Chercher :
Newsletter :  
Revues :
- Presse
- Presse FR
- Vidéos
- Twitter
- Secuobs




Sponsors :

Sommaires :
- Tendances
- Failles
- Virus
- Concours
- Reportages
- Acteurs
- Outils
- Breves
- Infrastructures
- Livres
- Tutoriels
- Interviews
- Podcasts
- Communiques
- Commentaires

Revue Presse:
- Tous
- Francophone
- Par mot clé
- Par site
- Le tagwall


Top bi-hebdo:
- Ensemble
- Articles
- Revue
- Videos
- Twitter
- Auteurs

Articles :
- Par mot clé
- Par auteur
- Par organisme
- Le tagwall


Videos :
- Toutes
- Par mot clé
- Par site
- Le tagwall


Twitter :
- Tous
- Par mot clé
- Par compte
- Le tagwall


Commentaires :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques

Secumail :
- Secunia
- Full Disclosure
- Bugtraq
- DailyDave
- Vulnwatch
- Vulndiscuss
- FunSec
- Focus-IDS
- WebAppSec
- Security-Basis

RSS/XML :
- Articles
- Brèves
- Commentaires
- Revue
- Revue FR
- Videos
- Twitter
- Secunia
- Full Disclosure
- Bugtraq
- DailyDave
- Vulnwatch
- Vulndiscuss
- FunSec
- Focus-IDS
- WebAppSec
- Security-Basis

RSS SecuObs :
- sécurité
- exploit
- windows
- microsoft
- réseau
- attaque

RSS Revue :
- security
- microsoft
- windows
- hacker
- attack
- network

RSS Videos :
- vmware
- security
- virus
- biometric
- windows
- lockpicking

RSS Twitter :
- security
- linux
- botnet
- attack
- metasploit
- cisco

RSS Comments :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques

RSS OPML :
- Français
- International



Revue de presse francophone :
- securite McAfee s'engage pour la sécurité du cloud computing
- Prelude Pro 1.0 est lancé par EdenWall Technologies
- Vilig nce GNU tar, cpio, buffer overflow via rmt
- Avast Quels sont les points communs entre google.fr, la redoute.fr et 123people.fr Leurs publicités sont infectées de virus
- Doctor Web annonce la sortie de deux nouveaux produits dotés d'un firewall
- OpenTrust signe un contrat pour assurer la migration de la PKI d'un leader de la grande distribution aux USA
- La Croix-Rouge française choisit MailInBlack pour sécuriser son système de messagerie électronique
- Acronis lance un logiciel de sauvegarde pour les Netbooks
- Les médias sociaux bénéfiques aux commerçants
- L'informatique verte face au paradoxe de l'énergie grise
- Partitionner les réseaux ad hoc mobiles les rend plus efficaces
- CERTA-2010-AVI-121 Vulnérabilité dans les produits HP Small Form Factor et HP Microtower PC 17 mars 2010
- CERTA-2010-AVI-122 Vulnérabilité du serveur HTTP d'IBM 17 mars 2010
- CERTA-2010-AVI-123 Vulnérabilité dans sendmail pour IBM AIX 17 mars 2010
- CERTA-2010-AVI-124 Multiples vulnérabilités dans OSSIM 17 mars 2010

Dernier articles de SecuObs :
- VASTO une extension Metasploit dédiée à l'exploitation des infrastructures virtuelles
- Hogger automatise la création des tables d'attributs Snort à partir des scans Nmap
- Edenwall obtient une subvention de la DGA
- Imposter 0.9 une plateforme de phishing ciblant les navigateurs Web
- Une faille dans l’implémentation RSA de OpenSSL
- Flint un scanner pour simuler, vérifier et nettoyer les règles de filtrage
- SET 0.4.1 - Social Engineering Toolkit - une plateforme de Social Engineering
- 100 000 dollars pour le Pwn2own 2010
- Un botnet qui rapporte gros
- Webraider offre un reverse shell contre une simple injection SQL

