jetlib.sec » Tags » secure

Feeds

133445 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

81 items tagged "secure"

Related tags: usa [+], code execution [+], safer use [+], authors [+], ncp [+], hijacking [+], client [+], secure document [+], processors [+], james d. broesch [+], document library [+], authentication [+], arbitrary code execution [+], world authors [+], virtual machine [+], video [+], usage scenarios [+], strategic initiatives [+], steve adegbite [+], steganography [+], spread spectrum [+], slides [+], secure client [+], rock your [+], program execution [+], planet [+], model [+], mobility [+], mike reavey [+], marcus nutzinger [+], library version [+], katie moussouris [+], facebook [+], execution [+], entry [+], email address [+], email [+], document [+], dmxready [+], code authors [+], cisco security advisory [+], cisco security [+], cisco anyconnect [+], cisco [+], chaos communication congress [+], audio [+], arbitrary program [+], advisory [+], address maps [+], writing secure code [+], whitepaper [+], wes brown tags [+], wes brown [+], web application security [+], validate [+], technology [+], srm [+], smartcard technology [+], smartcard [+], security failures [+], security event [+], security coverage [+], security [+], scott dunlop [+], science [+], paul bhm [+], paper [+], mosquito [+], magazine [+], juniper edition [+], issue [+], hack [+], goal [+], fraud [+], fast [+], exploits [+], dunlop [+], dropbox [+], christopher tarnovsky [+], attackers [+], art and science [+], art [+], arbitrary commands [+], Bugs [+], zdi [+], xss [+], x imageio [+], windows [+], webapps [+], web server [+], web [+], want [+], voip [+], unspecified [+], unix [+], u.s. [+], twitter [+], tornado [+], tiff image [+], tiff heap [+], tiff [+], things [+], terrorists [+], ten [+], stupid [+], stop [+], startup [+], stance [+], society [+], silc [+], service vulnerability [+], server [+], secure web [+], secure content manager [+], scheduler service [+], scheduler [+], sandbox [+], safer [+], resistant [+], researcher [+], report [+], remote [+], reader [+], presence [+], power grid [+], police [+], pidgin [+], password [+], overflow [+], oded [+], ngs [+], new [+], more [+], morality [+], military [+], microsoft [+], michael howard tags [+], mac os [+], linux [+], jeff thompson tags [+], jeff thompson [+], internet locale [+], internet authors [+], internet [+], insecure [+], information security [+], hyundai [+], hardware hacking [+], hacker [+], government [+], etrust [+], ethics [+], ethical [+], effort [+], drupal [+], dominic chell [+], design authors [+], design [+], dep [+], denies [+], denial of service [+], day [+], david leblanc [+], cross [+], cookie [+], content [+], connections [+], code [+], certificates [+], cctv [+], build [+], bugtraq [+], brian oblivion [+], boot [+], asia [+], arbitrary code [+], apple mac os [+], adobe reader [+], NWO [+], Hardware [+], vulnerability [+], oracle [+], black hat [+]

• May 14, 2012
• 8:19

  Startup Proposes A Safer Internet Locale Via A '.secure' Domain

   » ‎ Packet Storm Security Headlines
  Startup Proposes A Safer Internet Locale Via A '.secure' Domain

  Tags:  secure startup safer internet-locale  

• May 01, 2012
• 14:23

  Terrorists Build Secure VoIP Over GPRS Network

   » ‎ Packet Storm Security Headlines
  Terrorists Build Secure VoIP Over GPRS Network

