Penetration Testing Mode:
(Page 4 of 639)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
Positive Hack Days V ? Call for Papers Stage 2 2015-02-25
Alexander Lashkov (ALashkov ptsecurity com)
Every night when we go to sleep we have a chance to wake up in another
universe. At any time, the expanding to infinity universe may turn back
and then rush to the start point. Or maybe finish point. Back to

The cyber universe has plunged into turmoil. Cyber criminals and special

[ more ]  [ reply ]
SpiderFoot 2.3.0 released 2015-02-12
Steve Micallef (steve binarypool com)
Hi all,

SpiderFoot 2.3.0 is now available, and includes a ton of new
functionality since 2.1.4 was last announced here. SpiderFoot is an open
source intelligence gathering / reconnaissance tool utilising over 40
data sources and methods, all driven through a snappy web UI.

Here's what's new sin

[ more ]  [ reply ]
Recon 2015 Call For Papers - June 19 - 21, 2015 - Montreal, Canada 2015-01-08
cfp2015 recon cx
+ + + +
+ + +
+ +
\ /
+ _ - _+_ - ,__

[ more ]  [ reply ]
[HITB-Announce] #HITB2015AMS Call for Papers is Open 2014-12-09
Hafez Kamal (aphesz hackinthebox org)
Happy December everyone - It's that time of the year again when we ask
you to submit your latest and greatest research papers for HITB Security
Conference in Amsterdam! Our 6th annual event in The Netherlands takes
place at the Beurs van Berlage from the 26th - 29th of May 2014.

Event Website: http

[ more ]  [ reply ]
t2â??14 Challenge to be released 2014-09-13 10:00 EEST 2014-09-07
Tomi Tuominen (tomi tuominen t2 fi)
Running assets is always difficult, however this year has been excruciating for t2 infosec. We lost one of our most prized and well placed deep cover operatives in a foreign three letter agency. Shortly after the CFP, communications stopped and we have to assume her new assignment is a permanent pla

[ more ]  [ reply ]
[Onapsis Security Advisory 2014-021] SAP HANA XS Missing encryption in form-based authentication 2014-07-29
Onapsis Research Labs (research onapsis com)
Hash: SHA1

Onapsis Security Advisory 2014-021: SAP HANA XS Missing encryption in
form-based authentication

This advisory can be downloaded in PDF format from

By downloading this advisory from the Onapsis Resource Center, you will
gain ac

[ more ]  [ reply ]
Re: failure notice 2014-07-25
Nikola Milosevic (nikola milosevic86 gmail com)
Well I believe the right answer is nothing. If you publicly disclose it,
you are risking being sued.

It is ethically to disclose it to them, as you did it. However, company is
not liable of giving you price or even do anything about the vulnerability
(I guess until it is too late). They don't even

[ more ]  [ reply ]
How to deal with the company that doesn't react on providing them information about serious security vulnerability? 2014-07-23
MichaÅ? RybiÅ?ski (fishmanos79 gmail com) (2 replies)
Hi all,

I believe this is the best place to ask such question because I would
imagine that most of people reading this list have something to do
with discovering vulnerabilities and reporting them to parties

On the beginning of the January I have discovered some security flaw
which al

[ more ]  [ reply ]
Ruxcon 2014 Final Call For Presentations 2014-07-15
cfp ruxcon org au
Ruxcon 2014 Call For Presentations
Melbourne, Australia, October 11th-12th
CQ Function Centre

The Ruxcon team is pleased to announce the Final Call For Presentations for Ruxcon 2014.

This year the conference will take place over the weekend of the 11th and 12th of October

[ more ]  [ reply ]
SmartPentester 1.0 released 2014-06-27
Smart Splat (smartpentester gmail com)
Hi All,

SmartPentester 1.0 is now available,Its an SSH based Penetration
Testing Framework for system like Kali and Backtrack
It provides a GUI for well known tools like
nmap,hping,tcpdump,volatility,hydra and etc. Consisting of modules
Penetration testing,
Malware Analysis, Forensic Analysis, Cybe

[ more ]  [ reply ]
[HITB-Announce] #HITB2014KUL round 1 CFP submission deadline in < 1 week 2014-06-24
Hafez Kamal (aphesz hackinthebox org)
The deadline to submit your papers for the the 12th and FINAL HITB
Security Conference in Malaysia is just around the corner! Paper
selection will be done in two rounds:

ROUND 1 DEADLINE: 30th June 2014
FINAL DEADLINE: 31st July 2014

HITBSecConf2014 - Malaysia takes place at Intercontinental Kuala

[ more ]  [ reply ]
Embedded Device Security Conference 2014 // CFP 2014-06-10
Michael Eddington (meddington gmail com)
EDSC is an annual security conference focusing on embedded systems,
hardware, and anything behind the silicon curtain. Embedded systems
testing is a rapidly expanding area of the security industry and
staying current is important for engineers, researchers, and testers
alike. EDSC brings the top t

[ more ]  [ reply ]
t2'14: Call for Papers 2014 (Helsinki / Finland) 2014-05-19
Tomi Tuominen (tomi tuominen t2 fi)
# t2'14 - Call For Papers (Helsinki, Finland) - October 23 - 24, 2014

Do you feel like Las Vegas is too hot, Berlin too bohème, Miami too humid, Singapore too clean and Pattaya just totally confusing ? No worries! Helsinki will be the perfect match for you â?? guaranteed low temperature, high

[ more ]  [ reply ]
Ruxcon 2014 Call For Papers 2014-05-05
cfp ruxcon org au
Ruxcon 2014 Call For Presentations
Melbourne, Australia, October 11th-12th

The Ruxcon team is pleased to announce the Call For Presentations for Ruxcon 2014.