Revue de presse internationale :
- US Army Intelligence Planned to Destroy Wikileaks and failed
- Mogull s Law
- Slain cleric, SSP leader s son laid to rest Police say same culprits responsible for both attacks
- Cybercrime s bulletproof hosting exposed
- Mississippi Makes Caller ID Spoofing Illegal
- Spam was killing us Here is what we did to help , Wed, Mar 17th
- Effectiveness of User Training and Security Products in General
- ARM cortex-M3 prototyping on a budget
- The new disclosure debate and the evil Mr Moore
- More Evidence Discovered Of Vodafone-Mariposa Problem
- Resources for Learning to Pentest
- Rule release for today - March 17th, 2010
- PDC Smackdown Ron Scanman Gula vs. Rich The General Bejtlich
- Could Microsoft Hyper-V usage boost VMware vSphere adoption
- The Browser Security Taxonomy Analysis Roll Call

Annuaire des videos
- Die unsichersten Passw rter
- What is a Botnet
- Shmoocon 2010 Flying Instruments Only Legal and Privacy Issues in Cloud Computing
- Shmoocon 2010 Flying Instruments Only Legal and Privacy Issues in Cloud Computing
- Shmoocon 2010 Flying Instruments Only Legal and Privacy Issues in Cloud Computing
- Airport WiFi Challenge and your Ultra Software Picks Hak5
- National Worker Biometric ID Proposed in Immigration Bill
- Best cydia sources on 3 1 2 hackulous xsellize sinful iP
- Metasploit Adobe CollectEmailInfo Fileformat Demo
- Metasploit Tricks 1
- Shmoocon 2010 Flying Instruments Only Legal and Privacy Issues in Cloud Computing
- How To Create Private and Public Keys Using GPG4win
- Shmoocon 2010 Jsunpack network Edition Release JavaScript Decoding and Intrusion Detection 1
- Shmoocon 2010 Flying Instruments Only Legal and Privacy Issues in Cloud Computing
- VMware Fusion 3 at Macworld 2010

Revue Twitter
- PHP-Nuke ratedownload SQL Injection: http://bit.ly/9EOIwn (via @exploitdb)
- News Update: SSH without password using Putty | CodeLathe Blog http://ow.ly/16Pi76
- News Update: iKAT v2.0 http://ow.ly/16Pont
- News Update: No-IP? Squared - Get Redundant. Backup DNS for your primary DNS server http://ow.ly/16Pons
- News Update: alert(?xss?) ? The slow death of XSS « ©????²² (in)s??u?it? http://ow.ly/16PpWS
- RT @RonGula: Execellent video from DigitalBond on using Nessus to scan SCADA control systems : http://bit.ly/9wG8Kc
- Charlie Miller fait monter la pression sur Apple pour la CanSecWest http://tinyurl.com/yhr87sj - 20 vulns à venir
- Hitler and Cloud Computing Security: http://www.youtube.com/watch?v=VjfaCoA2sQk
- Cloud should, instead of a drinking game, be a tazer game wherein the speaker gets tazed.
- @ryanlrussell my green USENIX security shirt can't compete with that.

Mini-Tagwall
Revue de presse : security, microsoft, windows, hacker, attack, network, vulnerability, google, exploit, malware, internet, remote, iphone

+ de mots clés pour la revue de presse
Annuaires des videos : vmware, security, virus, biometric, windows, lockpicking, password, botnet, metasploit, tutorial, attack, crypt, linux

+ de mots clés pour les videos
Revue Twitter : security, linux, botnet, attack, metasploit, cisco, defcon, phish, exploit, google, inject, server, firewall

