«
Expand/Collapse
103 items tagged "name"
Related tags:
vulnerability [+],
certificate [+],
zip [+],
null pointer [+],
memory corruption [+],
local memory [+],
linux kernel [+],
linux [+],
kernel [+],
null character [+],
libzip [+],
header [+],
dovecot [+],
linux security [+],
hacks [+],
corporate desktop [+],
chaos communication congress [+],
talk [+],
sql [+],
security [+],
root privileges [+],
relational database management system [+],
relational database management [+],
php nuke [+],
party applications [+],
pam [+],
international standardization [+],
identity [+],
freebsd security [+],
download [+],
database management system [+],
christoph engemann [+],
buffer overflow vulnerability [+],
application [+],
anonymity on the internet [+],
validation [+],
txt [+],
torque [+],
tiffany rad [+],
tiffany [+],
table [+],
ssl servers [+],
spoof irc [+],
research [+],
remote buffer overflow vulnerability [+],
remote buffer overflow [+],
proof of concept [+],
privacy event [+],
packet [+],
null pointer dereference [+],
memory consumption [+],
liferay [+],
kde [+],
job [+],
issue [+],
irssi [+],
insight [+],
hostname [+],
forum [+],
file [+],
email [+],
domain [+],
disclosure [+],
directory [+],
dean [+],
dan kaminsky [+],
buffer overflow attack [+],
application crash [+],
adobe download manager [+],
Newbie [+],
Area [+],
zdi [+],
word list [+],
webboard [+],
web [+],
vuplayer [+],
vulnerability research [+],
video [+],
verifone vx570 [+],
verifone [+],
validation errors [+],
usb connection [+],
usb [+],
unc name [+],
u unc [+],
told [+],
tip line [+],
template name [+],
template [+],
tales [+],
sound [+],
snega [+],
skeletonz [+],
site [+],
sega genesis [+],
science [+],
schematics [+],
safer use [+],
s system [+],
roundup [+],
robotseverywhere [+],
right [+],
rhythm [+],
refreshment [+],
rants [+],
promising project [+],
project [+],
pocket protector [+],
piezo element [+],
phpnuke module [+],
phpnuke [+],
php [+],
phone hacker [+],
payment terminal [+],
payment [+],
oxcars [+],
network [+],
nanoseconds [+],
name badge [+],
module [+],
microcontrollers [+],
metalink [+],
mediavideo [+],
matthias hullin [+],
math server [+],
magnetic card reader [+],
jonathan [+],
jon [+],
internet civil society [+],
interface card [+],
hacker [+],
hackaday [+],
hack [+],
gala [+],
freezer [+],
echo box [+],
echo [+],
directory traversal vulnerability [+],
culture [+],
cross site scripting [+],
cool stuff [+],
conventions [+],
cons [+],
compressor [+],
comment [+],
command execution [+],
command [+],
cold one [+],
code execution [+],
classic [+],
centreon [+],
capabilities [+],
business [+],
bugtraq [+],
buffer [+],
bssid [+],
bring [+],
box [+],
beer [+],
barcelona [+],
badge [+],
audio [+],
aria [+],
apple quicktime [+],
android [+],
akiva [+],
airodump [+],
Support [+],
General [+],
BackTrack [+],
service vulnerability [+],
denial of service [+],
mandriva linux [+]
-
-
17:19
»
Packet Storm Security Advisories
Red Hat Security Advisory 2012-0678-01 - PostgreSQL is an advanced object-relational database management system. The pg_dump utility inserted object names literally into comments in the SQL script it produces. An unprivileged database user could create an object whose name includes a newline followed by an SQL command. This SQL command might then be executed by a privileged user during later restore of the backup dump, allowing privilege escalation. When configured to do SSL certificate verification, PostgreSQL only checked the first 31 characters of the certificate's Common Name field. Depending on the configuration, this could allow an attacker to impersonate a server or a client using a certificate from a trusted Certificate Authority issued for a different name.
