... neuere Einträge
Tuesday, 20. September 2011
Avira Internet Security 2012 License Key - Free
Am Tuesday, 20. Sep 2011 im Topic 'Web Security'
Avira is looking to capture the market with this new kind of promotion. Avira has declared that they are going to add one month subscription for every 10,000 new fans. In other words, if Avira receives 120,000 fans during the promo campaign then 12 months subscription (1 year) will be added to the license key. The promo campaign will end on October 17, 2011.
Click here "http://www.facebook.com/avira?sk=app_28134323652" to visit promo page on facebook and click on the “Like” button.
Click on the “Enter Sweepstakes” button, and then allow the sweepstakes application to access your profile information.
Fill up the “Entry Form” and click on the “Submit” button.
You have successfully applied for this promo. Just to make sure, check your email. You should receive an email from notifications@wildfireapp.com about your successfully entry.
Click here "http://www.facebook.com/avira?sk=app_28134323652" to visit promo page on facebook and click on the “Like” button.
Click on the “Enter Sweepstakes” button, and then allow the sweepstakes application to access your profile information.
Fill up the “Entry Form” and click on the “Submit” button.
You have successfully applied for this promo. Just to make sure, check your email. You should receive an email from notifications@wildfireapp.com about your successfully entry.
TSRC - Application level attack
Am Tuesday, 20. Sep 2011 im Topic 'Vulnerabilities'
TSRC - Application level attack
Session Race Conditions and Session Puzzling
A few months ago Shay Chen, Senior Manager at Hacktics Advanced Security Center (HASC) published a paper about Session Puzzling, a new application level attack vector of critical severity and numerous uses, but for some bizarre reasons, most of the responses I got was that the attack was too complicated to comprehend all it once.
The project home page (presentation, whitepaper, training kit)
http://code.google.com/p/puzzlemall/
The following movies demonstrate a few simple TSRC attacks:
Exploiting Temporal Session Race Conditions via Connection Pool Consumption:
http://www.youtube.com/watch?v=woWECWwrsSk
Exploiting Temporal Session Race Conditions via RegEx DoS:
http://www.youtube.com/watch?v=3k_eJ1bcCro
Session Race Conditions and Session Puzzling
A few months ago Shay Chen, Senior Manager at Hacktics Advanced Security Center (HASC) published a paper about Session Puzzling, a new application level attack vector of critical severity and numerous uses, but for some bizarre reasons, most of the responses I got was that the attack was too complicated to comprehend all it once.
The project home page (presentation, whitepaper, training kit)
http://code.google.com/p/puzzlemall/
The following movies demonstrate a few simple TSRC attacks:
Exploiting Temporal Session Race Conditions via Connection Pool Consumption:
http://www.youtube.com/watch?v=woWECWwrsSk
Exploiting Temporal Session Race Conditions via RegEx DoS:
http://www.youtube.com/watch?v=3k_eJ1bcCro
NetworkMiner
Am Tuesday, 20. Sep 2011 im Topic 'Web Security'
NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the network. NetworkMiner can also parse PCAP files for off-line analysis and to regenerate/reassemble transmitted files and certificates from PCAP files.NetworkMiner collects data (such as forensic evidence) about hosts on the network rather than to collect data regarding the traffic on the network. The main user interface view is host centric (information grouped per host) rather than packet centric (information showed as a list of packets/frames).
Download
http://sourceforge.net/projects/networkminer/files/networkminer/
Download
http://sourceforge.net/projects/networkminer/files/networkminer/
... ältere Einträge