+ de mots clés pour la revue Twitter



Top bi-hebdo des articles de SecuObs
- Apprendre à parler Skype pour mieux le faire taire !
- Une faille dans l’implémentation RSA de OpenSSL
- SET 0.4.1 - Social Engineering Toolkit - une plateforme de Social Engineering
- Imposter 0.9 une plateforme de phishing ciblant les navigateurs Web
- Keimpx un outil d'audit pour les réseaux Microsoft Windows
- Flint un scanner pour simuler, vérifier et nettoyer les règles de filtrage
- Des nouvelles du traité secret ACTA
- Webraider offre un reverse shell contre une simple injection SQL
- 100 000 dollars pour le Pwn2own 2010
- VASTO une extension Metasploit dédiée à l'exploitation des infrastructures virtuelles

Top bi-hebdo de la revue de presse
- How to Jailbreak iPhone 3.1.3 IPSW with PwnageTool 3.1.5
- Dev Team Confirms iPhone 3.1.3 IPSW Jailbreak
- Rozlyn Papa sex tape rumours lead to malware
- FREE Kaspersky Internet Security 2010 Activation Code Valid for 6 Months
- Sun Ray interception de données des DTU
- installer backtrack 4 [tuto]
- Nouveau dictionnaire WPA Livebox
- La Face cachée de Facebook
- IIS 6 may stop responding after you install Microsoft update KB 973917
- Téléchargements Ados de mal en pis

Top bi-hebdo de l'annuaire des videos
- Comment creer un server botnet!!!!(Réseau de pc zombies)
- install MacOSX Snow Leopard in Windows PC using Vmware Workstation as virtual machine
- Ettercap Tutorial Man In The Middle Arp Attack
- vSphere 4 0 update 1 VMware Update Manager and EMC PowerPath VE
- Blaze botnet in action www opensc ws
- Windows XP Pro SP3 in VMWare off iSCSI Target using gPXE over 802.11n
- Windows Backtrack 4 in Virtualbox Part 1
- Running Wireshark on Mac OS X 10 6 Snow Leopard
- Avast Internet Security 5 0 396 Final Free Full Download Licensed with Serial Key
- BackTrack 4 on Windows XP with VMware Workstation Tutorial by Puridee HD

Top bi-hebdo de la revue Twitter
- RT @manicode: Very interesting Java ESAPI-like library coming out of Apache : http://bit.ly/9poefg
- Wirshark + SSH = Wireshark Remote Capturing - http://www.howtoforge.com/wireshark-remote-capturing (via @welias)
- Nessus Scan through a Meterpreter Session (demo) http://vimeo.com/10203481 #PaulDotCom #nessus #meterpreter
- Nux Keylogger 0.0.1 http://packetstormsecurity.org/filedesc/nuxkeylogger0.0.1.c.html
- Collection of security checks for Linux http://bit.ly/a7IH7m
- RT @FrikiFeeds: The newbie's guide to hacking the Linux kernel | TuxRadar Linux http://dlvr.it/6sQp
- Exploit for Apache mod_isapi = 2.2.14 Dangling Pointer (CVE2010-0425) vulnerability ported to Metasploit http://bit.ly/ctDQjk
- Discoverer: Automatic Protocol Reverse Engineering from Network Traces #pdf http://ow.ly/1gHd1
- RT @DidierStevens: cmd.dll reverse shell in memory payload used with PDF exploit: http://bit.ly/96thpF
- How to secure a Cisco router http://ping.fm/FkG7O

Top des articles les plus commentés
- [Metasploit 2.x – Partie 1] Introduction et présentation
- Microsoft !Exploitable un nouvel outil gratuit pour aider les développeurs à évaluer automatiquement les risques
- Webshag, un outil d'audit de serveur web
- Les navigateurs internet, des mini-systèmes d’exploitation hors de contrôle ?
- CAINE un Live[CD|USB] pour faciliter la recherche légale de preuves numériques de compromission
- [Renforcement des fonctions de sécurité du noyau Linux – Partie 1] Présentation
- Microsoft Gazelle, mini-OS virtuel basé sur MashupOS pour une navigation Web sécurisée par isolation
- Nessus 4.0 placé sous le signe de la performance, de l'unification et de la personnalisation
- Yellowsn0w un utilitaire de déblocage SIM pour le firmware 2.2 des Iphone 3G
- GreenSQL un proxy MySQL pour filtrer les requêtes SQL et contrer les injections