-
17:19
»
Packet Storm Security Recent Files
Red Hat Security Advisory 2012-0678-01 - PostgreSQL is an advanced object-relational database management system. The pg_dump utility inserted object names literally into comments in the SQL script it produces. An unprivileged database user could create an object whose name includes a newline followed by an SQL command. This SQL command might then be executed by a privileged user during later restore of the backup dump, allowing privilege escalation. When configured to do SSL certificate verification, PostgreSQL only checked the first 31 characters of the certificate's Common Name field. Depending on the configuration, this could allow an attacker to impersonate a server or a client using a certificate from a trusted Certificate Authority issued for a different name.
-
17:19
»
Packet Storm Security Misc. Files
Red Hat Security Advisory 2012-0678-01 - PostgreSQL is an advanced object-relational database management system. The pg_dump utility inserted object names literally into comments in the SQL script it produces. An unprivileged database user could create an object whose name includes a newline followed by an SQL command. This SQL command might then be executed by a privileged user during later restore of the backup dump, allowing privilege escalation. When configured to do SSL certificate verification, PostgreSQL only checked the first 31 characters of the certificate's Common Name field. Depending on the configuration, this could allow an attacker to impersonate a server or a client using a certificate from a trusted Certificate Authority issued for a different name.
-
-
15:16
»
Packet Storm Security Exploits
Liferay version 6.1 suffers from a vulnerability where it is possible to retrieve the names and email addresses of all users. Proof of concept code included.
-
15:16
»
Packet Storm Security Misc. Files
Liferay version 6.1 suffers from a vulnerability where it is possible to retrieve the names and email addresses of all users. Proof of concept code included.
-
-
10:01
»
Hack a Day
Lets just start right off and acknowledge that the word “Hack” is in our site name. We all see it. It is right there, in plain English. However, anyone who spends more than a few nanoseconds looking down below that big name, will quickly see that the kind of hacking we do is more like [...]
-
-
21:32
»
SecDocs
Tags:
social Event:
Chaos Communication Congress 28th (28C3) 2011 Abstract: OXcars is fun. oXcars is empowering the people. Presentation and screening of the best of the oXcars 2011, 2010, 2009, 2008. Because their business is not our business. Every year, in Barcelona 1500 people gather for the biggest free/libre culture Show of all times ;-). Artists and performers from all areas of Spanish and international culture take part in a "Gala";-) in which artists say "Not in my name" to the commercialisation of culture, "Not in my name" to limiting the potential of digital media and to criminalization of the Internet. Civil society demands the 'lost profits' of all the knowledge that is being withheld and stolen from public use in the name of private profits.
-
-
21:41
»
SecDocs
Authors:
Christoph Engemann Tags:
biometric identity management Event:
Chaos Communication Congress 28th (28C3) 2011 Abstract: Starting with the history of birth-registration an overview on the historical regimes of naming and identifying people from the 15th to the 20th century is given. the talk will show examples of the different identity media through time and their standardization with the rise of the Westphalian nation state and the subsequent developments after the French Revolution and during the 20th century. The goal of the talk is to show the complexity of the phenomenon of personal names and their media and the need for an informed debate on who and how naming and identification in the digital age is achieved. In July 2011 Google opened the social network named Google+, immediately spawning a fierce debate about its real-name policy barring users from opening accounts with pseudonyms. Just a few days later Facebooks Vice President Randi Zuckerberg echoed Google's sentiment, asserting: “(…) anonymity on the Internet has to go away.” Finally in early August Germanys minister of the interior demanded an end of anonymity on the Internet. My proposed talk is not concerned with the relation of anonymity and pseudonymity and free speech, discrimination and empowerment that dominated the ‘real-name’ “nymwars” on the internet. Instead it seeks to de-familiarize the notion of the ‘real name’ by exposing central aspects of the media-history of names, situating personal names in relation to the development of statehood and capitalism between the 1500 and the 2000s. I thus will outline the history and function of birth-registration as introduced in the wake of the reformation in 1543 and its subsequent secularization during the rise of the Westaphalian nation state. This includes an overview of the international standardization of both identity papers and personal naming regimes during the 19th century in the context of post-1789 development of statehood and colonization. Moving to the 2oth century I will provide examples of the development and standardization of the passport-system after WWI, and conclude my talk with a synopsis of administrative digital identity vision of the early nineties. The goal of the talk is first de-familiarize the notion of the personal-name by showing its complex historical and material background, secondly to contextualize the current developments of digital identity regimes (Neuer Personalausweis, Google+, NSTIC etc) within the larger and longer-term developments of statehood and capitalist societies. Thirdly my talk will show that a name never was ones own but always an intersection of administrative, media-technical and personal interventions and as such is currently becoming a contested phenomenon again, requiring an informed debate about what is in a name. Duration 40 mins, presentation style will be slides and accompanying talk, discussion afterwards.
