Events Related:

Resources:

Tools:

  • Stoned Bootkit – stoned-vienna.com
    Stoned Bootkit is a new Windows bootkit loaded before Windows starts and is memory resident thus Stoned gains access to the entire system.
  • ViewStateViewer: A GUI Tool for deserializing/reserializing ViewState – neohapsis.com
    ViewStateViewer seamlessly integrates into the Fiddler workflow, allowing a user to manipulate it just as they would any other variable in a HTTP request.
  • Morpheus Beta – sourceforge.net/projects/morpheus-fwknop/
    Morpheus is a windows client for fwknop, the Single Packet Authorization System.
  • FakeIKEd v0.0.5 – roe.ch
    Fiked can impersonate a VPN gateway’s IKE responder in order to capture XAUTH login credentials.
  • Update: PDFiD Version 0.0.8 – didierstevens.com
    The update packs in Flash detection in PDFs, new date format and more.
  • Backtrack 4. MSF – Part 1 – synjunkie.blogspot.com
    Using Backtrack and Metasploit together can lead to exciting results.
  • A Beta Version of NPing has been released – professionalsecuritytesters.org
    It generates network packets of a wide range of protocols, letting users to tune virtually any field of the protocol headers.
  • Creating HTML Listeners with JSReg and Hackvertor – thespanner.co.uk
    A proof of concept put together using JSReg and Hackvertor
  • SSLSniff V0.6 – thoughtcrime.org
    It is designed to MITM all SSL connections on a LAN and dynamically generates certs for the domains that are being accessed on the fly.
  • UC Sniffer 2.4 – sourceforge.net/projects/ucsniff/
    A VoIP Sniffer and security tool with some new features!
  • Websecurify – websecurify.com
    Websecurify automatically identifies web application vulnerabilities by using advanced discovery and fuzzing technologies.
  • iKAT Linux 2.0 – ikat.ha.cked.net
    iKAT is designed to provide access to the underlying operating system of a Kiosk terminal by invoking native OS functionality.
  • Findbugs v1.3.9-RC1 – findbugs.sourceforge.net
    FindBugs™ looks for instances of “bug patterns”  and errors in Java programs.
  • NetCut v2.0.8 – arcai.com
    Basically NetCut is a tool that helps you admin your network by purely on ARP protocol.

Techniques:

Vulnerabilities:

Vendor/Software Patches:

Other News: