jetlib.sec » Tags » security-assessment

Feeds

133445 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

26 items tagged "security assessment"

Related tags: security [+], com [+], oracle [+], jre java [+], java [+], internet protocol version [+], bugtraq [+], glassfish [+], xml [+], whitepaper [+], txt [+], tool [+], sun java [+], sun [+], server [+], security recommendations [+], routerdefense [+], rfc [+], read [+], java system [+], ipv [+], internet protocol version 6 [+], internet protocol version 4 [+], http [+], hacking [+], full disclosure [+], external entity [+], evilqr [+], code [+], cisco ios [+], advisory [+], adobe products [+], administrative web [+], web developers [+], web application security [+], web [+], vulnerabilities [+], time [+], ta mapper [+], slides [+], skipfish [+], secunia [+], scripting [+], mapper [+], hollywood [+], exploits [+], destination search [+], cross site scripting [+], cross [+], context [+], com whitepaper [+], accurate estimation [+], access control [+], Tools [+], Release [+], General [+], assessment [+]

• April 20, 2012
• 21:53

  Secunia Security Advisory 48798

   » ‎ Packet Storm Security Advisories
  Secunia Security Advisory - Security-Assessment.com has reported some vulnerabilities in Oracle GlassFish Enterprise Server, which can be exploited by malicious people to conduct cross-site scripting and request forgery attacks.

  Tags:  advisory secunia security cross-site-scripting glassfish security-assessment  

• 17:22

  Oracle GlassFish Server 3.1.1 Build 12 Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  Security-Assessment.com has discovered that components of the Oracle GlassFish Server administrative web interface are vulnerable to both reflected and stored cross site scripting attacks. All pages where cross site scripting vulnerabilities were discovered require authentication. Oracle GlassFish Server version 3.1.1 build 12 is affected.

  Tags:  server glassfish oracle administrative-web security-assessment  

• 17:22

  Oracle GlassFish Server 3.1.1 Build 12 Cross Site Scripting

   » ‎ Packet Storm Security Misc. Files
  Security-Assessment.com has discovered that components of the Oracle GlassFish Server administrative web interface are vulnerable to both reflected and stored cross site scripting attacks. All pages where cross site scripting vulnerabilities were discovered require authentication. Oracle GlassFish Server version 3.1.1 build 12 is affected.

  Tags:  server glassfish oracle administrative-web security-assessment  

• January 22, 2012
• 16:32

  RouterDefense 2012_1

   » ‎ Packet Storm Security Recent Files
  RouterDefense is a Cisco IOS security assessment tool. It deep dives into router and switch configurations and reports security recommendations.

  Tags:  assessment security routerdefense cisco-ios security-recommendations security-assessment  

• 16:32

  RouterDefense 2012_1

   » ‎ Packet Storm Security Misc. Files
  RouterDefense is a Cisco IOS security assessment tool. It deep dives into router and switch configurations and reports security recommendations.

  Tags:  assessment security routerdefense cisco-ios security-recommendations security-assessment  

• November 29, 2011
• 10:00

  Bugtraq: Security-Assessment.com Release: Hacking Hollywood Slides, Advisories and Exploits

   » ‎ SecurityFocus Vulnerabilities
  Security-Assessment.com Release: Hacking Hollywood Slides, Advisories and Exploits

  Tags:  com Release assessment hollywood security-assessment exploits slides  

• November 08, 2011
• 7:06

  IPv6 Security Assessment Results

   » ‎ Packet Storm Security Recent Files
  These are the slides from a presentation called Results of a Security Assessment of the Internet Protocol version 6 (IPv6). It was presented at H2HC 2011.

  Tags:  ipv security assessment internet-protocol-version internet-protocol-version-6 security-assessment  

• 7:06

  IPv6 Security Assessment Results

   » ‎ Packet Storm Security Misc. Files
  These are the slides from a presentation called Results of a Security Assessment of the Internet Protocol version 6 (IPv6). It was presented at H2HC 2011.

  Tags:  ipv security assessment internet-protocol-version internet-protocol-version-6 security-assessment  

• October 13, 2011
• 8:07

  Bugtraq: Security-Assessment.com Advisory: Destination Search Admin Console Access Control Bypass

   » ‎ SecurityFocus Vulnerabilities
  Security-Assessment.com Advisory: Destination Search Admin Console Access Control Bypass

  Tags:  advisory com assessment destination-search security-assessment access-control  

• August 15, 2011
• 20:56

  EvilQR - When QR Code Goes Bad

   » ‎ Packet Storm Security Recent Files
  Whitepaper called EvilQR – When QR Code Goes Bad . This is a security assessment of mobile QR readers.

  Tags:  code evilqr whitepaper security-assessment  

• 20:56

  EvilQR - When QR Code Goes Bad

   » ‎ Packet Storm Security Misc. Files
  Whitepaper called EvilQR – When QR Code Goes Bad . This is a security assessment of mobile QR readers.

  Tags:  code evilqr whitepaper security-assessment  

• July 05, 2011
• 18:41

  RFC 6274 - Security Assessment Of The Internet Protocol Version 4

   » ‎ Packet Storm Security Recent Files
  The IETF has just published RFC 6274, entitled "Security Assessment of the Internet Protocol Version 4". It contains a large amount of information on how to improve the security of IPv4 implementations and IPv4 deployments.

