Contribuez à SecuObs en envoyant des bitcoins ou des dogecoins.
Nouveaux articles (fr): 1pwnthhW21zdnQ5WucjmnF3pk9puT5fDF
Amélioration du site: 1hckU85orcGCm8A9hk67391LCy4ECGJca

Contribute to SecuObs by sending bitcoins or dogecoins.

Chercher :
Newsletter :  


Revues :
- Presse
- Presse FR
- Vidéos
- Twitter
- Secuobs





Sommaires :
- Tendances
- Failles
- Virus
- Concours
- Reportages
- Acteurs
- Outils
- Breves
- Infrastructures
- Livres
- Tutoriels
- Interviews
- Podcasts
- Communiques
- USBsploit
- Commentaires


Revue Presse:
- Tous
- Francophone
- Par mot clé
- Par site
- Le tagwall


Top bi-hebdo:
- Ensemble
- Articles
- Revue
- Videos
- Twitter
- Auteurs


Articles :
- Par mot clé
- Par auteur
- Par organisme
- Le tagwall


Videos :
- Toutes
- Par mot clé
- Par site
- Le tagwall


Twitter :
- Tous
- Par mot clé
- Par compte
- Le tagwall


Commentaires :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques


RSS/XML :
- Articles
- Commentaires
- Revue
- Revue FR
- Videos
- Twitter


RSS SecuObs :
- sécurité
- exploit
- windows
- attaque
- outil
- microsoft


RSS Revue :
- security
- microsoft
- windows
- hacker
- attack
- network


RSS Videos :
- curit
- security
- biomet
- metasploit
- biometric
- cking


RSS Twitter :
- security
- linux
- botnet
- attack
- metasploit
- cisco


RSS Comments :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques


RSS OPML :
- Français
- International











Revue de presse francophone :
- Appaloosa AppDome nouent un partenariat pour accompagner les entreprises dans le déploiement et la protection des applications mobiles
- D-Link offre une avec un routeur VPN sans fil AC
- 19 mai Paris Petit-Déjeuner Coreye Développer son business à l'abri des cyberattaques
- POYNTING PRESENTE LA NOUVELLE ANTENNE OMNI-291, SPECIALE MILIEU MARITIME, CÔTIER ET MILIEU HUMIDE
- Flexera Software Les utilisateurs français de PC progressent dans l'application de correctifs logiciels, mais des défis de tailles subsistent
- Riverbed lance SD-WAN basé sur le cloud
- Fujitsu multi-récompensé VMware lui décerne plusieurs Partner Innovation Awards à l'occasion du Partner Leadership Summit
- Zscaler Private Access sécuriser l'accès à distance en supprimant les risques inhérents aux réseaux privés virtuels
- QNAP annonce la sortie de QTS 4.2.1
- Une enquête réalisée par la société de cyber sécurité F-Secure a décelé des milliers de vulnérabilités graves, potentiellement utilisables par des cyber criminels pour infiltrer l'infrastru
- Trouver le juste équilibre entre une infrastructure dédiée et cloud le dilemme de la distribution numérique
- 3 juin - Fleurance - Cybersécurité Territoires
- Cyber-assurances Seules 40 pourcents des entreprises françaises sont couvertes contre les violations de sécurité et les pertes de données
- Des étudiants de l'ESIEA inventent CheckMyHTTPS un logiciel qui vérifie que vos connexions WEB sécurisées ne sont pas interceptées
- Les produits OmniSwitch d'Alcatel-Lucent Enterprise ALE gagnent en sécurité pour lutter contre les cyber-attaques modernes

Dernier articles de SecuObs :
- DIP, solution de partage d'informations automatisée
- Sqreen, protection applicative intelligente de nouvelle génération
- Renaud Bidou (Deny All): "L'innovation dans le domaine des WAFs s'oriente vers plus de bon sens et d'intelligence, plus de flexibilité et plus d'ergonomie"
- Mises à jour en perspective pour le système Vigik
- Les russes ont-ils pwn le système AEGIS ?
- Le ministère de l'intérieur censure une conférence au Canada
- Saut d'air gap, audit de firmware et (in)sécurité mobile au programme de Cansecwest 2014
- GCHQ: Le JTRIG torpille Anonymous qui torpille le JTRIG (ou pas)
- #FIC2014: Entrée en territoire inconnu
- Le Sénat investit dans les monnaies virtuelles