  Tags:  terrorists secure build voip  

• April 27, 2012
• 21:39

  [Video] Secure communications below the hearing threshold

   » ‎ SecDocs
  Authors: Marcus Nutzinger Rainer Poisel
  Tags: cryptography
  Event: Chaos Communication Congress 27th (27C3) 2010
  Abstract: Auditive steganography allows for various usage scenarios. In our project we focused on hidden communications in VoIP and GSM in which voice data is typically compressed and transmitted in realtime. A framework has been developed to meet these requirements, providing interfaces for robust steganographic algorithms. The need for steganography has arisen from scenarios that forbid the application of cryptographic algorithms for secure communications. Countries that made secret message exchange a delict are an example for such scenarios. The LSB algorithm used by many open- and closed-source projects is insecure, as its application can be statistically detected. Therefore, we focused on alternate approaches which are more robust against operations on the bit-level, such as compression, D/A-, A/D-conversion and channel idiosyncrasies, such as spread spectrum steganography in time and frequency domain. Secure and hidden communications demand more than an embedding algorithm. Involved elements include: protocols for data flow handling, various embedding algorithms and support for different I/O-interfaces. For correct interaction of these elements, arranging them in a layered model is a reasonable approach for the distribution of the required tasks such as frame and packet building, checksumming, transmission, etc. From this model we derived our software architecture which is portable to common platforms (Linux/Unix, Windows, ...) and various architectures (x8632, x8664, mips). This talk gives an introduction to the topic and describes the development and implementation of our framework based on a novel layered model for auditive steganography including a live demonstration.

  Tags:  secure steganography model marcus-nutzinger chaos-communication-congress usage-scenarios spread-spectrum  

• 21:39

  [Slides] Secure communications below the hearing threshold

   » ‎ SecDocs
  Authors: Marcus Nutzinger Rainer Poisel
  Tags: cryptography
  Event: Chaos Communication Congress 27th (27C3) 2010
  Abstract: Auditive steganography allows for various usage scenarios. In our project we focused on hidden communications in VoIP and GSM in which voice data is typically compressed and transmitted in realtime. A framework has been developed to meet these requirements, providing interfaces for robust steganographic algorithms. The need for steganography has arisen from scenarios that forbid the application of cryptographic algorithms for secure communications. Countries that made secret message exchange a delict are an example for such scenarios. The LSB algorithm used by many open- and closed-source projects is insecure, as its application can be statistically detected. Therefore, we focused on alternate approaches which are more robust against operations on the bit-level, such as compression, D/A-, A/D-conversion and channel idiosyncrasies, such as spread spectrum steganography in time and frequency domain. Secure and hidden communications demand more than an embedding algorithm. Involved elements include: protocols for data flow handling, various embedding algorithms and support for different I/O-interfaces. For correct interaction of these elements, arranging them in a layered model is a reasonable approach for the distribution of the required tasks such as frame and packet building, checksumming, transmission, etc. From this model we derived our software architecture which is portable to common platforms (Linux/Unix, Windows, ...) and various architectures (x8632, x8664, mips). This talk gives an introduction to the topic and describes the development and implementation of our framework based on a novel layered model for auditive steganography including a live demonstration.

  Tags:  secure steganography model marcus-nutzinger chaos-communication-congress usage-scenarios spread-spectrum  

• 21:39

  [Audio] Secure communications below the hearing threshold

   » ‎ SecDocs
  Authors: Marcus Nutzinger Rainer Poisel
  Tags: cryptography
  Event: Chaos Communication Congress 27th (27C3) 2010
  Abstract: Auditive steganography allows for various usage scenarios. In our project we focused on hidden communications in VoIP and GSM in which voice data is typically compressed and transmitted in realtime. A framework has been developed to meet these requirements, providing interfaces for robust steganographic algorithms. The need for steganography has arisen from scenarios that forbid the application of cryptographic algorithms for secure communications. Countries that made secret message exchange a delict are an example for such scenarios. The LSB algorithm used by many open- and closed-source projects is insecure, as its application can be statistically detected. Therefore, we focused on alternate approaches which are more robust against operations on the bit-level, such as compression, D/A-, A/D-conversion and channel idiosyncrasies, such as spread spectrum steganography in time and frequency domain. Secure and hidden communications demand more than an embedding algorithm. Involved elements include: protocols for data flow handling, various embedding algorithms and support for different I/O-interfaces. For correct interaction of these elements, arranging them in a layered model is a reasonable approach for the distribution of the required tasks such as frame and packet building, checksumming, transmission, etc. From this model we derived our software architecture which is portable to common platforms (Linux/Unix, Windows, ...) and various architectures (x8632, x8664, mips). This talk gives an introduction to the topic and describes the development and implementation of our framework based on a novel layered model for auditive steganography including a live demonstration.

