Chercher :
Newsletter :  
Revues :
- Presse
- Presse FR
- Vidéos
- Twitter
- Secuobs




Sponsors :

Sommaires :
- Tendances
- Failles
- Virus
- Concours
- Reportages
- Acteurs
- Outils
- Breves
- Infrastructures
- Livres
- Tutoriels
- Interviews
- Podcasts
- Communiques
- Commentaires

Revue Presse:
- Tous
- Francophone
- Par mot clé
- Par site
- Le tagwall


Top bi-hebdo:
- Ensemble
- Articles
- Revue
- Videos
- Twitter
- Auteurs

Articles :
- Par mot clé
- Par auteur
- Par organisme
- Le tagwall


Videos :
- Toutes
- Par mot clé
- Par site
- Le tagwall


Twitter :
- Tous
- Par mot clé
- Par compte
- Le tagwall


Commentaires :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques

Secumail :
- Secunia
- Full Disclosure
- Bugtraq
- DailyDave
- Vulnwatch
- Vulndiscuss
- FunSec
- Focus-IDS
- WebAppSec
- Security-Basis

RSS/XML :
- Articles
- Brèves
- Commentaires
- Revue
- Revue FR
- Videos
- Twitter
- Secunia
- Full Disclosure
- Bugtraq
- DailyDave
- Vulnwatch
- Vulndiscuss
- FunSec
- Focus-IDS
- WebAppSec
- Security-Basis

RSS SecuObs :
- sécurité
- exploit
- windows
- microsoft
- réseau
- attaque

RSS Revue :
- security
- microsoft
- windows
- hacker
- attack
- network

RSS Videos :
- vmware
- security
- virus
- biometric
- windows
- lockpicking

RSS Twitter :
- security
- linux
- botnet
- attack
- metasploit
- cisco

RSS Comments :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques

RSS OPML :
- Français
- International



Revue de presse francophone :
- Windows vulnérabilités du codec Indeo
- WordPad, Word exécution de code via Word 97
- Microsoft Project exécution de code
- Windows deux vulnérabilités d'ADFS
- L'Ecole Nationale de la Magistrature opte pour la virtualisation de son SI avec DataCore-VMware et un PRA, déjà testé et éprouvé
- YouTube - PowerLabs Railgun 3 100KJ Railgun Shots with metal armatures.
- Noyau Linux permissions incorrectes sur devtmpfs
- Citrix et Microsoft établissent un partenariat dans le domaine de la virtualisation de serveurs et de postes de travail avec V-Alliance
- DPii remporte un contrat avec Frutos San Eulalia portant sur la dématérialisation des factures de l'entreprise agro-alimentaire
- XMCO Deux add-ons malveillants pour Firefox disponibles sur le site de Mozilla
- Fujitsu et Symantec vont élargir leur partenariat stratégique mondial
- Bull et Microsoft annoncent un accord de coopération stratégique dans le domaine de l'interopérabilité
- Forum ATENA publie La Sécurité à l'usage des Collectivités locales et territoriales
- Donne-t-on au Correspondant Informatique et Libertés les moyens d'être efficace
- IT Partners 2010 2 jours de business intensif

Dernier articles de SecuObs :
- rWeb v4: Une nouvelle version aux multiples innovations
- Une attaque contre l’algorithme A5/3
- Avis d’avalanche de 0days chez Intevydis
- Management de la sécurité de l’information et implémentation ISO 27001
- Preuve de concept pour contourner les restrictions d'accès DMA via l'exploitation d'une vulnérabilité d'Intel TXT
- Des millions de XSS dans les clicktags
- WPA Cracker un cluster en ligne de 400 CPU et un dictionnaire de 135 millions d'entrées pour casser, ou pas, WPA/WPA2-PSK en 20 minutes
- Le plug-in IDADWARF remporte le concours organisé par HexRays
- Les imprimantes réseau, toujours un maillon faible de la sécurité informatique
- Nessus 4.2, une nouvelle interface Web en Flash, des performances améliorées et l'analyse différentielle des rapports d'audit