This year the conference will take place over the weekend of the 11th and 12th
of October at the CQ Function Cent

[ more ]  [ reply ]
SpiderFoot 2.1.4 released 2014-04-28
Steve Micallef (steve binarypool com)
Hi all,

SpiderFoot 2.1.4 is now available, and will be the last enhancement
release on the 2.1 branch as I focus on 2.2. SpiderFoot is an open
source footprinting and intelligence gathering tool, written in Python
and runs on Linux, *BSD and Windows.

Since 2.1.0 was announced here in January, t

[ more ]  [ reply ]
OWASP ZAP 2.3.0 2014-04-10
psiinon (psiinon gmail com)
Hi folks,

OWASP ZAP 2.3.0 is now available :

Quick summary of the main changes:

* A ZAP 'lite' version in addition to the existing 'full' version
* View, intercept, manipulate, resend and fuzz client-side (browser) events
* Enhanced authenticat

[ more ]  [ reply ]
c0c0n 2014 | The cy0ps c0n - Call For Papers & Call For Workshops 2014-03-24
c0c0n International Information Security Conference (c0c0n is-ra org)

            ___        ___          ___   ___  __ _  _   
           / _ \      / _ \        |__ \ / _ \/_ | || | 
       ___| | | | ___| | | |_ __      ) | | | || | || |_
      / __| | | |/ __| | | | '_ \    / /| | | || |__   _|
     | (__| |_| |

[ more ]  [ reply ]
Shakacon 2014: Call for Papers - Deadline April 11th 2014-03-20
Shakacon (info shakacon org)
==<Apologies for the cross posting but hope to see everyone at the

Shakacon VI - Honolulu, Hawaii

"Sun, Surf, and C Shells"


[ more ]  [ reply ]
SAP post exploitation 2014-03-14
Brian Milliron (Brian ECRSecurity com)
Recently I ran across some vulnerable AIX SAP servers on a test and
managed to get admin access on the Web GUI. However, I know very little
about SAP and was unable to leverage SAP admin to get access to the
Oracle DB (it uses a separate credential store) or root on the OS.
Looking through all the

[ more ]  [ reply ]
IMAP STARTTLS sniff tool 2014-03-07
Bob Ezrin (bezrin gmx com)
Hi all.
We managed succesfully to sniff inside POP3S, SMTPS, IMAPS & HTTPS tunnels using:


iptables -t nat -A PREROUTING -p tcp --dport ORIGIN_PORT -j REDIRECT --to-port REDIRECT_PORT


to make man-in-the-middle.

[ more ]  [ reply ]
IMAP STARTTLS sniff tool 2014-03-07
Bob Ezrin (bezrin gmx com)
Hi all.
We managed succesfully to sniff inside POP3S, SMTPS, IMAPS & HTTPS tunnels using arpspoof, iptables & sslsplit to make
Now we want to sniff inside STARTTLS tunnels (specifically IMAP) but unfortunately sslsplit doesn't supports STARTTLS.
Is there/do you know another SSL/TLS tool su

[ more ]  [ reply ]
[Tool] GoLismero 2.0 beta 3 2014-02-13
cr0hn (cr0hn cr0hn com)
Hello everybody,

From GoLismero project, we pleased to announce the new beta release of GoLismero: GoLismero 2.0 beta 3.

GoLismero is an open source framework for security testing. It's currently geared towards web security, but it can easily be expanded to other kinds of scans. The most importa

[ more ]  [ reply ]
Damn Vulnerable IOS App v1.0 launched 2014-02-04
Prateek Gianchandani (prateek searchingeye gmail com)
Hi All,

It gives me great pleasure to announce v1.0 of Damn Vulnerable IOS =


Damn Vulnerable IOS App (DVIA) is an IOS application that is damn =

vulnerable. Its main goal is to provide a platform to mobile security =

enthusiasts/professionals or stu

[ more ]  [ reply ]
How To Import Nmap XML Results Into Nessus 2014-01-27
Travis Lee (eelsivart gmail com)
In a typical assessment, an initial port scan is performed on the network
with Nmap to discover hosts and to find open ports and services. This would
be followed by a scan with Nessus to determine if those services contain any
known vulnerabilities.

However, in a standard Nessus scan, Nessus will p

[ more ]  [ reply ]
Internship with the National CCDC Red Team 2014-01-23
Rob Fuller (jd mubix gmail com)
This year's National CCDC is mixing it up a bit and leaving one spot
on the Red Team for an "intern". If you don't what CCDC is, it's the
"Collegiate Cyber Defense Competition". Basically school at the state,
regional, and national levels complete in a contest where they are
dropped into a corporate

[ more ]  [ reply ]
(Page 4 of 639)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


Privacy Statement
Copyright 2010, SecurityFocus