  Tags:  secure steganography model marcus-nutzinger chaos-communication-congress usage-scenarios spread-spectrum  

• April 01, 2012
• 10:22

  How Much Facebook Is Secure

   » ‎ Packet Storm Security Exploits
  This is a brief paper that describes how sending external email to an account automatically maps things like a graphic if a person's personal email address maps to it. We tested this and it does work, but Facebook does add a little icon saying the sender isn't verified. However, the average user will probably overlook this.

  Tags:  secure facebook email address-maps email-address  

• 10:22

  How Much Facebook Is Secure

   » ‎ Packet Storm Security Recent Files
  This is a brief paper that describes how sending external email to an account automatically maps things like a graphic if a person's personal email address maps to it. We tested this and it does work, but Facebook does add a little icon saying the sender isn't verified. However, the average user will probably overlook this.

  Tags:  secure facebook email address-maps email-address  

• 10:22

  How Much Facebook Is Secure

   » ‎ Packet Storm Security Misc. Files
  This is a brief paper that describes how sending external email to an account automatically maps things like a graphic if a person's personal email address maps to it. We tested this and it does work, but Facebook does add a little icon saying the sender isn't verified. However, the average user will probably overlook this.

  Tags:  secure facebook email address-maps email-address  

• March 30, 2012
• 16:42

  How Secure Is Contactless Smartcard Technology

   » ‎ Packet Storm Security Recent Files
  This is a brief whitepaper discussing the security of contactless smartcard technology.

  Tags:  secure smartcard technology smartcard-technology whitepaper  

• 16:42

  How Secure Is Contactless Smartcard Technology

   » ‎ Packet Storm Security Misc. Files
  This is a brief whitepaper discussing the security of contactless smartcard technology.

  Tags:  secure smartcard technology smartcard-technology whitepaper  

• February 12, 2012
• 5:15

  [Video] Mosquito - Secure Remote Code Execution Framework

   » ‎ SecDocs
  Authors: Scott Dunlop Wes Brown
  Tags: exploiting
  Event: DEFCON 13
  

  Tags:  secure video mosquito scott-dunlop wes-brown-tags wes-brown code-execution dunlop  

• 5:13

  [Audio] Mosquito - Secure Remote Code Execution Framework

   » ‎ SecDocs
  Authors: Scott Dunlop Wes Brown
  Tags: exploiting
  Event: DEFCON 13
  

  Tags:  secure audio mosquito scott-dunlop wes-brown-tags wes-brown code-execution dunlop  

• February 04, 2012
• 21:16

  U.S. Government, Military To Get Secure Android Phones

   » ‎ Packet Storm Security Headlines
  U.S. Government, Military To Get Secure Android Phones

  Tags:  secure military government u.s.  

• January 29, 2012
• 21:41

  [Slides] Security Failures in Secure Devices

   » ‎ SecDocs
  Authors: Christopher Tarnovsky
  Tags: security
  Event: Black Hat EU 2008
  

  Tags:  secure authors security christopher-tarnovsky security-failures security-event black-hat  

• January 24, 2012
• 13:17

  [Slides] Security Failures in Secure Devices

   » ‎ SecDocs
  Authors: Christopher Tarnovsky
  Tags: security
  Event: Black Hat DC 2008
  

  Tags:  secure authors security christopher-tarnovsky security-failures security-event black-hat  

• January 11, 2012
• 20:04

  Ten Little Things To Secure Your Online Presence

   » ‎ Packet Storm Security Headlines
  Ten Little Things To Secure Your Online Presence

  Tags:  secure ten things presence  

• January 01, 2012
• 21:35

  [Slides] Taming Bugs: The Art and Science of Writing Secure Code

   » ‎ SecDocs
  Authors: Paul Böhm
  Tags: secure development
  Event: Black Hat USA 2006
  

  Tags:  secure Bugs science art paul-bhm usa code-authors writing-secure-code art-and-science  

• December 31, 2011
• 1:57

  [Slides] Taming Bugs: The Art and Science of Writing Secure Code

   » ‎ SecDocs
  Authors: Paul Böhm
  Tags: secure development
  Event: Black Hat Asia 2006
  

  Tags:  secure Bugs science art paul-bhm asia code-authors writing-secure-code art-and-science  

• December 19, 2011
• 15:34

  Oracle Secure Backup validate_login Command Injection Code Execution Vulnerability

   » ‎ SecuriTeam
  This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Secure Backup.

