT-1.2-wp.pdf http://www.secuobs.com/news/comments126082009-airprobe_sniffer_gsm_usrp_openbsc.shtml#4880 http://www.secuobs.com/news/comments126082009-airprobe_sniffer_gsm_usrp_openbsc.shtml#4880 Slides : Hardware is the New Software - Black Hat DC 2010 ... Slides : Hardware is the New Software - Black Hat DC 2010 http://blackhat.com/presentations/bh-dc-10/Grand_Joe/BlackHat-DC-2010-Grand-HW-is-the-new-SW-slides.pdf http://www.secuobs.com/news/comments723092006-hacking_hardware.shtml#4879 http://www.secuobs.com/news/comments723092006-hacking_hardware.shtml#4879 Whitepaper : Advanced Command Injection Exploitation: cmd.ex ... Whitepaper : Advanced Command Injection Exploitation: cmd.exe in the '00s - Black Hat DC 2010 http://blackhat.com/presentations/bh-dc-10/Bannedit/BlackHat-DC-2010-Bannedit-Advanced-Command-Injection-Exploitation-1-wp.pdf http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4878 http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4878 Whitepaper : Neat, New, and Ridiculous Flash Hacks - Black H ... Whitepaper : Neat, New, and Ridiculous Flash Hacks - Black Hat DC 2010 http://blackhat.com/presentations/bh-dc-10/Bailey_Mike/BlackHat-DC-2010-Bailey-Neat-New-Ridiculous-flash-hacks-wp.pdf http://www.secuobs.com/news/comments104122007-swfintruder.shtml#4877 http://www.secuobs.com/news/comments104122007-swfintruder.shtml#4877 Slides : Reversing DPAPI and Stealing Windows Secrets Offlin ... Slides : Reversing DPAPI and Stealing Windows Secrets Offline - Black Hat DC 2010 http://blackhat.com/presentations/bh-dc-10/Picod_Jean-Michel/BlackHat-DC-2010-Picod-DPAPI-slides.pdf http://www.secuobs.com/news/comments1423032009-exploitable_windbg_dump_audit_msec.shtml#4876 http://www.secuobs.com/news/comments1423032009-exploitable_windbg_dump_audit_msec.shtml#4876 Slides : 0-Knowledge Fuzzing - Black Hat DC 2010 ... Slides : 0-Knowledge Fuzzing - Black Hat DC 2010 http://blackhat.com/presentations/bh-dc-10/Iozzo_Vincenzo/BlackHat-DC-2010-Iozzo-0-Knowledge-Fuzzing-slides.pdf http://www.secuobs.com/news/comments210062009-fuzzgrind-sstic09.shtml#4875 http://www.secuobs.com/news/comments210062009-fuzzgrind-sstic09.shtml#4875 Whitepaper : iPhone Privacy - Black Hat DC 2010 ... Whitepaper : iPhone Privacy - Black Hat DC 2010 http://blackhat.com/presentations/bh-dc-10/Seriot_Nicolas/BlackHat-DC-2010-Seriot-iPhone-Privacy-wp.pdf http://www.secuobs.com/news/comments701012009-iphone_3g_yellowsn0w_deblocage_sim.shtml#4874 http://www.secuobs.com/news/comments701012009-iphone_3g_yellowsn0w_deblocage_sim.shtml#4874 Whitepaper : The WOMBAT API: querying a global network of ad ... Whitepaper : The WOMBAT API: querying a global network of advanced honeypots - Black Hat DC 2010 http://blackhat.com/presentations/bh-dc-10/Zanero_Stefano/BlackHat-DC-2010-Zanero-Wombat_API_wp.pdf http://www.secuobs.com/news/comments111112009-glastopf_web_honeypot_dynamic_bot.shtml#4873 http://www.secuobs.com/news/comments111112009-glastopf_web_honeypot_dynamic_bot.shtml#4873 Whitepaper : Advanced Mac OS X Physical Memory Analysis - Bl ... Whitepaper : Advanced Mac OS X Physical Memory Analysis - Black Hat DC 2010 http://blackhat.com/presentations/bh-dc-10/Suiche_Matthieu/Blackhat-DC-2010-Advanced-Mac-OS-X-Physical-Memory-Analysis-wp.pdf http://www.secuobs.com/news/comments522012009-memory_injection_mac_os_x_blackhat.shtml#4872 http://www.secuobs.com/news/comments522012009-memory_injection_mac_os_x_blackhat.shtml#4872 Whitepaper : Wireless security isn't dead, Attacking clients ... Whitepaper : Wireless security isn't dead, Attacking clients with Metasploit - Black Hat DC 2010 http://blackhat.com/presentations/bh-dc-10/Kershaw_Mike/BlackHat-DC-2010-Kershaw-dragorn-wifi-security-wp.pdf http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4871 http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4871 Whitepaper : Metasploit and Money - Black Hat DC 2010 ... Whitepaper : Metasploit and Money - Black Hat DC 2010 http://blackhat.com/presentations/bh-dc-10/Moore_HD/BlackHat-DC-2010-Moore-Metasploit-and-Money-wp.pdf http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4870 http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4870 Whitepaper : Neurosurgery With Meterpreter - Black Hat DC 20 ... Whitepaper : Neurosurgery With Meterpreter - Black Hat DC 2010 