This paper, shows how to exploit real-time communication applications to determine the IP address of a targeted user.
This paper focuses on Skype, although other real-time communication applications may have similar privacy issues. The paper presenter designed a scheme that calls an identified targeted user inconspicuously to find his IP address, which can be done even if he is behind a NAT! By calling the user periodically, they were then able to observe the mobility of the user.

Download PDF
http://arxiv.org/PS_cache/arxiv/pdf/1109/1109.4039v3.pdf

The Honeynet Project release of the Android Reverse Engineering (A.R.E.) Virtual Machine. Do you need to analyze a piece of Android malware, but dont have all your analysis tools at hand? The Android Reverse Engineering (A.R.E.) Virtual Machine, put together by Anthony Desnos from our French chapter, is here to help. A.R.E. combines the latest Android malware analysis tools in a readily accessible toolbox.

Download
http://redmine.honeynet.org/projects/are/wiki

Visit below promo page of steganos.

http://www.steganos.com/de/magazines/covermount/?tx_steganoscovermounts_pi1[mag]=computerbild&tx_steganoscovermounts_pi1[productid]=sss12//

Enter your email address and press ‘Abschicken’ . You will receive serial number in mail
Enter the serial number you received in mail and activate Steganos Privacy Suite 12.

The Volatility Framework is a completely open collection of tools, implemented in Python under the GNU General Public License, for the extraction of digital artifacts from volatile memory (RAM) samples. The extraction techniques are performed completely independent of the system being investigated but offer unprecedented visibilty into the runtime state of the system. The framework is intended to introduce people to the techniques and complexities associated with extracting digital artifacts from volatile memory samples and provide a platform for further work into this exciting area of research.

Download
https://www.volatilesystems.com/default/volatility

Guide
http://code.google.com/p/volatility/wiki/FullInstallation

Anonymous Mexico is going head-to-head with one of the most dangerous criminal organizations in the world, the Mexican cartel Los Zetas. With this Anonymous Proofs that they are not just a common Internet users as cowards behind a keyboard. Not only has the Anonymous threatened to reveal names, but it has also started making good to its threats.
Mexican Anonymous hackers is warning a Mexican drug cartel to release one of its members, kidnapped from a street protest, or it will publish the identities and addresses of the syndicate's associates, from corrupt police to taxi drivers, as well as reveal the syndicates' businesses.

MANDIANT Memoryze is free memory forensic software that helps incident responders find evil in live memory. Memoryze can acquire and/or analyze memory images, and on live systems, can include the paging file in its analysis.

Download
http://mandiant.com/products/free_software/memoryze/download/

Main
http://www.maxdome.com/
Type: SQL Injection

Comment
Path: /php-bin/functions/home_flash/
File: homeflash.swf
Para: ?id=

by
Vulnerability-Lab

Main
http://www.tagu.com.ar
Type: SQL Injection
Exploitable
http://www.tagu.com.ar/ver-post.php?p_id=4271'
Comment
Allow SQL Injection in "p_id" var.

Computer hackers, possibly from the Chinese military, interfered with two U.S. government satellites four times in 2007 and 2008 through a ground station in Norway, according to a congressional commission.

Source
http://www.bloomberg.com/news/2011-10-27/chinese-military-suspected-in-hacker-attacks-on-u-s-satellites.html

DEFT Linux 6 is based on the new Kernel 2.6.35 (Linux side) and the DEFT Extra 3.0 (Computer Forensic GUI) with the best freeware Windows Computer Forensic tools. DEFT it’s a new concept of Computer Forensic live system that use LXDE as desktop environment and WINE for execute Windows tools under Linux and mount manager as tool for device management. It is a very easy to use system that includes an excellent hardware detection and the best free and open source applications dedicated to incident response and computer forensics.

Download
http://www.deftlinux.net/download/

This new version has new fresh look and feel, and it is full of new features that you will love to discover. If you want to learn more about FOCA, and Get FOCA 3 PRO, then you can book for a seat in the next online training about FOCA. It is going to be delivered on 4th of November in English and on 8th of November in Spanish. Both of them delivered by our FOCA father Chema Alonso.

Download
http://www.informatica64.com/descargas/Foca_Free_3_0_20111027.zip