-
-
21:42
»
SecDocs
Authors:
Christoph Engemann Tags:
biometric identity management Event:
Chaos Communication Congress 28th (28C3) 2011 Abstract: Starting with the history of birth-registration an overview on the historical regimes of naming and identifying people from the 15th to the 20th century is given. the talk will show examples of the different identity media through time and their standardization with the rise of the Westphalian nation state and the subsequent developments after the French Revolution and during the 20th century. The goal of the talk is to show the complexity of the phenomenon of personal names and their media and the need for an informed debate on who and how naming and identification in the digital age is achieved. In July 2011 Google opened the social network named Google+, immediately spawning a fierce debate about its real-name policy barring users from opening accounts with pseudonyms. Just a few days later Facebooks Vice President Randi Zuckerberg echoed Google's sentiment, asserting: “(…) anonymity on the Internet has to go away.” Finally in early August Germanys minister of the interior demanded an end of anonymity on the Internet. My proposed talk is not concerned with the relation of anonymity and pseudonymity and free speech, discrimination and empowerment that dominated the ‘real-name’ “nymwars” on the internet. Instead it seeks to de-familiarize the notion of the ‘real name’ by exposing central aspects of the media-history of names, situating personal names in relation to the development of statehood and capitalism between the 1500 and the 2000s. I thus will outline the history and function of birth-registration as introduced in the wake of the reformation in 1543 and its subsequent secularization during the rise of the Westaphalian nation state. This includes an overview of the international standardization of both identity papers and personal naming regimes during the 19th century in the context of post-1789 development of statehood and colonization. Moving to the 2oth century I will provide examples of the development and standardization of the passport-system after WWI, and conclude my talk with a synopsis of administrative digital identity vision of the early nineties. The goal of the talk is first de-familiarize the notion of the personal-name by showing its complex historical and material background, secondly to contextualize the current developments of digital identity regimes (Neuer Personalausweis, Google+, NSTIC etc) within the larger and longer-term developments of statehood and capitalist societies. Thirdly my talk will show that a name never was ones own but always an intersection of administrative, media-technical and personal interventions and as such is currently becoming a contested phenomenon again, requiring an informed debate about what is in a name. Duration 40 mins, presentation style will be slides and accompanying talk, discussion afterwards.