Revue de presse internationale :
- Indian pleads guilty in international online brokerage hacking scheme
- ShmooCon Your iPhone s Dirty Little Security Secret
- Poughkeepsie, N.Y., slams bank for 378,000 online theft
- Open Security Foundation State of the Union 2010
- University worker accused of extorting student file sharers
- Reading between the lines of VU 144233
- Weak cipher suites with EV certificates
- Special Report HITB2009 CTF Weapons of Mass Destruction
- Black Hawk Down
- A Quick Word on Security Conferences
- Over 50pourcents of Power Plants and Other Critical Infrastructures Admit to Being Hacked
- The typical logging problem as viewed from syslog
- Security Acts Issue 2 Wouter Veugelen
- Researchers Break DECT
- sydbox A ptrace-based sandbox

Annuaire des videos
- Weld County Atlas E Missile Silo Site Tour
- Windows Vista 2008 7 SMB2 DOS flaw CVE 2009 3103
- Exploits Part 1 mov
- Installing Backtrack 4
- VMware Fusion 2 Beta Feature Demo
- How to Install Computer Memory in an Apple Mac Pro
- Metasploit Post Exploitation Meterpreter Script Prefetchtool
- Vsphere within VMware Workstation 7 Part 1
- GNU Radio with Audio Recognition
- HNNCast020510 News mov
- AVG 9 0 free edition review
- HACKTHEPLANET 4 ettercap 1 4
- HNNCast020510 Quickies mov
- ShmooCon S
- 3d test

Revue Twitter
- [Video] Attacking SSL PKI (Louisville Infosec) http://securitytube.net/Attacking-SSL-PKI-(Louisville-Infosec)-video.aspx
- [Video] Cryptography (Introduction) http://securitytube.net/Cryptography-(Introduction)-video.aspx
- [Video] Blocking Malicious Attacks Using SQL Injection Signature Evasion http://bit.ly/7uTz7u
- [Video] HNNCast for the Second week of October 2009 http://securitytube.net/HNNCast-for-the-Second-week-of-October-2009-video.aspx
- [Video] SQL Injection Walkthrough http://securitytube.net/SQL-Injection-Walkthrough-video.aspx
- @kpyke That's a difference between ruby 1.8 and 1.9
- RT @scottamoulton This is my new DIY Data Recovery Speech at Shmoocon 2010 Feb 6th - http://ustre.am/:iW3n
- RT @hdmoore: DECT has been cracked: http://bit.ly/aOApb6 (via Int0x80)
- Finally managed to get my new RFID reader working in XP in VirtualBox, now I can play!
- @NW_Mktg_Guy I've been head-down - but w/ a number of pieces on privacy/security last 14 days - HuffPO, my blog, CSOonline ciscoblog

Mini-Tagwall
Revue de presse : security, microsoft, windows, hacker, attack, network, vulnerability, google, exploit, malware, internet, remote, iphone

+ de mots clés pour la revue de presse
Annuaires des videos : vmware, security, virus, biometric, windows, lockpicking, password, metasploit, botnet, tutorial, crypt, linux, attack

+ de mots clés pour les videos
Revue Twitter : security, linux, botnet, attack, metasploit, cisco, defcon, phish, exploit, google, inject, server, firewall

+ de mots clés pour la revue Twitter



Top bi-hebdo des articles de SecuObs
- Apprendre à parler Skype pour mieux le faire taire !
- WPA Cracker un cluster en ligne de 400 CPU et un dictionnaire de 135 millions d'entrées pour casser, ou pas, WPA/WPA2-PSK en 20 minutes
- rWeb v4: Une nouvelle version aux multiples innovations
- Les imprimantes réseau, toujours un maillon faible de la sécurité informatique
- Nessus 4.2, une nouvelle interface Web en Flash, des performances améliorées et l'analyse différentielle des rapports d'audit
- La sécurité des clés USB mise à mal par USBDUMPER
- Comment changer un mot de passe perdu pour un compte WINDOWS
- Une attaque contre l’algorithme A5/3
- Management de la sécurité de l’information et implémentation ISO 27001
- Avis d’avalanche de 0days chez Intevydis