  -

  Make your website safer. Use external penetration testing service. First report ready in one hour!

  Tags:  secure code oracle code-execution safer-use arbitrary-code  

• December 15, 2011
• 0:00

  Vuln: Pidgin SILC (Secure Internet Live Conferencing) Protocol Denial of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Pidgin SILC (Secure Internet Live Conferencing) Protocol Denial of Service Vulnerability

  Tags:  secure silc pidgin service-vulnerability denial-of-service  

• November 19, 2011
• 11:23

  Microsoft's Windows 8 Secure Boot Foiled By Researcher

   » ‎ Packet Storm Security Headlines
  Microsoft's Windows 8 Secure Boot Foiled By Researcher

  Tags:  secure microsoft windows researcher  

• October 27, 2011
• 2:08

  [Slides] Making Unix Secure for the Internet

   » ‎ SecDocs
  Authors: Jeff Thompson
  Tags: UNIX
  Event: Black Hat USA 2000
  

  Tags:  internet secure unix jeff-thompson-tags usa jeff-thompson internet-authors black-hat  

• October 25, 2011
• 3:30

  [Slides] Secure Hardware Design

   » ‎ SecDocs
  Authors: Brian Oblivion
  Tags: security hardware hacking
  Event: Black Hat USA 2000
  

  Tags:  design secure Hardware brian-oblivion usa design-authors hardware-hacking  

• October 18, 2011
• 3:15

  [Slides] Writing Secure and Hack Resistant Code

   » ‎ SecDocs
  Authors: David LeBlanc Michael Howard
  Tags: SDLC secure development
  Event: Black Hat Windows Security 2003
  

  Tags:  secure resistant hack michael-howard-tags david-leblanc code-authors black-hat  

• September 23, 2011
• 7:31

  MS Denies Secure Boot Will Exclude Linux

   » ‎ Packet Storm Security Headlines
  MS Denies Secure Boot Will Exclude Linux

  Tags:  secure boot denies linux  

• September 07, 2011
• 7:36

  GlobalSign Stops Secure Certificates After Hack Claim

   » ‎ Packet Storm Security Headlines
  GlobalSign Stops Secure Certificates After Hack Claim

  Tags:  secure stop certificates hack  

• August 24, 2011
• 17:47

  Twitter Turns Secure Connections On By Default

   » ‎ Packet Storm Security Headlines
  Twitter Turns Secure Connections On By Default

  Tags:  connections twitter secure  

• August 22, 2011
• 0:00

  Vuln: Oracle Secure Backup CVE-2010-0904 Remote Authentication Bypass Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Oracle Secure Backup CVE-2010-0904 Remote Authentication Bypass Vulnerability

  Tags:  secure oracle remote vulnerability authentication  

• August 18, 2011
• 21:00

  [webapps / 0day] - Oracle Secure Backup Authentication Bypass/Command Injection

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [webapps / 0day] - Oracle Secure Backup Authentication Bypass/Command Injection

  Tags:  secure day oracle webapps authentication  

• August 17, 2011
• 23:56

  Fast Secure 3.0.3.1 Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  Fast Secure version 3.0.3.1 suffers from a cross site scripting vulnerability.