-
21:42
»
SecDocs
Authors:
Christoph Engemann Tags:
biometric identity management Event:
Chaos Communication Congress 28th (28C3) 2011 Abstract: Starting with the history of birth-registration an overview on the historical regimes of naming and identifying people from the 15th to the 20th century is given. the talk will show examples of the different identity media through time and their standardization with the rise of the Westphalian nation state and the subsequent developments after the French Revolution and during the 20th century. The goal of the talk is to show the complexity of the phenomenon of personal names and their media and the need for an informed debate on who and how naming and identification in the digital age is achieved. In July 2011 Google opened the social network named Google+, immediately spawning a fierce debate about its real-name policy barring users from opening accounts with pseudonyms. Just a few days later Facebooks Vice President Randi Zuckerberg echoed Google's sentiment, asserting: “(…) anonymity on the Internet has to go away.” Finally in early August Germanys minister of the interior demanded an end of anonymity on the Internet. My proposed talk is not concerned with the relation of anonymity and pseudonymity and free speech, discrimination and empowerment that dominated the ‘real-name’ “nymwars” on the internet. Instead it seeks to de-familiarize the notion of the ‘real name’ by exposing central aspects of the media-history of names, situating personal names in relation to the development of statehood and capitalism between the 1500 and the 2000s. I thus will outline the history and function of birth-registration as introduced in the wake of the reformation in 1543 and its subsequent secularization during the rise of the Westaphalian nation state. This includes an overview of the international standardization of both identity papers and personal naming regimes during the 19th century in the context of post-1789 development of statehood and colonization. Moving to the 2oth century I will provide examples of the development and standardization of the passport-system after WWI, and conclude my talk with a synopsis of administrative digital identity vision of the early nineties. The goal of the talk is first de-familiarize the notion of the personal-name by showing its complex historical and material background, secondly to contextualize the current developments of digital identity regimes (Neuer Personalausweis, Google+, NSTIC etc) within the larger and longer-term developments of statehood and capitalist societies. Thirdly my talk will show that a name never was ones own but always an intersection of administrative, media-technical and personal interventions and as such is currently becoming a contested phenomenon again, requiring an informed debate about what is in a name. Duration 40 mins, presentation style will be slides and accompanying talk, discussion afterwards.
-
13:01
»
Hack a Day
It used to be that the contents of your pocket protector directly mirrored your geek level. But that just doesn’t cut it in our fast-paced digital age. We think [Jonathan] is headed down the right track though, by creating a scrolling LED name badge which he takes to conventions with him. With the right enclosure [...]
-
-
9:34
»
Packet Storm Security Advisories
FreeBSD Security Advisory - Some third-party applications, including KDE's kcheckpass command, allow the user to specify the name of the policy on the command line. Since OpenPAM treats the policy name as a path relative to /etc/pam.d or /usr/local/etc/pam.d, users who are permitted to run such an application can craft their own policies and cause the application to load and execute their own modules. If an application that runs with root privileges allows the user to specify the name of the PAM policy to load, users who are permitted to run that application will be able to execute arbitrary code with root privileges.
-
9:34
»
Packet Storm Security Recent Files
FreeBSD Security Advisory - Some third-party applications, including KDE's kcheckpass command, allow the user to specify the name of the policy on the command line. Since OpenPAM treats the policy name as a path relative to /etc/pam.d or /usr/local/etc/pam.d, users who are permitted to run such an application can craft their own policies and cause the application to load and execute their own modules. If an application that runs with root privileges allows the user to specify the name of the PAM policy to load, users who are permitted to run that application will be able to execute arbitrary code with root privileges.
-
9:34
»
Packet Storm Security Misc. Files
FreeBSD Security Advisory - Some third-party applications, including KDE's kcheckpass command, allow the user to specify the name of the policy on the command line. Since OpenPAM treats the policy name as a path relative to /etc/pam.d or /usr/local/etc/pam.d, users who are permitted to run such an application can craft their own policies and cause the application to load and execute their own modules. If an application that runs with root privileges allows the user to specify the name of the PAM policy to load, users who are permitted to run that application will be able to execute arbitrary code with root privileges.
-
-
13:30
»
Hack a Day
The echo box performs exactly as its name implies. If you tap out a rhythm on the lid, it will tap the same thing back to you. Except it isn’t tapping to make the sound, but vibrating. The concept is similar to the Knock Block. In that hack, a piezo element detected a rapping on [...]
-
-
15:01
»
Hack a Day
[Jerzmacow] got his hands on this Verifone Vx570 handheld payment terminal at a flea market. It’s got a thermal printer, a magnetic card reader, and then there’s the big LCD screen and buttons. In other words, lots of parts for his hacking amusement. But first, he decided to take a look at the parts that [...]
-
-
16:00
»
Hack a Day
We’ve all been there. The day is done and it’s time for a cold one but you neglected to put more beer in the fridge after imbibing the last bottle the night before. You could chuck it in the freezer and revisit your attempt at refreshment in an hour. But if you need a malty [...]
-
-
12:00
»
Hack a Day
[Spiritplumber] has been sending us updates on a promising project he’s working on called RobotsEverywhere. We’re not completely sure if that name covers the project itself, or just the name of his group that is selling robots (and giving us schematics and source code). Either way, they have some really cool stuff. The really cool [...]
