Wednesday, July 2nd, 2008
Ratproxy is a semi-automated, largely passive web application security audit tool. It is meant to complement active crawlers and manual proxies more commonly used for this task, and is optimized specifically for an accurate and sensitive detection, and automatic annotation, of potential problems and security-relevant design patterns based on the ...
Posted in Internet, Networking, Privacy, Security, Software | No Comments
Wednesday, July 2nd, 2008
With the cold an flu season most definitely upon us, there is much that the common cold can show us about network intrusion and what can happen once a single compromise has taken place.As you sniffle and blink your way through this article, think of how your computer responds to ...
Posted in Internet, Networking, Privacy, Security | No Comments
Tuesday, July 1st, 2008
We all worry about keeping our online passwords safe from prying eyes. But now our faith in ATM PIN codes is being shaken.
Three people face charges in federal court in New York for allegedly breaking into Citibank's ATM network inside 7-Eleven stores and stealing PIN codes, according to court filings ...
Posted in General BS, Hardware, Internet, Networking, Privacy, Security, Windows | No Comments
Tuesday, July 1st, 2008
Yesterday I wrote a quick proposal for the Synapse project. Since not everyone has access to the Synapse project, I will share some ideas here from time to time. I started with a proposal on how to detect Xpath vulnerabilities. Since Xpath can be used in combination with every server-side ...
Posted in Coding, Internet, Linux, Networking, Security | No Comments
Tuesday, July 1st, 2008
Now this is an oldskool topic, wardialling! Some people still ask me about wardialling tools though, so here’s one I found recently written in Python.
PAW / PAWS is a wardialing software in python. It is designed to scan for ISDN (PAWS only) and “modern” analog modems (running at 9.6kbit/s or ...
Posted in Coding, Internet, Linux, Networking, Privacy, Security | No Comments