Revue de presse internationale :
- VEHICLE CYBERSECURITY DOT and Industry Have Efforts Under Way, but DOT Needs to Define Its Role in Responding to a Real-world Attack
- Demand letter served on poll body over disastrous Comeleak breach
- The Minimin Aims To Be The Simplest Theremin
- Hacking group PLATINUM used Windows own patching system against it
- Hacker With Victims in 100 Nations Gets 7 Years in Prison
- HPR2018 How to make Komboucha Tea
- Circuit Bender Artist bends Fresnel Lens for Art
- FBI Director Suggests iPhone Hacking Method May Remain Secret
- 2016 Hack Miami Conference May 13-15, 2016
- 8-bit Video Wall Made From 160 Gaming Keyboards
- In An Era Of Decline, News Sites Can t Afford Poor Web Performance
- BeautifulPeople.com experiences data breach 1m affected
- Swedish Air Space Infringed, Aircraft Not Required
- Why cybercriminals attack healthcare more than any other industry
- Setting the Benchmark in the Network Security Forensics Industry

Annuaire des videos
- FUZZING ON LINE PART THREE
- Official Maltego tutorial 5 Writing your own transforms
- Official Maltego tutorial 6 Integrating with SQL DBs
- Official Maltego tutorial 3 Importing CSVs spreadsheets
- install zeus botnet
- Eloy Magalhaes
- Official Maltego tutorial 1 Google s websites
- Official Maltego tutorial 4 Social Networks
- Blind String SQL Injection
- backdoor linux root from r57 php shell VPS khg crew redc00de
- How To Attaque Pc With Back Track 5 In Arabique
- RSA Todd Schomburg talks about Roundup Ready lines available in 2013
- Nessus Diagnostics Troubleshooting
- Panda Security Vidcast Panda GateDefender Performa Parte 2 de 2
- MultiPyInjector Shellcode Injection

Revue Twitter
- RT @fpalumbo: Cisco consistently leading the way ? buys vCider to boost its distributed cloud vision #CiscoONE
- @mckeay Looks odd... not much to go on (prob some slideshow/vid app under Linux)
- [SuggestedReading] Using the HTML5 Fullscreen API for Phishing Attacks
- RT @BrianHonan: Our problems are not technical but cultural. OWASP top 10 has not changed over the years @joshcorman #RSAC
- RT @mikko: Wow. Apple kernels actually have a function called PE_i_can_has_debugger:
- [Blog Spam] Metasploit and PowerShell payloads
- PinkiePie Strikes Again, Compromises Google Chrome in Pwnium Contest at Hack in the Box: For the second time thi...
- @mikko @fslabs y'all wldn't happen to have lat/long data sets for other botnets, wld you? Doing some research (free/open info rls when done)
- RT @nickhacks: Want to crash a remote host running Snow Leopard? Just use: nmap -P0 -6 --script=targets-ipv6-multicast-mld #wishiwaskidding
- An inexpensive proxy service called is actually a front for #malware distribution -

Mini-Tagwall
Revue de presse : security, microsoft, windows, hacker, attack, network, vulnerability, google, exploit, malware, internet, remote, iphone

+ de mots clés pour la revue de presse

Annuaires des videos : curit, security, biomet, metasploit, biometric, cking, password, windows, botnet, defcon, tutorial, crypt, xploit

+ de mots clés pour les videos

Revue Twitter : security, linux, botnet, attack, metasploit, cisco, defcon, phish, exploit, google, inject, server, firewall