-
-
23:57
»
SecuriTeam
A vulnerability was discovered in aria2, which can be exploited by malicious people to compromise a user's system.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!
-
-
0:00
»
Packet Storm Security Advisories
VUPEN Web Vulnerability Research Team discovered multiple vulnerabilities in eFront. These issues are caused by input validation errors when processing the remote_theme , name , system_email , password_length , math_server , site_motto and site_name parameters, which could be exploited by attackers to cause arbitrary scripting code to be executed by the user's browser in the security context of an affected Web site. Versions prior to 3.6.3 build 7400 are affected.
-
-
23:00
»
Packet Storm Security Recent Files
Mandriva Linux Security Advisory 2010-107 - The server failed to check the table name argument of a COM_FIELD_LIST command packet for validity and compliance to acceptable table name standards. This could be exploited to bypass almost all forms of checks for privileges and table-level grants by providing a specially crafted table name argument to COM_FIELD_LIST. The server could be tricked into reading packets indefinitely if it received a packet larger than the maximum size of one packet. The server was susceptible to a buffer-overflow attack due to a failure to perform bounds checking on the table name argument of a COM_FIELD_LIST command packet. By sending long data for the table name, a buffer is overflown, which could be exploited by an authenticated user to inject malicious code. Packages for 2008.0 and 2009.0 are provided as of the Extended Maintenance Program. The updated packages have been patched to correct these issues.
-
23:00
»
Packet Storm Security Advisories
Mandriva Linux Security Advisory 2010-107 - The server failed to check the table name argument of a COM_FIELD_LIST command packet for validity and compliance to acceptable table name standards. This could be exploited to bypass almost all forms of checks for privileges and table-level grants by providing a specially crafted table name argument to COM_FIELD_LIST. The server could be tricked into reading packets indefinitely if it received a packet larger than the maximum size of one packet. The server was susceptible to a buffer-overflow attack due to a failure to perform bounds checking on the table name argument of a COM_FIELD_LIST command packet. By sending long data for the table name, a buffer is overflown, which could be exploited by an authenticated user to inject malicious code. Packages for 2008.0 and 2009.0 are provided as of the Extended Maintenance Program. The updated packages have been patched to correct these issues.
-
-
14:00
»
Packet Storm Security Recent Files
Mandriva Linux Security Advisory 2010-079 - Irssi before 0.8.15, when SSL is used, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) field or a Subject Alternative Name field of the X.509 certificate, which allows man-in-the-middle attackers to spoof IRC servers via an arbitrary certificate. core/nicklist.c in Irssi before 0.8.15 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors related to an attempted fuzzy nick match at the instant that a victim leaves a channel. Additionally the updated packages disables the SSLv2 protocol and enables the SSLv3 and TLSv1 protocols for added security. The updated packages have been patched to correct these issues.
-
14:00
»
Packet Storm Security Advisories
Mandriva Linux Security Advisory 2010-079 - Irssi before 0.8.15, when SSL is used, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) field or a Subject Alternative Name field of the X.509 certificate, which allows man-in-the-middle attackers to spoof IRC servers via an arbitrary certificate. core/nicklist.c in Irssi before 0.8.15 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors related to an attempted fuzzy nick match at the instant that a victim leaves a channel. Additionally the updated packages disables the SSLv2 protocol and enables the SSLv3 and TLSv1 protocols for added security. The updated packages have been patched to correct these issues.
-
-
12:00
»
Hack a Day
[Matthias Hullin], the creator of the snega2usb let us know that its name has been changed to the Retrode. We watched this device go through the development cycle and learn to read SNES and Sega Genesis cartridges via a USB connection. Now it’s seeing some hacking to extend those capabilities. [Jon] managed to rig the [...]
-
-
12:00
»
Packet Storm Security Recent Files
Mandriva Linux Security Advisory 2010-049 - sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4, when a pseudo-command is enabled, permits a match between the name of the pseudo-command and the name of an executable file in an arbitrary directory, which allows local users to gain privileges via a crafted executable file, as demonstrated by a file named sudoedit in a user's home directory. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue.