http://blackhat.com/presentations/bh-dc-10/Ames_Colin/BlackHat-DC-2010-colin-david-neurosurgery-with-meterpreter-wp.pdf http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4869 http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4869 How Wi-Fi attackers are poisoning Web browsers ... How Wi-Fi attackers are poisoning Web browsers http://www.secuobs.com/revue/news/188505.shtml http://www.secuobs.com/news/comments504062009-wepbuster_aircrack-ng_csrf_upnp.shtml#4868 http://www.secuobs.com/news/comments504062009-wepbuster_aircrack-ng_csrf_upnp.shtml#4868 cmd.dll a command interpreter transformed from an EXE into a ... cmd.dll a command interpreter transformed from an EXE into a DLL http://www.secuobs.com/revue/news/188480.shtml http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4867 http://www.secuobs.com/news/comments2328122007-metasploit.shtml#4867 Researchers develop way to catch online gaming cheats ... Researchers develop way to catch online gaming cheats http://www.secuobs.com/revue/news/188440.shtml http://www.secuobs.com/news/comments22082006-wow.shtml#4866 http://www.secuobs.com/news/comments22082006-wow.shtml#4866 Examining Windows Mobile Devices Using File System Forensic ... Examining Windows Mobile Devices Using File System Forensic Tools http://www.secuobs.com/revue/news/188484.shtml http://www.secuobs.com/news/comments1002032009-caine_forensic_livecd_wintaylor.shtml#4865 http://www.secuobs.com/news/comments1002032009-caine_forensic_livecd_wintaylor.shtml#4865 ESRT @jeremiahg - Accunetix v IBM AppScan v BurpSuitePro v C ... ESRT @jeremiahg - Accunetix v IBM AppScan v BurpSuitePro v Cenzic Hailstorm, HP WebInspect, NTOSpider v Qualys WAS http://www.secuobs.com/twitter/news/62095.shtml http://www.secuobs.com/news/comments1124042009-webshag.shtml#4864 http://www.secuobs.com/news/comments1124042009-webshag.shtml#4864 ESRT @SecurityStream - Rogue iPhone Apps Explored at Black H ... ESRT @SecurityStream - Rogue iPhone Apps Explored at Black Hat http://www.secuobs.com/twitter/news/62042.shtml http://www.secuobs.com/news/comments701012009-iphone_3g_yellowsn0w_deblocage_sim.shtml#4863 http://www.secuobs.com/news/comments701012009-iphone_3g_yellowsn0w_deblocage_sim.shtml#4863 OVAL Version 5.7 in Draft Stage ... OVAL Version 5.7 in Draft Stage http://www.secuobs.com/revue/news/188448.shtml http://www.secuobs.com/news/comments809042009-nessus_4_syn_wmi_xslt_tcp_nasl_pci.shtml#4862 http://www.secuobs.com/news/comments809042009-nessus_4_syn_wmi_xslt_tcp_nasl_pci.shtml#4862 Remote command execution exploit for the AMS2 Alert Manageme ... Remote command execution exploit for the AMS2 Alert Management Systems 2 of multiple Symantec products http://www.secuobs.com/revue/news/188474.shtml http://www.secuobs.com/news/comments20012006-symantec.shtml#4861 http://www.secuobs.com/news/comments20012006-symantec.shtml#4861 libssh2-1.2.3.tar.gz ... libssh2-1.2.3.tar.gz http://www.secuobs.com/revue/news/188476.shtml http://www.secuobs.com/news/comments108122008-ssh_attaque_botnet_syncrhonisation.shtml#4860 http://www.secuobs.com/news/comments108122008-ssh_attaque_botnet_syncrhonisation.shtml#4860 stunnel-4.31.tar.gz ... stunnel-4.31.tar.gz http://www.secuobs.com/revue/news/188477.shtml http://www.secuobs.com/news/comments117042009-heyoka_dns_tunnel_furtif_rapide.shtml#4859 http://www.secuobs.com/news/comments117042009-heyoka_dns_tunnel_furtif_rapide.shtml#4859 Interpreter Exploitation Pointer Inference and JIT Spraying ... Interpreter Exploitation Pointer Inference and JIT Spraying http://www.secuobs.com/revue/news/188400.shtml http://www.secuobs.com/news/comments914112008-browser_rootkit.shtml#4858 http://www.secuobs.com/news/comments914112008-browser_rootkit.shtml#4858 CAT.NET 2.0 - Beta ... CAT.NET 2.0 - Beta http://www.secuobs.com/revue/news/188411.shtml http://www.secuobs.com/news/comments21102009-microsoft_web_protection_library.shtml#4857 http://www.secuobs.com/news/comments21102009-microsoft_web_protection_library.shtml#4857 Internet Explorer Dynamic Object Tag And URLMON Sniffing Vul ... Internet Explorer Dynamic Object Tag And URLMON Sniffing Vulnerabilities http://www.coresecurity.com/content/internet-explorer-dynamic-object-tag http://www.secuobs.com/news/comments725022009-gazelle_isolation_os_navigateur.shtml#4856 http://www.secuobs.com/news/comments725022009-gazelle_isolation_os_navigateur.shtml#4856