  Tags:  secure cross fast vulnerability  

• 13:00

  Bugtraq: XSS in Fast Secure Contact Form wordpress plugin

   » ‎ SecurityFocus Vulnerabilities
  XSS in Fast Secure Contact Form wordpress plugin

  Tags:  secure xss fast  

• July 29, 2011
• 0:00

  Vuln: Drupal Secure Password Hashes Module Security Bypass Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Drupal Secure Password Hashes Module Security Bypass Vulnerability

  Tags:  secure drupal password vulnerability  

• July 26, 2011
• 11:34

  [Paper] Secure Processors for Embedded Applications

   » ‎ SecDocs
  Authors: James D. Broesch
  Tags: embedded
  Event: Black Hat DC 2007
  

  Tags:  secure processors paper james-d.-broesch black-hat  

• 11:34

  [Paper] Secure Processors for Embedded Applications

   » ‎ SecDocs
  Authors: James D. Broesch
  Tags: embedded
  Event: Black Hat DC 2007
  

  Tags:  secure processors paper james-d.-broesch black-hat  

• 11:34

  [Slides] Secure Processors for Embedded Applications

   » ‎ SecDocs
  Authors: James D. Broesch
  Tags: embedded
  Event: Black Hat DC 2007
  

  Tags:  secure authors processors james-d.-broesch black-hat slides  

• 11:34

  [Slides] Secure Processors for Embedded Applications

   » ‎ SecDocs
  Authors: James D. Broesch
  Tags: embedded
  Event: Black Hat DC 2007
  

  Tags:  secure authors processors james-d.-broesch black-hat slides  

• July 24, 2011
• 21:21

  Want To Be Secure? Don't Be Stupid

   » ‎ Packet Storm Security Headlines
  Want To Be Secure? Don't Be Stupid

  Tags:  secure stupid want  

• July 21, 2011
• 12:00

  Bugtraq: ZDI-11-238: Oracle Secure Backup validate_login Command Injection Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  ZDI-11-238: Oracle Secure Backup validate_login Command Injection Remote Code Execution Vulnerability

  Tags:  validate secure oracle code-execution zdi bugtraq  

• 0:00

  Vuln: Oracle Secure Backup 'validate_login' Command Injection Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Oracle Secure Backup 'validate_login' Command Injection Remote Code Execution Vulnerability

  Tags:  validate secure oracle code-execution vulnerability  

• July 05, 2011
• 18:50

  DmxReady Secure Document Library 1.2 SQL Injection

   » ‎ Packet Storm Security Exploits
  DmxReady Secure Document Library version 1.2 suffers from a remote SQL injection vulnerability.

  Tags:  secure document dmxready secure-document library-version document-library  

• 18:50

  DmxReady Secure Document Library 1.2 SQL Injection

   » ‎ Packet Storm Security Recent Files
  DmxReady Secure Document Library version 1.2 suffers from a remote SQL injection vulnerability.

  Tags:  secure document dmxready secure-document library-version document-library  

• 18:50

  DmxReady Secure Document Library 1.2 SQL Injection

   » ‎ Packet Storm Security Misc. Files
  DmxReady Secure Document Library version 1.2 suffers from a remote SQL injection vulnerability.

  Tags:  secure document dmxready secure-document library-version document-library  

• 7:18

  Apple Mac OS X ImageIO TIFF Heap Overflow

   » ‎ Packet Storm Security Advisories
  Dominic Chell of NGS Secure has discovered a High risk vulnerability in Mac OS X ImageIO. Viewing a maliciously crafted TIFF image may lead to an unexpected application termination or arbitrary code execution.

  Tags:  secure ngs overflow tiff x-imageio mac-os tiff-heap dominic-chell apple-mac-os arbitrary-code-execution tiff-image  

• June 07, 2011
• 0:00

  Vuln: Cisco AnyConnect Secure Mobility Client Arbitrary Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Cisco AnyConnect Secure Mobility Client Arbitrary Code Execution Vulnerability

  Tags:  secure mobility execution cisco arbitrary-code-execution vulnerability  

• June 03, 2011
• 0:00

  Vuln: Cisco AnyConnect Secure Mobility Client Arbitrary Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Cisco AnyConnect Secure Mobility Client Arbitrary Code Execution Vulnerability

