malware 썸네일형 리스트형 Announcing CERT Tapioca for MITM Analysis Hi folks, it's Will. Recently I have been investigating man-in-the-middle (MITM) techniques for analyzing network traffic generated by an application. In particular, I'm looking at web (HTTP and HTTPS) traffic. There are plenty of MITM proxies, such as ZAP, Burp, Fiddler, mitmproxy, and others. But what I wanted was a transparent network-layerproxy, rather than an application-layer one. After a .. 더보기 Facebook TOR Browser Exploit leaked A hacker has published a Facebook TOR Exploit script on the PasteBin website.The PasteBin file has been viewed 300 times.The PasteBin script uses HTML and Javascript.The script claims to be capable of stealing session and cookie values.The script seems to target FireFox browsers only.You can find the Full Facebook TOR Browser exploit on PasteBin. 더보기 Part 2: Is your home network unwittingly contributing to NTP DDOS attacks? his diary follows from Part 1, published on Sunday August 17, 2014. How is it possible that with no port forwarding enabled through the firewall that Internet originated NTP requests were getting past the firewall to the misconfigured NTP server?The reason why these packets are passing the firewall is because the manufacturer of the gateway router, in this case Pace, implemented full-cone NAT as.. 더보기 Part 1: Is your home network unwittingly contributing to NTP DDOS attacks? For the last year or so, I have been investigating UDP DDOS attacks. In this diary I would like to spotlight a somewhat surprising scenario where a manufacturer’s misconfiguration on a popular consumer device combined with a design decision in a home gateway router may make you an unwitting accomplice in amplified NTP reflection DDOS attacks.This is part 1 of the story. I will publish the conclu.. 더보기 Adobe fixed Rosetta Flash today Adobe pushed a tentative fix for Rosetta Flash in Flash Player 14 beta codename Lombard(version 14.0.0.125, release notes) and finalized the fix in the next release, version 14.0.0.145, on July 8, 2014.In the security bulletin APSB14-17, Adobe mentions a stricter verification of the SWF file format:These updates include additional validation checks to ensure that Flash Player rejects malicious c.. 더보기 Host discovery with nmap I enjoy performing penetration tests, I also enjoy teaching how to do penetration testing correctly. Next time up is SANS Sec560 network penetration testing inAlbuquerque, NM. When I am teaching one of the points I make is to make good use of your tools. You really want to know which tools is appropriate for which parts of the engagement methodology and test plan. You also want to be familiar wi.. 더보기 Inside the iOS/AdThief malware Malware targeting iOS devices is rare, but that doesn't mean it is non-existent. Today, we publish a paper by Axelle Apvrille, a researcher from Fortinet in France, in which she studies the iOS/AdThief malware. The malware has infected some 75,000 jailbroken devices and makes money through stealing ad revenues.https://www.virusbtn.com/virusbulletin/archive/2014/08/vb201408-AdThief Table of Conte.. 더보기 How to bypass Zeus Trojan’s self protection mechanism Spammers are good when it comes to intimidating users to open the attachment . One of the recent pathetic and cruel one wasHiA Person from your office was found dead outside . Please open the picture to see if you know him .RegardsAttachment is basically a Zip file consisting of an exe file named “image.scr” with a nice mspaint icon .Quickly opening up in IDA will give us a hint that it is basic.. 더보기 Zbot Malvertising (Links) Zbot Malvertising (Clicksor) : http://www.malekal.com/2013/12/08/malvertising-on-clicksor-via-rapid8-com/Zbot Malvertising (various network) : http://www.malekal.com/2014/01/15/directrev-malvertising-lead-to-zbot/ 더보기 DomaIq / OutBrowse : Fake Java/Flash update malvertising campaign A thread about fake Java/Flash update webpage.PUP (Potentially unwanted programs) became one of the third thread, there are many differents ads pages trying to bundle it, one of them are Fake Java / Flash update pages. This kind of malvertisings begin to spread around from July 2013.This campaign has malvertising way :It replaces the website you visit by the malvertising – so website lose traffi.. 더보기 이전 1 ··· 47 48 49 50 51 52 53 ··· 57 다음