Wednesday, 26. October 2011
Happy Diwali all
SecurityXploit would like to wish you all a Happy Diwali!
Wiki
http://en.wikipedia.org/wiki/Diwali





Permalink

 


THC-SSL-DOS Tool
THC-SSL-DOS is a tool to verify the performance of SSL.
Establishing a secure SSL connection requires 15x more processing power on the server than on the client.
THC-SSL-DOS exploits this asymmetric property by overloading the server and knocking it off the Internet.
This problem affects all SSL implementations today. The vendors are aware of this problem since 2003 and the topic has been widely discussed.
This attack further exploits the SSL secure Renegotiation feature to trigger thousands of renegotiations via single TCP connection.

Download
http://www.thc.org/thc-ssl-dos/thc-ssl-dos-1.4-win-bin.zip
Linux
http://www.thc.org/thc-ssl-dos/thc-ssl-dos-1.4.tar.gz

Permalink

 


ExploitMe Mobile - Android
The application contains both mobile web and mobile programming defects and we've outlined a set of labs and solutions online to guide you. This tool will help both mobile QA and mobile web developers to learn the kinds of weaknesses that exist in the mobile app space.

Download
http://securitycompass.github.com/AndroidLabs

Permalink