Hello everyone,

A debate has been started in the office that I work in over this question.

?Should binary analysis (i.e. reversing and fuzzing) be part of an internal vulnerability and pen testing solution??

There is mission critical custom in house software solu

[ more ]  [ reply ]

Hello list,

I'm just dropping a line that we now have a free magazine available and you can get some info without any costs. It's PenTest Free about Pentesting Attacks.

The magazine will be monthly and free of charge, available to download after a free registration.

You can check what we have for

[ more ]  [ reply ]

http://www.zdnet.com/pwn2own-goes-mobile-200000-prizes-for-ios-android-b
lackberry-zero-day-attack-7000001316/

Conference organizers at EuSecWest in Amsterdam are dangling $200,000
in cash prizes to security researchers who demonstrate zero-day
attacks against the most widely deployed smart phones.

[ more ]  [ reply ]

A very cool new blog on cloud security (http://www.sans.org/cloud) is
the first I have seen that isn't a collection of vendor-paid consultants
or employees pretending they are writing independently. This site looks
like it is on track to rival the world-class forensics blog at the
bottom of http://c

[ more ]  [ reply ]

I'm new to SSL Certs and new to installing/importing/managing in Windows 2008. I'm trying to figure out how to install/import a newly created Verified Class 2 digital SSL Certificate to use with my Exchange OWA but am getting no where fast.

I may have done this backwards but I generated or created

[ more ]  [ reply ]

I've not used RSA Envision, but I have used other SIEMs or seen them in action.

For the most part, you're either going to have to spend the time to set up each specific series of events that you want to look at. Or you're just not going to be able to stitch together individual events to make a whol

[ more ]  [ reply ]

What is the best alternative for adobe pdf...?

I am use...Pdf-xchange...

The question is, what is more secure..adobe or pfd-xchange.

http://www.tracker-software.com/

what other alternative is more secure, less vulnerable

best regards

--
Este correo fue escaneado con la plataforma de antisp

[ more ]  [ reply ]

Hello Readers,

ClubHack Magazine's Issue 30, July 2012 is here.

This issue covers following articles:-

0x00 Tech Gyan - PHP Shells
0x01 Tool Gyan - OWASP DirBuster - Bruteforcing the web
0x02 Mom's Guide - Private Browsing
0x03 Legal Gyan - Section 66E - Punishment for Violation of Privacy
0x04

[ more ]  [ reply ]

>From: Andreas Lindkvist [mailto:lindkvist.andreas (at) gmail (dot) com [email concealed]]
>Sent: Thursday, July 19, 2012 3:26 AM
>To: John Hebert
>Subject: Re: Malware detection
>
>Hello!
>
>I read the FW-howto and also alot of comments in this communication and it is important to mention that you are not safe from SPAM-issue

[ more ]  [ reply ]

My 2 cents.....

If you are not looking for a "large robust solution" and you have Windows, try a mixed solution of Microsoft Windows Security Essentials for servers and workstations to detect and eliminate,

Windows inherent AppLocker for Windows 2008/Windows 7/Vista for whitelisting authorized ap

[ more ]  [ reply ]

>From: mwamba chishimba [mailto:bamwamba (at) gmail (dot) com [email concealed]]
>Sent: Wednesday, July 18, 2012 2:11 PM
>To: John Hebert
>Cc: security-basics (at) securityfocus (dot) com [email concealed]
>Subject: Re: Malware detection
>
>Hi John,
>
>Am running a linux based firewall/gateway(clearOS) which is also running as email server. Spamhaus has j

[ more ]  [ reply ]