  Tags:  secure mobility execution cisco arbitrary-code-execution vulnerability  

• June 02, 2011
• 0:00

  Vuln: Cisco AnyConnect Secure Mobility Client Arbitrary Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Cisco AnyConnect Secure Mobility Client Arbitrary Code Execution Vulnerability

  Tags:  secure mobility execution cisco arbitrary-code-execution vulnerability  

• June 01, 2011
• 12:46

  Cisco Security Advisory 20110601-ac

   » ‎ Packet Storm Security Advisories
  Cisco Security Advisory - The Cisco AnyConnect Secure Mobility Client, previously known as the Cisco AnyConnect VPN Client, is affected by arbitrary program execution and local privilege escalation vulnerabilities. There are no workarounds for the vulnerabilities described in this advisory.

  Tags:  secure client advisory cisco-anyconnect cisco-security cisco-security-advisory arbitrary-program program-execution  

• 12:46

  Cisco Security Advisory 20110601-ac

   » ‎ Packet Storm Security Recent Files
  Cisco Security Advisory - The Cisco AnyConnect Secure Mobility Client, previously known as the Cisco AnyConnect VPN Client, is affected by arbitrary program execution and local privilege escalation vulnerabilities. There are no workarounds for the vulnerabilities described in this advisory.

  Tags:  secure client advisory cisco-anyconnect cisco-security cisco-security-advisory arbitrary-program program-execution  

• 12:46

  Cisco Security Advisory 20110601-ac

   » ‎ Packet Storm Security Misc. Files
  Cisco Security Advisory - The Cisco AnyConnect Secure Mobility Client, previously known as the Cisco AnyConnect VPN Client, is affected by arbitrary program execution and local privilege escalation vulnerabilities. There are no workarounds for the vulnerabilities described in this advisory.

  Tags:  secure client advisory cisco-anyconnect cisco-security cisco-security-advisory arbitrary-program program-execution  

• May 16, 2011
• 7:13

  Dropbox Considered Not Se Secure

   » ‎ Packet Storm Security Headlines
  Dropbox Considered Not Se Secure

  Tags:  secure dropbox  

• 7:13

  Dropbox Considered Not So Secure

   » ‎ Packet Storm Security Headlines
  Dropbox Considered Not So Secure

  Tags:  secure dropbox  

• April 11, 2011
• 7:20

  Police Secure CCTV Footage Of Hyundai Capital Hacker

   » ‎ Packet Storm Security Headlines
  Police Secure CCTV Footage Of Hyundai Capital Hacker

  Tags:  secure police cctv hyundai hacker  

• March 02, 2011
• 11:15

  CA ETrust Secure Content Manager Common Services Transport Code Execution Vulnerability

   » ‎ SecuriTeam
  This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Computer Associates eTrust Secure Content Manager.

  -

  Make your website safer. Use external penetration testing service. First report ready in one hour!

  Tags:  secure content etrust secure-content-manager code-execution safer-use  

• February 01, 2011
• 15:27

  Report: Effort To Secure Nation's Power Grid Ineffective

   » ‎ Packet Storm Security Headlines
  Report: Effort To Secure Nation's Power Grid Ineffective

  Tags:  secure effort report power-grid  

• November 29, 2010
• 13:36

  Secure RM 1.2.11

   » ‎ Packet Storm Security Recent Files
  secure rm (srm) is a command-line compatible rm(1) which completely destroys file contents before unlinking. The goal is to provide drop in security for users who wish to prevent command line recovery of deleted information, even if the machine is compromised.

  Tags:  goal secure srm  

• 13:36

  Secure RM 1.2.11

   » ‎ Packet Storm Security Misc. Files
  secure rm (srm) is a command-line compatible rm(1) which completely destroys file contents before unlinking. The goal is to provide drop in security for users who wish to prevent command line recovery of deleted information, even if the machine is compromised.

  Tags:  goal secure srm  

• November 17, 2010
• 12:03

  [IN]SECURE Magazine Issue 28

   » ‎ Packet Storm Security Recent Files
  Topics for this issue include database protocol exploits being explained, measuring web application security coverage, combating the changing nature of online fraud, and much more.