+ de mots clés pour la revue Twitter

Top bi-hebdo des articles de SecuObs
- [Ettercap – Partie 2] Ettercap par l'exemple - Man In the Middle et SSL sniffing
- [Infratech - release] version 0.6 de Bluetooth Stack Smasher
- [IDS Snort Windows – Partie 2] Installation et configuration
- [Infratech - vulnérabilité] Nouvelle version 0.8 de Bluetooth Stack Smasher
- Mises à jour en perspective pour le système Vigik
- USBDumper 2 nouvelle version nouvelles fonctions !
- EFIPW récupère automatiquement le mot de passe BIOS EFI des Macbook Pro avec processeurs Intel
- La sécurité des clés USB mise à mal par USBDUMPER
- Une faille critique de Firefox expose les utilisateurs de Tor Browser Bundle
- Installation sécurisée d'Apache Openssl, Php4, Mysql, Mod_ssl, Mod_rewrite, Mod_perl , Mod_security

Top bi-hebdo de la revue de presse
- StackScrambler and the Tale of a Packet Parsing Bug

Top bi-hebdo de l'annuaire des videos
- DC++ Botnet. How To DDos A Hub With Fake IPs.
- Comment creer un server botnet!!!!(Réseau de pc zombies)
- Defcon 14 Hard Drive Recovery Part 3

Top bi-hebdo de la revue Twitter
- RT @secureideas: I believe that all the XSS flaws announced are fixed in CVS. Will test again tomorrow if so, release 1.4.3. #BASESnort
- Currently, we do not support 100% of the advanced PDF features found in Adobe Reader... At least that's a good idea.
- VPN (google): German Foreign Office Selects Orange Business for Terrestrial Wide: Full
- @DisK0nn3cT Not really, mostly permission issues/info leak...they've had a couple of XSS vulns but nothing direct.
- Swatting phreaker swatted and heading to jail: A 19-year-old American has been sentenced to eleven years in pris..
- RT @fjserna You are not a true hacker if the calc.exe payload is not the scientific one... infosuck.org/0x0035.png

Top des articles les plus commentés

Index filtré de tous les Tweets pour le terme apache

Si vous voulez bloquer un compte Twitter ou nous en proposer un

Menu > Elements de la revue Twitter : - l'ensemble [tous] - par mots clé [tous] - par compte [tous] - le tagwall [voir]

S'abonner au fil RSS global de la revue Twitter


Suivants


Index filtré des Tweets pour le terme apache (457 résultats)
S'abonner au fil RSS Twitter pour le terme apache


[2012-10-10] - 15:49:40 - "makash" - @makash My apache config query resolved in record time by @kingslyj. :) cc @pentestit

[2012-10-06] - 21:16:25 - "Viss" - uh, so this is what it looks like when an iphone tries to pull an mp3 from apache. bout 20 pages of this. http://t.co/Cxa4YaWT

[2012-10-02] - 22:09:59 - "SecMailLists" - BUGTRAQ: [ MDVSA-2012:154-1 ] apache http://t.co/BIAcvst1

[2012-10-02] - 05:22:14 - "pentestit" - RT @apachefriends: Now officially out: New XAMPP 1.8.1 for Windows and Linux. More infos at http://t.co/5HOv6v8I

[2012-10-01] - 23:30:27 - "SecMailLists" - Full Disclosure: [ MDVSA-2012:154 ] apache http://t.co/6pHbv6ZO

[2012-10-01] - 23:30:27 - "SecMailLists" - BUGTRAQ: [ MDVSA-2012:154 ] apache http://t.co/Y4lQPOlR

[2012-10-01] - 23:30:27 - "SecMailLists" - Full Disclosure: [ MDVSA-2012:154-1 ] apache http://t.co/3aUPpgKl

[2012-10-01] - 22:29:43 - "opexxx" - [ MDVSA-2012:154-1 ] apache http://t.co/u7I2Q3Pt

[2012-09-30] - 02:03:38 - "ebordac" - [ MDVSA-2012:154 ] apache -- http://t.co/wthkJsgr

[2012-09-28] - 21:29:09 - "opexxx" - [ MDVSA-2012:154 ] apache http://t.co/06vPJnbX

[2012-09-21] - 07:23:03 - "haxorthematrix" - #lazyweb - Need reccomendations for some forum software on apache/linux, that is easy to use, configure and can be secured. Captcha a bonus.

