KaffeNews: The Journal
Calendar
| Mon | Tue | Wed | Thu | Fri | Sat | Sun |
|---|---|---|---|---|---|---|
| « Mar | ||||||
| 1 | 2 | 3 | 4 | 5 | ||
| 6 | 7 | 8 | 9 | 10 | 11 | 12 |
| 13 | 14 | 15 | 16 | 17 | 18 | 19 |
| 20 | 21 | 22 | 23 | 24 | 25 | 26 |
| 27 | 28 | 29 | 30 | 31 | ||
Trend Micro OSCE Server and Client Issue Optimization as part of Enterprise End Point Security
Abstract In this paper, I have discussed various issues pertaining to Trend Micro. Issues and solutions discussed here are for both servers and clients that are running Trend Micro OSCE. Some critical issues are also discussed, they are combined with a definitive solution, for which the knowledge base has failed to provide effective solution. There [...]
Aidsql: Sql Injection Penetration Testing Tool
This is a video showing you howto effecitvely audit your website with aidsql Description: aidSQL is a PHP application provided for detecting security holes in your websites. It is a modular application, meaning that you can develop your very own plugins for SQL injection detection & exploitation. Download aidSql from here
5 Most Common Web Application Vulnerabilities
Injection Examples of injection flaws are SQL, LDAP, HTTP header injection (cookies, requests), and OS command injections Attacks occur when untrusted data, such as a query, command or argument, is sent to an interpreter Vulnerable applications can be tricked into executing unintended commands or allowing the attacker to access, and modify, data Cross Site [...]
Automation in creating exploits
In most cases, one of the most common parts used in any attacks are exploits, and the world of malicious code as well. All attacks using malware and are carried out using the infrastructure of the Internet, as an essential component involving the exploitation of vulnerabilities. Regardless of public vulnerabilities appear every day (and not [...]
Exploiting vulnerabilities through SWF
One of the formats used to massively exploit the weaknesses of the teams are the Small Web Format files .swf. Usually, they’re often subjected to the injection of the exploit code to undermine a particular bug. The same wave file attacks using malicious JavaScript that had been mentioned in the post of vulnerabilities through files [...]
Most common safety violations
A while ago I came across an interesting recent report developed by the company by Verizon Business, which describes the most common safety problems that occurred during the past four years, causing considerable loss of information in enterprises. The report shows that: In 87% of cases, problems could have avoided problems through without basic safety [...]
Vulnerabilities & proofs-of-concept
During this week, securityfocus, have reported a number of vulnerabilities in several applications where, as usual, one can not miss for Microsoft environments. Given that these “unsafe gaps” in planning the program allows to conduct attacks of various kinds, it’s interesting to know the potential that can exploit a vulnerability through proofs-of-concept. Office Viewer AcitveX [...]
Commonly exploited security weaknesses
Many attacks that an environment can suffer for the sole reason of being part of the World Web Wide, so it is necessary to centralize all efforts to improve strategic and proactive manner all aspects representing a potential point attack without neglecting those most trivial. Therefore, we have written a new paper that explains the [...]