  Tags:  secure magazine issue web-application-security security-coverage fraud  

• 12:03

  [IN]SECURE Magazine Issue 28

   » ‎ Packet Storm Security Misc. Files
  Topics for this issue include database protocol exploits being explained, measuring web application security coverage, combating the changing nature of online fraud, and much more.

  Tags:  secure magazine issue web-application-security security-coverage fraud  

• October 14, 2010
• 0:00

  Adobe Reader 10 To Be More Secure In A Sandbox

   » ‎ Packet Storm Security Headlines
  Adobe Reader 10 To Be More Secure In A Sandbox

  Tags:  secure reader more adobe-reader sandbox  

• September 14, 2010
• 7:51

  NCP Secure Entry Client v.9.23.017 DLL Hijacking Exploit

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  NCP Secure Entry Client v.9.23.017 DLL Hijacking Exploit

  Tags:  secure entry ncp hijacking  

• 7:51

  NCP Secure Client - Juniper Edition v.9.23.017 DLL Hijacking Exploit

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  NCP Secure Client - Juniper Edition v.9.23.017 DLL Hijacking Exploit

  Tags:  secure client ncp secure-client hijacking  

• September 13, 2010
• 14:00

  [local expoits] - NCP Secure Entry Client v.9.23.017 DLL Hijacking Exploit

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [local expoits] - NCP Secure Entry Client v.9.23.017 DLL Hijacking Exploit

  Tags:  secure entry ncp hijacking  

• 14:00

  [local expoits] - NCP Secure Client - Juniper Edition v.9.23.017 DLL Hijacking Exploit

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [local expoits] - NCP Secure Client - Juniper Edition v.9.23.017 DLL Hijacking Exploit

  Tags:  client secure ncp juniper-edition secure-client hijacking  

• 14:00

  [local exploits] - NCP Secure Entry Client v.9.23.017 DLL Hijacking Exploit

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [local exploits] - NCP Secure Entry Client v.9.23.017 DLL Hijacking Exploit

  Tags:  secure entry ncp hijacking exploits  

• 14:00

  [local exploits] - NCP Secure Client - Juniper Edition v.9.23.017 DLL Hijacking Exploit

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [local exploits] - NCP Secure Client - Juniper Edition v.9.23.017 DLL Hijacking Exploit

  Tags:  client secure ncp juniper-edition secure-client hijacking exploits  

• September 07, 2010
• 15:21

  DMXReady Secure Document Library Persistent XSS Vulnerability

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  DMXReady Secure Document Library Persistent XSS Vulnerability

  Tags:  secure secure-document document-library vulnerability  

• August 16, 2010
• 9:00

  Bugtraq: Insecure secure cookie in Tornado

   » ‎ SecurityFocus Vulnerabilities
  Insecure secure cookie in Tornado

  Tags:  insecure secure cookie tornado  

• August 10, 2010
• 16:36

  Oracle Secure Backup Administration uname Authentication Bypass Vulnerability

   » ‎ SecuriTeam
  This vulnerability allows remote attackers to bypass authentication on vulnerable installations of Oracle Secure Backup.

  -

  Make your website safer. Use external penetration testing service. First report ready in one hour!

  Tags:  secure authentication oracle safer-use attackers vulnerability  

• August 04, 2010
• 14:17

  Oracle Secure Backup Administration objectname Command Injection Code Execution Vulnerability

   » ‎ SecuriTeam
  This vulnerability allows remote attackers to execute arbitrary commands on vulnerable installations of Oracle Secure Backup.

  -

  Make your website safer. Use external penetration testing service. First report ready in one hour!

  Tags:  secure vulnerability oracle code-execution safer-use arbitrary-commands  

• 14:07

  Oracle Secure Backup Administration selector Command Injection Code Execution Vulnerability

   » ‎ SecuriTeam
  This vulnerability allows remote attackers to inject arbitrary commands on vulnerable installations of Oracle Secure Backup.

  -

  Make your website safer. Use external penetration testing service. First report ready in one hour!