-
12:00
»
Packet Storm Security Recent Files
getPlus suffers from an insufficient domain name validation vulnerability. A new Adobe Download Manager was released that resolves this issue.
-
12:00
»
Packet Storm Security Advisories
Mandriva Linux Security Advisory 2010-049 - sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4, when a pseudo-command is enabled, permits a match between the name of the pseudo-command and the name of an executable file in an arbitrary directory, which allows local users to gain privileges via a crafted executable file, as demonstrated by a file named sudoedit in a user's home directory. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue.
-
12:00
»
Packet Storm Security Advisories
getPlus suffers from an insufficient domain name validation vulnerability. A new Adobe Download Manager was released that resolves this issue.
-
-
5:49
»
remote-exploit & backtrack
Ok,.. So I goofing around and I been able to force handshakes on a WPA encryption.
Basically, I run the standard airodump with a bssid + .cap file recording it all...
Then run this:
aireplay -1 3000 -e (network name) -a (targets bssid) -h (your bssid) -0 1 -q 10 (interface card name)
This tricks the network to think I am already on the network and lets me on like a reconnect. At this point, I am on, but no access, but when this is used in conjunction with regular I guess wep methods and you keep hitting Ctrl+C and then "up" and enter and keep resigning on and off I been able to force hand shakes under a few min with this. Many times faster sometimes than WEP.
Add an extensive word list and BAM!
So what's good?
-
-
12:00
»
Packet Storm Security Recent Files
Mandriva Linux Security Advisory 2010-028 - KDE KSSL in kdelibs 3.5.4, 4.2.4, and 4.3 does not properly handle a \\'\\\' (NUL) character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. KDE Konqueror allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692. The gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc in FreeBSD 6.4 and 7.2, NetBSD 5.0, and OpenBSD 4.5 allows context-dependent attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a large precision value in the format argument to a printf function, related to an array overrun. The updated packages have been patched to correct these issues.
-
12:00
»
Packet Storm Security Advisories
Mandriva Linux Security Advisory 2010-028 - KDE KSSL in kdelibs 3.5.4, 4.2.4, and 4.3 does not properly handle a \\'\\\' (NUL) character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. KDE Konqueror allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692. The gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc in FreeBSD 6.4 and 7.2, NetBSD 5.0, and OpenBSD 4.5 allows context-dependent attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a large precision value in the format argument to a printf function, related to an array overrun. The updated packages have been patched to correct these issues.
-
7:00
»
Packet Storm Security Recent Files
Mandriva Linux Security Advisory 2010-026 - libraries/libldap/tls_o.c in OpenLDAP, when OpenSSL is used, does not properly handle a \\'\\\' (NUL) character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue.
-
7:00
»
Packet Storm Security Advisories
Mandriva Linux Security Advisory 2010-026 - libraries/libldap/tls_o.c in OpenLDAP, when OpenSSL is used, does not properly handle a \\'\\\' (NUL) character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue.
-
-
6:31
»
remote-exploit & backtrack
Hi! My name is Dean. I'm 29 years old. I came across this forum while doing some research and decided to join. I hope to share and gain insight with/from you all. I'm trying to be the best me I can be, so I'm trying to stay informed, open-minded, and optimistic.
Thanks, Dean
-
6:31
»
remote-exploit & backtrack
Hi! My name is Dean. I'm 29 years old. I came across this forum while doing some research and decided to join. I hope to share and gain insight with/from you all. I'm trying to be the best me I can be, so I'm trying to stay informed, open-minded, and optimistic.
Thanks, Dean
1337day (was: Inj3ct0r, 1337db)
OSVDB Vulnerabilities
Exploit-DB
SecurityFocus Vulnerabilities
Bugtraq
XSSed
Sophos security news
Penetration Testing
BackTrack Linux Forums
Threatpost
carnal0wnage.attackresearch.com
Carnal0wnage
Darknet
The Exploitant
Wirevolution