Tools SpiderFoot 2.0.4 released, new module, improvements and bug fixes – spiderfoot.net Kautilya 0.4.4 - dump lsa secrets, introduce vulns, improved backdoors and more –labofapenetrationtester.com Here comes Kautilya 0.4.4. This version adds three new payloads and improves couple of others. Owasp Broken Web Applications Project VM v1.1 Released – sourceforge.net Looking for the latest version? Download OWASP_Broken_Web_Apps_VM_1.1.7z. Techniques [...]
Here are information security events in North America this month: BSides Memphis : September 7 in Memphis, TN USA GrrCON 2013 : September 12 to 13 in Michigan USA BSides Augusta : September 14 in Augusta, GA USA eCrime Researchers Summit 2013 : September 16 to 18 in San Francisco, CA [...]
Resources Want to break some Android apps? – carnal0wnage.attackresearch.com @jhaddix, the newest blogger shared a bunch of Android apps hacking tools links. Tools Linux Exploit Suggester – penturalabs.wordpress.com This is a Linux Exploit Suggester, with no frills and no fancy features; just a simple script to keep track of vulnerabilities and suggest possible exploits to use to [...]
Event Related Femtocell Presentation Slides, Videos and App - isecpartners.com We're back from Las Vegas, rested, and finally ready to release the slides, videos, and our app from our presentation at Black Hat and Defcon: Traffic Interception and Remote Mobile Phone Cloning with a Compromised CDMA Femtocell. BlackHat Conference: Z-Wave Security - sensepost.com We are [...]
Event Related Black Hat USA 2013 Black Hat USA 2013, Bochspwn, slides and pointers - j00ru.vexillium.org Two weeks ago (we’re running late, sorry!) Gynvael and I had the pleasure to attend one of the largest, most technical and renowned conferences in existence – Black Hat 2013 in Las Vegas, USA. Black Hat Presentation on Android [...]
Event Related DefCon #DEFCON Defense by numbers: Making Problems for Script Kiddies and Scanner Monkeys - blog.c22.cc Despite my fears of freezing on stage and beginning to drool like a moron, I think the presentation went well. Excluding of course the point where Powerpoint decided it would die in a fire rather than show my [...]
Event Related Course Review: SANS SEC573 Python for Penetration Testers - ethicalhacker.net “SANS SEC573 Python for Penetration Testers” is a five-day class that teaches the basics of the Python language then builds on that knowledge to show how to utilize its specialized libraries to perform network capture and analysis, SQL injection, Metasploit integration, password guessing [...]
Here are information security events in North America this month: DEFCON : August 1 to 4 in Las Vegas USA DFRWS : August 4 to 7 in Monterey, CA USA SANS Boston : August 5 to 10 in Boston, MA USA International Conference on Cyber Security (ICCS) : [...]
Resources Hackers turn Verizon box into spy tool - youtube.com Researchers at iSec hacked into a Verizon network extender, which anyone can buy online, and turned it into a cell phone tower small enough to fit inside a backpack capable of capturing and intercepting all calls, text messages and data sent by mobile devices within [...]