  Tags:  secure vulnerability oracle code-execution safer-use arbitrary-commands  

• July 30, 2010
• 21:47

  Oracle Secure Backup Administration Authentication Bypass Vulnerability

   » ‎ SecuriTeam
  This vulnerability allows remote attackers to bypass authentication on vulnerable installations of Oracle Secure Backup.

  -

  Make your website safer. Use external penetration testing service. First report ready in one hour!

  Tags:  secure authentication oracle safer-use attackers vulnerability  

• July 27, 2010
• 21:12

  [Video] Secure the Planet! New Strategic Initiatives from Microsoft to Rock Your World

   » ‎ SecDocs
  Authors: Mike Reavey Steve Adegbite Katie Moussouris
  Tags: security secure development
  Event: Black Hat USA 2008
  

  Tags:  planet secure video mike-reavey rock-your katie-moussouris steve-adegbite usa strategic-initiatives world-authors  

• 21:12

  [Slides] Secure the Planet! New Strategic Initiatives from Microsoft to Rock Your World

   » ‎ SecDocs
  Authors: Mike Reavey Steve Adegbite Katie Moussouris
  Tags: security secure development
  Event: Black Hat USA 2008
  

  Tags:  planet secure new mike-reavey rock-your katie-moussouris steve-adegbite usa strategic-initiatives world-authors  

• July 26, 2010
• 21:11

  [Audio] Secure the Planet! New Strategic Initiatives from Microsoft to Rock Your World

   » ‎ SecDocs
  Authors: Mike Reavey Steve Adegbite Katie Moussouris
  Tags: security secure development
  Event: Black Hat USA 2008
  

  Tags:  planet secure audio mike-reavey rock-your katie-moussouris steve-adegbite usa strategic-initiatives world-authors  

• July 14, 2010
• 0:00

  Vuln: Oracle Secure Backup Scheduler Service Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Oracle Secure Backup Scheduler Service Remote Code Execution Vulnerability

  Tags:  secure oracle scheduler code-execution scheduler-service vulnerability  

• 0:00

  Vuln: Oracle Secure Backup CVE-2010-0907 Unspecified Remote Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Oracle Secure Backup CVE-2010-0907 Unspecified Remote Vulnerability

  Tags:  secure oracle unspecified vulnerability  

• July 09, 2010
• 21:07

  [Video] Virtually Secure

   » ‎ SecDocs
  Authors: Oded Horovitz
  Tags: virtualization virtual machine
  Event: Black Hat USA 2008
  

  Tags:  secure video authors usa black-hat virtual-machine  

• July 08, 2010
• 21:07

  [Slides] Virtually Secure

   » ‎ SecDocs
  Authors: Oded Horovitz
  Tags: virtualization virtual machine
  Event: Black Hat USA 2008
  

  Tags:  oded secure authors usa black-hat virtual-machine slides  

• 21:06

  [Audio] Virtually Secure

   » ‎ SecDocs
  Authors: Oded Horovitz
  Tags: virtualization virtual machine
  Event: Black Hat USA 2008
  

  Tags:  secure audio authors usa black-hat virtual-machine  

• June 08, 2010
• 12:25

  HP Secure Web Server for OpenVMS CSWS Multiple Vulnerabilities

   » ‎ SecuriTeam
  Multiple vulnerabilities were discovered in HP Secure Web Server for OpenVMS (based on Apache) CSWS.

  -

  Make your website safer. Use external penetration testing service. First report ready in one hour!

  Tags:  server secure web safer-use secure-web web-server  

• March 31, 2010
• 13:28

  Re: Clever DEP Trick

   » ‎ Full Disclosure

  Posted by ☣frank^2 on Mar 31

  I'm a little upset that you've decided to take this route-- especially
  considering your strong stance on the New World Order. Doesn't helping
  the Information Society's establishment in using technology to guide
  and control the world populous contradict your beliefs? By joining the
  information security community and contributing to it you're
  essentially empowering the New World Order and its ability to remain
  secure from the outside threat of...
  

  Tags:  dep NWO society morality ethics ethical secure stance information-security