[2012-09-17] - 20:19:59 - "alexandrosilva" - Remove password from openssl key file (drerik)-http://t.co/hIIaCVxS ? - #openssl #apache #httpd (via @usscastro)

[2012-09-11] - 00:48:41 - "Netw0rkSecurity" - #OWASP apache-struts-csrf(78182) - ISS X-Force - Internet Security Systems - Description: Apache Struts is vulnerab ... http://t.co/KXFXT0eB

[2012-09-06] - 15:49:48 - "isaudit" - #auditscript a day: To audit apache, first capture this configuration file: cat /etc/httpd.conf

[2012-08-02] - 08:01:08 - "ebordac" - [ MDVSA-2012:118 ] apache-mod_security -- http://t.co/YxhX9wkM

[2012-07-28] - 17:43:19 - "cudeso" - @Akhmees Good post; having requests redirected to an apache host and then use awstats to get connection counts. Thanks!

[2012-07-27] - 21:14:46 - "opexxx" - [ MDVSA-2012:118 ] apache-mod_security http://t.co/yT7lGymz

[2012-07-27] - 02:03:25 - "SecMailLists" - BUGTRAQ: [ MDVSA-2012:114 ] apache-mod_auth_openid http://t.co/hjQm8BAh

[2012-07-26] - 05:50:37 - "hackmiami" - RT @webpwnized: Mutillidae 2.2.3 released w/ new vulns, more hints, 2 new pages interface, works w/ xampp 1.8, mysql 5.5, apache 2 ...

[2012-07-19] - 11:47:35 - "Viss" - ?@MrB0t: Ahem. I'd like you to meet my friend, called Mobile. He's a bit slow on the uptake.? - apache basic auth, no crypto, cleartext :D

[2012-07-06] - 09:16:34 - " oncee" - RT @TrustedSec: The Social-Engineer Toolkit (SET) v3.4.1 has been released. Adds apache checks, bug fix loop, and enhancements.

[2012-06-21] - 13:09:05 - "seccubus" - @ethicalhack3r apache license?

[2012-06-18] - 00:04:06 - "exploitdb" - [remote] - PHP apache_request_headers Function Buffer Overflow: PHP apache_request_headers Function Buffer Overflow http://t.co/oHpPqdwy

[2012-06-17] - 21:14:48 - " opexxx" - PHP apache_request_headers Function Buffer Overflow http://t.co/pRgPpVnN #exploit http://t.co/UlJ9V0ON

[2012-06-17] - 19:36:27 - " packet_storm" - PHP apache_request_headers Function Buffer Overflow http://t.co/WP95md33 #exploit

[2012-06-08] - 17:56:56 - "abedra" - @bryanl agreed. The sad truth is that it nginx is easier to configure than apache though :(

[2012-05-21] - 13:26:44 - "dave_rel1k" - @jmergy thanks man! lots more coming soon..adding more logging around apache next

[2012-05-18] - 10:12:42 - "jduck1337" - RT @_juan_vazquez_: Added #metasploit module weblogic apache plugin POST bof, demo http://t.co/cELsKjYd, fingerprint via transfer-encodi ...

[2012-05-14] - 12:44:23 - "SPoint" - OWASP France Daily Digest is out! http://t.co/g1vdWtQB ? Top stories today via @apacheshiro @soaj1664ashar @eoinkeary @issaarba

[2012-05-13] - 12:16:32 - " Mephux" - @x0red @corq most of the problems I get are with basic setup.. I.e apache and MySQL .. Not much I can do there

[2012-05-12] - 05:23:15 - "opexxx" - Medium - CVE-2012-2329 - Buffer overflow in the apache_request_headers...: Buffer overflow in the apache_request... http://t.co/C5AJJQkN

[2012-05-12] - 05:08:17 - "dave_rel1k" - @dilisnya if i import a msf payload and use the apache verison it seems to work fine...

[2012-05-12] - 05:08:17 - "dave_rel1k" - @Mormaii2 it'll be in the next release, but stop apache first /etc/init.d/apache2 stop

[2012-05-12] - 05:08:17 - "dave_rel1k" - @dilisnya yea still working..give it a shot and take a look at the index.html under apache home root and let me know!

[2012-05-12] - 05:08:17 - "dave_rel1k" - @Mormaii2 cred harvester doesnt worth with apache ... needs to be the SET server its all native python

[2012-05-11] - 11:10:13 - "i0n1c" - @KevinSMcArthur afaik Apache does not keep ssl key files open, it reads them into apache memory, where a local PHP exploit can steal it

[2012-05-11] - 11:10:13 - "i0n1c" - @KevinSMcArthur it is unlikely that you can write to a DSO because apache most likely opened that FD with read permissions only

[2012-05-11] - 11:10:13 - "i0n1c" - @PierreJoye well include php://fd/XXX; where XXX is the fd number of apache's TCP socket bypasses allow_url_include since 2010

[2012-05-11] - 11:10:13 - "i0n1c" - @KevinSMcArthur writing fake requests into the apache logfiles is bad enough and I didn't try if a PHP script can steal port 80 socket

[2012-05-11] - 11:10:13 - "i0n1c" - @KevinSMcArthur every single file descriptor apache opens (and keeps open) as root user is inherited by the forked lower privileged process

[2012-05-11] - 10:39:05 - "egyp7" - @i0n1c they can also turn the apache socket into a shell in the same way. Metasploit has a php findsock stager for just that purpose.

[2012-05-10] - 18:00:57 - "i0n1c" - @lukegb stdin won't help you in an apache module

[2012-05-10] - 05:26:08 - "gcouprie" - quelqu'un connaitrait une bonne doc sur l'install apache2/fcgid/suexec-custom/php ? Ce que je trouve n'est pas très clair :/

[2012-05-09] - 14:13:48 - " 0xcharlie" - @dakami @marshray @dangoodin001 @ErrataRob @i0n1c I don't think think it's fair to group something like php with, say, apache or IIS.

[2012-05-04] - 20:20:40 - "xanda" - RT @thewildcat: The PHP-CGI apache_request_headers vulnerability details: http://t.co/NFgQpdkY#epic #fail :D

[2012-05-04] - 16:34:42 - "i0n1c" - RT @ochsff: Ok, so since it's all over Twitter now, apache_request_headers is vulnerable to a remote exploitable heap buffer overflow?

[2012-05-04] - 16:34:42 - "i0n1c" - RT @ochsff: ? but only applies if it's php-cgi and the script calls apache_request_headers(..) or one of its aliases.

[2012-05-04] - 16:23:03 - "postmodern_mod3" - RT @ochsff: Ok, so since it's all over Twitter now, apache_request_headers is vulnerable to a remote exploitable heap buffer overflow?

[2012-05-04] - 16:23:03 - "postmodern_mod3" - RT @ochsff: ? but only applies if it's php-cgi and the script calls apache_request_headers(..) or one of its aliases.

[2012-05-04] - 08:31:05 - " jduck1337" - Anyone tried to trigger the fastcgi php-cgi apache_request_headers/getallheaders remote stack buffer overflow yet?

[2012-05-03] - 06:17:17 - "rgerhards" - @J0elog just read it. Is the sequence right?I think it wld be better to have apache in front of the other actions-discard msg when forwarded

[2012-04-16] - 12:16:46 - "SecMailLists" - Full Disclosure: [SECURITY] [DSA 2452-1] apache2 security update http://t.co/nzYYVCtX


Suivants


S'abonner au fil RSS global de la revue Twitter


Menu > Elements de la revue Twitter : - l'ensemble [tous] - par mots clé [tous] - par compte [tous] - le tagwall [voir]




SecuToolBox :

Mini-Tagwall des articles publiés sur SecuObs :

Mini-Tagwall de l'annuaire video :

Mini-Tagwall des articles de la revue de presse :

Mini-Tagwall des Tweets de la revue Twitter :