Top bi-hebdo de la revue de presse
- FREE Kaspersky Internet Security 2010 Activation Code Valid for 6 Months
- The Automation Labs Facebook security scare
- installer backtrack 4 [tuto]
- Nouveau dictionnaire WPA Livebox
- Dev Team Confirms iPhone 3.1.3 IPSW Jailbreak
- iWep PRO v1.0.8 Released
- BitDefender met à  disposition un outil de désinfection gratuit contre Zimuse
- New Cydia Repository and iWep PRO v1.0.9
- iWep PRO 1.1.0 Released
- The RockYou 32 Million Password List Top 100

Top bi-hebdo de l'annuaire des videos
- Install mod security on ubuntu 9.04
- Installing spoonwep and spoonwpa
- Cain and Abel Network SNiffer Tutorial
- Exploit REALVNC 4.1.1 Saelyx
- Howto Cain Abel Tutorial Passw rter auf LAN Partys zocken
- DNS Spoofing + Arp poisoning www.sitehackers.com.br
- Wireshark Tutorial Part 2
- How to create a SNORT rule and test it.
- install MacOSX Snow Leopard in Windows PC using Vmware Workstation as virtual machine
- Intro Metasploit meterpreter reverse tcp payload exe at first glance

Top bi-hebdo de la revue Twitter
- OMG. Booting BackTrack in printer device :Q___ -- http://tinyurl.com/y9xfhh6
- XSS/SQLi BARCODE CHEATSHEET: Fr PDC mailing list thought @rybolov @jack_mannino would b interested in. http://bit.ly/cWQoZi
- New Whitepaper: 6 mo of Botnets - Trends, Observations, and Geographical Links as HTTP CCs double http://bit.ly/axw4sS
- TTYtter 0.9.11 now avail in BackTrack4 Repository.
- NetBIOS spoofing: [link] http://bit.ly/9sVTRc
- RT: @RSnake Looks like my previous list made it into Nikto http://trac2.assembla.com/Nikto_2/ticket/119 w00t!
- RT @securityshell Your browser history can be sniffed with just 64 lines of Python (tested with Firefox 3.5.3 http://tinyurl.com/yl9vrlj
- JavaScript implementation of Shamir's Secure Secret Sharing scheme: http://tinyurl.com/ycszjj8 #security
- Google offering a Public DNS? wow why am i concerned about it? hmmm http://bit.ly/4ovCFI
- Detecting Botnets with Network ADS « The Day Before Zero http://bit.ly/cfylHC

Top des articles les plus commentés
- [Metasploit 2.x – Partie 1] Introduction et présentation
- Microsoft !Exploitable un nouvel outil gratuit pour aider les développeurs à évaluer automatiquement les risques
- Webshag, un outil d'audit de serveur web
- CAINE un Live[CD|USB] pour faciliter la recherche légale de preuves numériques de compromission
- Les navigateurs internet, des mini-systèmes d’exploitation hors de contrôle ?
- [Renforcement des fonctions de sécurité du noyau Linux – Partie 1] Présentation
- Nessus 4.0 placé sous le signe de la performance, de l'unification et de la personnalisation
- Microsoft Gazelle, mini-OS virtuel basé sur MashupOS pour une navigation Web sécurisée par isolation
- Yellowsn0w un utilitaire de déblocage SIM pour le firmware 2.2 des Iphone 3G
- [Hacking Hardware - Partie 1] - Introduction et présentation

