|
We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
|
|
|
Source: The Register - Posted by Anthony Pell
|
|
A hacker has discovered a critical vulnerability in open-source firmware available for wireless routers made by Linksys and other manufacturers that allows attackers to remotely penetrate the device and take full control of it. |
|
|
Source: arsTechnica - Posted by Anthony Pell
|
|
Researchers have come a step closer to breaking open a common WiFi encryption scheme. An attacker can now read and falsify short packets in the common TKIP version of WiFi Protected Access (WPA) encryption in about one minute—a huge speed increase from the previously-required 12-15 minutes. |
|
|
Source: ZDNet - Posted by Anthony Pell
|
|
Computer scientists in Japan have developed a way to break the WPA encryption system used in wireless routers in just one minute. |
|
|
Source: CNET - Posted by Anthony Pell
|
|
If you are using a GSM phone (AT&T or T-Mobile in the U.S.), you likely have a few more months before it will be easy for practically anyone to spy on your communications.
Security researcher Karsten Nohl is launching an open-source, distributed computing project designed to crack the encryption used on GSM phones and compile it into a code book that can be used to decode conversations and any data that gets sent to and from the phone. |
|
|
Source: Dark Reading - Posted by Anthony Pell
|
|
Researchers here tomorrow will demonstrate a way to hijack the application update process via WiFi and replace the updates with malware.
Itzik Kotler, security operation center team leader for Radware and Tomer Bitton, security researcher for Radware, say that the hack can be used against most of today's client application updates. |
|
|
Source: CNET - Posted by Administrator
|
|
Apple stated in its filing that by changing the BBP's code, "More pernicious forms of activity may also be enabled. For example, a local or international hacker could potentially initiate commands (such as a denial-of-service attack) that could crash the tower software, rendering the tower entirely inoperable to process calls or transmit data. In short, taking control of the BBP software would be much the equivalent of getting inside the firewall of a corporate computer--to potentially catastrophic result." |
|
|
Source: DarkNet - Posted by Bill Keys
|
|
I found an interesting article today which sums up most of the acryonyms involved in wireless networks and wireless security and explain them all in brief.
It may clear things up for some people who get overwhelmed by all the jargon, especially with the recent news hitting the mainstream about WPA being partially cracked.
There are so many wireless protocols out there that it can be confusing to know which one to use. This article will clear up the confusion. What is your favorite wireless protocol? |
|
|
Source: ComputerWorld.com - Posted by Burhan Syed
|
|
These days, most of us can use our Wi-Fi cards on Linux using native drivers. Some of us, though, are still stuck with using Windows drivers on Linux. This kludge is usually done by using the Windows driver with NDISwrapper. Unfortunately, it's recently been discovered that there's a crack in the kludge.
Do you think this bug is capable enough to crash a system? Read on for more information. |
|
|
Source: ZDNet - Posted by Bill Keys
|
|
A handset-based network-penetration tool that runs on a Linux phone has been announced in the US.The NeoPwn tool is based on a modified Linux 2.6.24 kernel, and will let IT professionals toggle between two modes — 'phone' and 'pwn'. The software stack runs on the Openmoko Neo FreeRunner Linux handset, which offers USB WLAN support, a GPS modem, a GPRS modem for cellular connectivity, and a CSR Bluetooth module.Pwn mode enables Wi-Fi and Bluetooth network-penetration testing, through the use of tools including Aircrack and Metasploit. While there is no hardware Qwerty keyboard, NeoPwn claimed the FreeRunner's touchscreen keyboard is "more usable than the iPhone and Nokia Nseries".
Have you ever though about using your phone as a security tool? This project's goal is to bring network-penetration to your phone. How useful do you think this will be in helping to find holes in your network? |
|
|
Source: Google code - Posted by Bill Keys
|
|
Scalp! is a log analyzer for the Apache web server that aims to look for security problems. The main idea is to look through huge log files and extract the possible attacks that have been sent through HTTP/GET (By default, Apache does not log the HTTP/POST variable).
Scalp is basically using the regular expression from the PHP-IDS project and matches the lines from the Apache log. These regexp has been chosen because of their quality and the top activity of the team maintaining that project.
Have you ever used a log analyzer called Scalp? This project tries to look for possible security issues with your Apache web server implementation by checking the logs from your webserver. Do you use any other tools for checking your Apache logs or do you just check your only logs by eye. |
|
|
<< Start < Prev 4 5 6 Next > End >>
|
| Results 41 - 50 of 233 |