Les derniers commentaires publiés sur SecuObs (1-5):
- ESRT @wireheadlance - How to secure a Cisco router
- Device Fingerprinting to Fight Real-time Transaction Fraud
- Penetrating Intranets through Adobe Flex Applications
- Updated the OWASP Fuzzing Code Database
- ESRT @jcran - how to convert a NASL check to a NeXpose check
[Message Precedent sur la mailing][Message Suivant sur la mailing][Precedent dans le fil][Prochain dans le fil][Index par Date][Index par fil] [Full-disclosure] n3td3v / Andrew Wallace's psychological profile
Earlier this year, a very well educated FD member posted the psychological profile of Mr. Wallace. (Found here: http://seclists.org/fulldisclosure/2009/Jan/415 ) Interesting to view in retrospect, because I find it depicts him to a T.

This profile is almost like an instruction set for n3td3v's life. A self-fulfilling prophecy if you will.

An eery example: Anyone here remember how n3td3v posted as full-censorship a few months ago claiming to be a martyr? http://seclists.org/fulldisclosure/2009/Oct/45 . His profile states "Martyr glamorizations" aren't just n3td3v trolling you, he really considers himself as such. All the while you go out and bang your girlfriends and have fun with your friends, he's thinking the world revolves around him.

Another example is his frequent, obvious, though earnest attempts at using pseudonyms to defend himself.

Often speaking of himself in third-person, as a hired lawyer, a hacker, zealous advocate, an underground "Full censorship" movement, etc.

It's possible as of late he may have done another attention-seeking false suicide. He hasn't updated his Google Page or Twitter in over 48 hours. I'm seriously worried. He may be wasting taxpayer money with fake suicide attempts. He's trolling society now.

I would like to post Andrew Wallace's psychological profile verbatim:

=======================================
  Psychological profile of n3td3v / Andrew Wallace
=======================================

Andrew is a special kind of crazy....a friend of mine and former colleague who I highly respect (practicing Psych., who profiles individuals for a real doggone intel agency...alas, not MI-Jive) labeled Andrew as a probable schizophrenic with grandiose idealizations.

These types of people usually can't hold a job.  The most active period of delusions occur from 17-33, some think the drop-off may be due to decreased levels of testosterone as they age.  Intelligence agency intrigue & innuendo is a classic manifestation, along with imaginary friends, martyr glamorizations, alternate personalities and repeated exclamations that they will curtail their behaviors, only to come back, roaringly, foisting themselves upon a group/friend circle with a different guise or mission. Some have said it resembles alcoholic behavior in the promises "to quit..."

They constantly need an audience, since 'friends' are temporal at best...they churn through relationships like shit flowing through a goose...as people become estranged/exasperated with the constant epiphany's, revelations and God-like interpretations.

Stranger yet is that people like this can be wonderfully charming in real-life....funny for awhile, but as they age, they start losing boyish charms that previously were  
forgiven...promulgating even more outlandish behavior as grow older. Sound familiar?  We have a baseline here, folks.  Also notice he hasn't written anything technical -- it's mostly outlandish hypothesis with pointers to..not infosec...but Andrew.

They usually refuse medications to control themselves, because it dulls the essence of what they're trying to portray: someone mysterious, withholding critical information, being the sole-source of knowledge that might somehow change the world.

IMHO, I would venture to say Andrew has attempted suicide -- his type is usually unsuccessful, indeed, it's not a suicide attempt but an attention-seeking event.

He's bat-shit-fucking-crazy-nuts, but sane enough to fool someone unfamiliar with his MO.  That's what is so aggravating about this particular form of mental illness...once again, as long as there's a receptive audience, the monkey will feel the compulsion to perform.  It's akin to sexual gratification for him to see he's the subject of people's ire...don't forget that.

