KaffeNews: The Journal
Calendar
| Mon | Tue | Wed | Thu | Fri | Sat | Sun |
|---|---|---|---|---|---|---|
| « Mar | ||||||
| 1 | 2 | |||||
| 3 | 4 | 5 | 6 | 7 | 8 | 9 |
| 10 | 11 | 12 | 13 | 14 | 15 | 16 |
| 17 | 18 | 19 | 20 | 21 | 22 | 23 |
| 24 | 25 | 26 | 27 | 28 | 29 | 30 |
Creepy
Most of us use social networks and image sharing platforms without realizing how much information we might be leaking without realizing it. Sometimes we even reveal our current location through these platforms. Creepy is a python application which can extract out this information and display the Geo-Location on a map. Currently creepy supports search for [...]
Trend Micro OSCE Server and Client Issue Optimization as part of Enterprise End Point Security
Abstract In this paper, I have discussed various issues pertaining to Trend Micro. Issues and solutions discussed here are for both servers and clients that are running Trend Micro OSCE. Some critical issues are also discussed, they are combined with a definitive solution, for which the knowledge base has failed to provide effective solution. There [...]
Malware Issue Optimization in a Production Environment
Abstract It was all about the work, I was involved where I had to provide solution for issues on malwares, initially the work started with solving all the issues using an anti-virus but the thought provoked me; why can’t there be some other way of solving these problems. So the quest started and initially I [...]
WATOBO v0.9.9 pre1
WATOBO will enable security professionals to highly efficient (semi automatic) Web application security audits. The authors believe that the semi-automated approach is the best way to make a thorough examination and to identify most of the vulnerabilities is. It has no offensive skills and is responsible for the legal vulnerability testing provided. WATOBO works as [...]
IS and OPS – Building the Bridge
I’ve tried writing this post several times and I was never happy with the result. Finally I sat back and realized that I was casting my net too wide. So I decided to break this post up into several parts. But first a quick overview of the concept I want to cover. I’ve been in [...]
Out of the Box Rogue Investigation
One of my tasks is to find rogue devices on the network. There are many methods to do this; ours is OK. Not the best, but it works pretty well. I hope to talk more about the how in a later post. Anyway, one of the more difficult tasks when doing this is identifying the [...]
Bad guys blend!
Be it the spammers or Botnet herders, from Advanced Persistent Threats(APTs) to drive-by’s everyone and everything has a more sophisticated tools and usage these days. Things have become much harder to detect or especially remediation when even the simplest thing such as SPAMs are not just leading people directly to a website, but redirects through [...]
IRAN DETECTS AND FIGHTS BACK DUQU VIRUS IN SYSTEM
Iran said on Sunday it had detected the Duqu computer virus that experts say is based on Stuxnet, the so-called “cyber-weapon” discovered last year and believed to be aimed at sabotaging the Islamic Republic’s nuclear sites. The head of Iran’s civil defense organization told the official IRAN news agency that computers at all main sites at [...]
What is normal in generic malwares of 2011?
AndreiN was talking to me this evening about him receiving a suspicious email from a person he knows, at his school where he is currently pursuing his degree. Delivered-To: d…….@gmail.com Received: by 10.224.53.194 with SMTP id n2cs76280qag; Tue, 7 Jun 2011 15:28:17 -0700 (PDT) Received: by 10.231.152.130 with SMTP id g2mr11072412ibw.65.1307485696758; Tue, 07 Jun 2011 [...]
FTP Keylogger Analysis
At the time of writing this malware, 2a61033a34be3dbbf0a3dfefdae4423c, has not been detected by any of the antivirus engines used by VirusTotal, 0 antimalware software out of 42 (0.0%) did not detected the threat. This is a malware (keylogger). It uses an FTP server to send out information regarding the infected machine. It creates a directory [...]