Les derniers commentaires publiés sur SecuObs (1-5):
- ESRT @netsparker @jeremiahg - Scanner Review Vendors begin responding: HP Web
- ESRT @dloss - Python tools for penetration testers
- ESRT @sagar38 @laramies @matalaz - Pyew A Python tool to analyze malware
- synspam 0.4.0-1
- sipwitch 0.7.0
[Message Precedent sur la mailing][Message Suivant sur la mailing][Precedent dans le fil][Prochain dans le fil][Index par Date][Index par fil] [Full-disclosure] n3td3v / Andrew Wallace's psychological profile
Earlier this year, a very well educated FD member posted the psychological profile of Mr. Wallace. (Found here: http://seclists.org/fulldisclosure/2009/Jan/415 ) Interesting to view in retrospect, because I find it depicts him to a T.

This profile is almost like an instruction set for n3td3v's life. A self-fulfilling prophecy if you will.

An eery example: Anyone here remember how n3td3v posted as full-censorship a few months ago claiming to be a martyr? http://seclists.org/fulldisclosure/2009/Oct/45 . His profile states "Martyr glamorizations" aren't just n3td3v trolling you, he really considers himself as such. All the while you go out and bang your girlfriends and have fun with your friends, he's thinking the world revolves around him.

Another example is his frequent, obvious, though earnest attempts at using pseudonyms to defend himself.

Often speaking of himself in third-person, as a hired lawyer, a hacker, zealous advocate, an underground "Full censorship" movement, etc.

It's possible as of late he may have done another attention-seeking false suicide. He hasn't updated his Google Page or Twitter in over 48 hours. I'm seriously worried. He may be wasting taxpayer money with fake suicide attempts. He's trolling society now.

I would like to post Andrew Wallace's psychological profile verbatim:

=======================================
  Psychological profile of n3td3v / Andrew Wallace
=======================================

Andrew is a special kind of crazy....a friend of mine and former colleague who I highly respect (practicing Psych., who profiles individuals for a real doggone intel agency...alas, not MI-Jive) labeled Andrew as a probable schizophrenic with grandiose idealizations.

These types of people usually can't hold a job.  The most active period of delusions occur from 17-33, some think the drop-off may be due to decreased levels of testosterone as they age.  Intelligence agency intrigue & innuendo is a classic manifestation, along with imaginary friends, martyr glamorizations, alternate personalities and repeated exclamations that they will curtail their behaviors, only to come back, roaringly, foisting themselves upon a group/friend circle with a different guise or mission. Some have said it resembles alcoholic behavior in the promises "to quit..."

They constantly need an audience, since 'friends' are temporal at best...they churn through relationships like shit flowing through a goose...as people become estranged/exasperated with the constant epiphany's, revelations and God-like interpretations.

Stranger yet is that people like this can be wonderfully charming in real-life....funny for awhile, but as they age, they start losing boyish charms that previously were  
forgiven...promulgating even more outlandish behavior as grow older. Sound familiar?  We have a baseline here, folks.  Also notice he hasn't written anything technical -- it's mostly outlandish hypothesis with pointers to..not infosec...but Andrew.

They usually refuse medications to control themselves, because it dulls the essence of what they're trying to portray: someone mysterious, withholding critical information, being the sole-source of knowledge that might somehow change the world.

IMHO, I would venture to say Andrew has attempted suicide -- his type is usually unsuccessful, indeed, it's not a suicide attempt but an attention-seeking event.

He's bat-shit-fucking-crazy-nuts, but sane enough to fool someone unfamiliar with his MO.  That's what is so aggravating about this particular form of mental illness...once again, as long as there's a receptive audience, the monkey will feel the compulsion to perform.  It's akin to sexual gratification for him to see he's the subject of people's ire...don't forget that.

This type of person will emotionally soul-suck everyone he comes in contact with, and make up dramas if only to suck more
people in, because really, it's all about the adulation of n3td3v/Andrew/????, nothing else.