This type of person will emotionally soul-suck everyone he comes in contact with, and make up dramas if only to suck more
people in, because really, it's all about the adulation of n3td3v/Andrew/????, nothing else.

Solutions:  There's a few, but I wouldn't want to be responsible for the end result; once again, n3td3v is a human たまごっち (Tamagotchi) and should be treated accordingly.

Source: http://seclists.org/fulldisclosure/2009/Jan/415  ( - o z - )

___
Do You Yahoo!?
Sie sind Spam leid? Yahoo! Mail verfügt über einen herausragenden Schutz gegen Massenmails.
http://mail.yahoo.com Full-Disclosure - We believe in it.

Charter: link://[click] Hosted and sponsored by Secunia - link://[click]

Archives de la liste de diffusion Secunia
Archives de la liste de diffusion BugTraq
Archives de la liste de diffusion DailyDave
Archives de la liste de diffusion FunSec
Archives de la liste de diffusion Full Disclosure
Archives de la liste de diffusion Focus-IDS (FD)
Archives de la liste de diffusion Webappsec (FD)
Archives de la liste de diffusion Security-basics (FD)
Archives de la liste de diffusion Vulndiscuss
Archives de la liste de diffusion Vulnwatch






Les derniers commentaires publiés sur SecuObs (6-25):
- The New Disclosure Debate and the Evil Mr. Moore
- Charlie Miller Will Expose 20 Hackable Apple Security Flaws
- Digital Forensics Framework v0.5 released
- OSSIM v2.2 Multiple Vulnerabilities
- Virtual PC Hypervisor Memory Protection Vulnerability
- Virtual machines being used to obfuscate malware
- Implement the SSH-2 protocol in pure Java
- Video : ESRT @securityshell - Nessus Scan through a Meterpreter Session
- ESRT @Jhaddix Man-Just-Left-of-Middle MJLM XSS Phishing Attack Tool
- An Analysis of the Skype IMBot Logic and Functionality
- sipwitch 0.7.3
- Saint Vulnerability Scanner v7.3 on the wild
- JBroFuzz 2.0 Fuzzer Released
- Metasploit Oracle Windows
- Detecting USB Storage Usage with OSSEC
- Vulnerability in phpAdsNew, OpenAds and OpenX
- ESRT @devilok - Buck Security - Collection of security checks for Linux
- WhatWeb v0.4 - released
- SQLmap 0.8 has been Released
- Video : Discovering CSRF with OWASP's CSRFTester Tool


SecuToolBox :

Mini-Tagwall des articles publiés sur SecuObs :

Archives Failles Secunia :
- SA38986 Red Hat update for cpio
- SA38936 Red Hat update for cpio
- SA39002 Fedora update for viewvc
- SA38923 Red Hat update for cpio
- SA38997 Web Wiz Forums Cross-Site Request Forgery

Archives Mailing Full Disclosure :
- Full-disclosure Claude Mercier/CLSC-CHSLD BVLV/Reg03/SSSS est absent(e).
- Re: Full-disclosure SecurityFocus to partially shut down
- Full-disclosure Wordpad Command line argument vulnerability is it known ?
- Full-disclosure Decrypting MPPE / PPTP network traffic
- Full-disclosure USN-914-1 Linux kernel vulnerabilities

Archives Mailing Bugtraq :
- Miranda IM silent TLS failure
- Vulnerabilities in VXDate for Joomla
- CORELAN-10-13 - Windisc Local Stack BOF
- security bulletin HPSBGN02511 SSRT100022 rev.2 - HP Small Form Factor or Microtower PC with Broadcom Integrated NIC Firmware, Remote Execution of Arbitrary Code
- CORE-2010-0311 - eFront-learning PHP file inclusion vulnerability
- CORE-2009-0803: Virtual PC Hypervisor Memory Protection Vulnerability

Mini-Tagwall de l'annuaire video :

Mini-Tagwall des articles de la revue de presse :

Mini-Tagwall des Tweets de la revue Twitter :