  Tags:  rfc security assessment internet-protocol-version internet-protocol-version-4 security-assessment  

• 18:41

  RFC 6274 - Security Assessment Of The Internet Protocol Version 4

   » ‎ Packet Storm Security Misc. Files
  The IETF has just published RFC 6274, entitled "Security Assessment of the Internet Protocol Version 4". It contains a large amount of information on how to improve the security of IPv4 implementations and IPv4 deployments.

  Tags:  rfc security assessment internet-protocol-version internet-protocol-version-4 security-assessment  

• October 21, 2010
• 14:00

  Bugtraq: Re: Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass

   » ‎ SecurityFocus Vulnerabilities
  Re: Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass

  Tags:  oracle java com jre-java security-assessment bugtraq  

• October 20, 2010
• 15:00

  Bugtraq: Re: Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass

   » ‎ SecurityFocus Vulnerabilities
  Re: Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass

  Tags:  oracle java com jre-java security-assessment bugtraq  

• 15:00

  Bugtraq: Re: [Full-disclosure] Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass

   » ‎ SecurityFocus Vulnerabilities
  Re: [Full-disclosure] Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass

  Tags:  full-disclosure com assessment jre-java security-assessment  

• 14:00

  Bugtraq: Re: Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass

   » ‎ SecurityFocus Vulnerabilities
  Re: Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass

  Tags:  oracle java com jre-java security-assessment bugtraq  

• 14:00

  Bugtraq: Re: [Full-disclosure] Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass

   » ‎ SecurityFocus Vulnerabilities
  Re: [Full-disclosure] Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass

  Tags:  full-disclosure com assessment jre-java security-assessment  

• October 19, 2010
• 18:02

  Oracle_Sun_Java_System_Web_Server_HTTP_Response_Splitting.pdf

   » ‎ Packet Storm Security Recent Files
  Security-Assessment.com discovered that is possible to successfully perform an HTTP Response Splitting attack against applications served by Sun Java System Web Server. The vulnerability can be exploited if user supplied input is used to generate the value of an HTTP header.

  Tags:  java sun http java-system security-assessment sun-java  

• 18:02

  Oracle_Sun_Java_System_Web_Server_HTTP_Response_Splitting.pdf

   » ‎ Packet Storm Security Exploits
  Security-Assessment.com discovered that is possible to successfully perform an HTTP Response Splitting attack against applications served by Sun Java System Web Server. The vulnerability can be exploited if user supplied input is used to generate the value of an HTTP header.

  Tags:  java sun http java-system security-assessment sun-java  

• 8:00

  Bugtraq: Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass

   » ‎ SecurityFocus Vulnerabilities
  Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass

  Tags:  oracle java com jre-java security-assessment bugtraq  

• September 27, 2010
• 3:21

  TA-Mapper v1.1 – Time and Attack Mapper – Effort Estimator For Pen-Testing

   » ‎ Darknet
  We wrote about this tool back in January 2009 when it was first released, recently v1.1 has become available for download. Time and Attack Mapper (alternatively known as TA-Mapper) is an effort estimator tool for blackbox security assessment (or Penetration Testing) of applications. This tool provides more accurate estimation when compared to...
  
  Read the full post at darknet.org.uk

  
  

  

  Tags:  ta-mapper tool time read accurate-estimation security-assessment mapper General hacking  

• April 22, 2010
• 8:39

  Bugtraq: Security-Assessment.com WhitePaper/Addendum: Cross Context Scripting with Firefox & Exploiting Cross Context Scripting vulnerabilities in Firefox

   » ‎ SecurityFocus Vulnerabilities
  Security-Assessment.com WhitePaper/Addendum: Cross Context Scripting with Firefox & Exploiting Cross Context Scripting vulnerabilities in Firefox

  Tags:  cross scripting context security-assessment com-whitepaper vulnerabilities  

• March 21, 2010
• 23:54

  skipfish – Automated Web Application Security Reconnaissance Tool

   » ‎ Darknet
  The safety of the Internet is of paramount importance to Google, and helping web developers build secure, reliable web applications is an important part of the equation. To advance this goal, Google has released projects such as ratproxy, a passive security assessment tool. The latest is they have announced a new tool called skipfish – a...
  
  Read the full post at darknet.org.uk

  
  

  

  Tags:  tool web skipfish read web-application-security security-assessment web-developers hacking Tools  

• February 23, 2010
• 0:00

  adobexml-injection.txt

   » ‎ Packet Storm Security Recent Files
  Security-Assessment.com discovered that multiple Adobe products with different Data Services versions are vulnerable to XML External Entity (XXE) and XML injection attacks.

  Tags:  txt xml security external-entity security-assessment adobe-products  

• 0:00

  adobexml-injection.txt

   » ‎ Packet Storm Security Exploits
  Security-Assessment.com discovered that multiple Adobe products with different Data Services versions are vulnerable to XML External Entity (XXE) and XML injection attacks.

  Tags:  txt xml security external-entity security-assessment adobe-products