Solutions:  There's a few, but I wouldn't want to be responsible for the end result; once again, n3td3v is a human たまごっち (Tamagotchi) and should be treated accordingly.

Source: http://seclists.org/fulldisclosure/2009/Jan/415  ( - o z - )

___
Do You Yahoo!?
Sie sind Spam leid? Yahoo! Mail verfügt über einen herausragenden Schutz gegen Massenmails.
http://mail.yahoo.com Full-Disclosure - We believe in it.

Charter: link://[click] Hosted and sponsored by Secunia - link://[click]

Archives de la liste de diffusion Secunia
Archives de la liste de diffusion BugTraq
Archives de la liste de diffusion DailyDave
Archives de la liste de diffusion FunSec
Archives de la liste de diffusion Full Disclosure
Archives de la liste de diffusion Focus-IDS (FD)
Archives de la liste de diffusion Webappsec (FD)
Archives de la liste de diffusion Security-basics (FD)
Archives de la liste de diffusion Vulndiscuss
Archives de la liste de diffusion Vulnwatch






Les derniers commentaires publiés sur SecuObs (6-25):
- Airdrop-ng Release
- GuruPlug, the next generation of SheevaPlug
- Anomos 0.9 Released Public Tracker Up and Running
- ESRT @IBMFedCyber - DECT crypto cracked academically
- Responder Professional 2.0, a Windows physical memory and automated malware a
- ESRT @Marsmensch @hdmoore - Metasploit supports owning insecure IIS WebDAV
- Added a small hack to ronin-ext, Ronin::Autoload: autoloads missing constants
- ESRT @proactivedefend - Iptables Limits Connections Per IP
- ESRT @EdiStrosar @spendergrsec - Linux 2618+ infoleak exploit added to Enligh
- ESRT @SecMailLists - Full Disclosure: XSS vulnerability in NEW orkut
- ESRT @helpnetsecurity @lbhuston - Zero-day vulnerabilities on the market
- ESRT @agar38 @achillean @theprez98 - SHODAN for Penetration Testers slides fr
- Video : ESRT @secdocs - Using OpenBSC for fuzzing of GSM handsets
- ESRT @helpnetsecurity - Configure Netfilter Shorewall 4.4.7 RC2 released
- PS3 hypervisor exploit reproduced
- Mozilla Removes Two Malicious Firefox Add-Ons
- Wrapping insecure web apps with Apache
- Oracle Patches Critical WebLogic Flaw
- Directory traversal as a reconnaissance tool
- Video : Scanning with the NetChk Configure NIST Policy


SecuToolBox :

Mini-Tagwall des articles publiés sur SecuObs :

Archives Failles Secunia :
- SA38414 Fedora update for gmime22
- SA38429 Debian update for squid and squid3
- SA38461 Ubuntu update for kernel
- SA38476 F5 Products TCP Implementation Denial of Service
- SA38377 Fedora update for dokuwiki

Archives Mailing Full Disclosure :
- Full-disclosure Claude Mercier/CLSC-CHSLD BVLV/Reg03/SSSS est absent(e).
- Re: Full-disclosure about jit and dep+aslr
- Re: Full-disclosure about jit and dep+aslr
- Re: Full-disclosure about jit and dep+aslr
- Re: Full-disclosure about jit and dep+aslr

Archives Mailing Bugtraq :
- CORELAN-10-010 - GeFest Web HomeServer v1.0 Remote Directory Traversal Vulnerability
- DSECRG-09-065 TVUPlayer PlayerOcx.ocx ActiveX - Insecure method
- mongoose Space Character Remote File Disclosure Vulnerability
- Suspected SpamVulnerability in Tagcloud for DataLife Engine
- Re: Multiple vulnerabilities in XAMPP (advisory #7)
- Re: Samba Remote Zero-Day Exploit

Mini-Tagwall de l'annuaire video :

Mini-Tagwall des articles de la revue de presse :

Mini-Tagwall des Tweets de la revue Twitter :