Below is a listing articles that are from the blog that you selected. To get a quick summary of the post
click on the title of the article that you want to know more about. If you want to go to the blog's homepage click on the
arrow which is next each article.
Darknet - The Darkside
Darknet - The Darkside
NfSpy – ID-spoofing NFS Client Tool – Mount NFS Shares Without Account»»
We wrote about this tool originally last year – NfSpy – ID-spoofing NFS Client – Falsify NFS Credentials – and a new version just came out! NfSpy has just been updated to support NFSv3, a more efficient and widespread protocol than the previous NFSv2. NfSpy is a FUSE filesystem written in Python that automatically changes [...]
Android Trojan Targets Japanese Market – Steals Personal Data»»
Early last year we wrote about China Facing Problems With Android Handsets & Pre-installed Trojans, then later last year there was a possibility Cybercrooks May Be Able To Force Mobile Phones To Send Premium-Rate SMS Messages. The latest news about Android malware is malicious apps that are in the official Google marketplace (called Play)...
web-sorrow – Remote Web Security Scanner (Enumeration/Version Detection etc)»»
web-sorrow is a PERL based tool used for checking a Web server for misconfiguration, version detection, enumeration, and server information. It is NOT a vulnerability scanner, inspection proxy, DDoS tool or an exploitation framework. Current Functionality -S – stands for standard. a set of Standard tests and includes: indexing of directories...
Microsoft Delivers 6 Out Of Band High Priority Security Updates»»
Now it was only last month when everyone was wrapped up in the MS12-020 RDP Exploit Code In The Wild issue. As it turns out, Microsoft have been hiding some more serious security issues under the carpet. Apparently attackers are already exploiting the MS12-027 flaw in ActiveX in the wild – although Microsoft of course [...]
Carbylamine – A PHP Script Encoder to ‘Obfuscate/Encode’ PHP Files»»
Carbylamine is a PHP Encoder project, which can bypass all leading anti-virus detection against PHP Shells (C99, R57 etc) easily. It can be a very efficient tool for pen-testers when carrying out a black box test which involves inserting malicious code via PHP. Usage You can download Carbylamine here: carbylamine.php Or read more here.
Server Migration – Moved To Linode! And Changed To Nginx/PHP-FPM/APC/W3TC»»
So lately I’ve being doing a lot more DevOps stuff than security stuff and I’m pretty much enjoying it (apart from some of the tedious sys-admin stuff). So with some of the new stuff I’ve learnt along the way, I decided to move Darknet from a rather bloated managed VPS with 2GB of RAM and [...]
Zero Day Java Vulnerability Exploited – Macs Infected With Flashback Malware»»
Interesting timing this one, just a couple of days ago we reported – Avira Joins The Crowd & Starts To Offer Mac Antivirus Software – and now an unpatched vulnerability in Java for Mac OS that is being exploited in the wild. The vulnerability (CVE-2012-0507) was patched in Java by Oracle back in February, but [...]
GooDork – Command Line Google Dorking/Hacking Tool»»
GooDork is a simple python script designed to allow you to leverage the power of Google Dorking straight from the comfort of your command line. There was a GUI tool we discussed a while back similar to this – Goolag – GUI Tool for Google Hacking. GooDork offers powerful use of Google’s search directives, by [...]
Avira Joins The Crowd & Starts To Offer Mac Antivirus Software»»
For years the Apple geeks were always self-praising and postulating that their OS was so secure and superior that it didn’t need any silly Anti Virus software. Things changed a couple of years back though, probably in 2009 when Mac OS X Snow Leopard Bundled With Malware Detector. Not long after that the commercial crowd [...]
SSLyze v0.4 Released – Scan & Analyze SSL Server Configuration»»
SSLyze is a Fast and Full-Featured SSL Scanner – it enables Better, faster scanning to analyze the configuration of SSL servers. Supports cipher suites scanning, insecure renegotiation verification, session resumption testing, client certificates, and more. Tested on Python 2.6 & 2.7 with Ubuntu and Windows 7, both 32 and 64 bits. Might...
