OWASP Top 10 – 2017 released
You can get it from here: github.com/OWASP/Top10/tree/master/2017
You can get it from here: github.com/OWASP/Top10/tree/master/2017
New post on willgenovese.com about macro-less Office command execution and how to use different payloads with the attack.
I’m calling out questionable “facts” on at this presentation titled: “Hacks, Lies, & Nation States” @ AnyCon from today, only because it involves someone from my home state, Mario Dinatale, who claims to be “the State of Connecticut’s #1 Cybersecurity expert”
That unprovable claim, along with a bunch of buzzwords and random tech stories he seems t...
motherfuckers.
Someone leaked the data for free. Better update your passwords just in case. Here’s a sorted passwordlist from the dump.
http://teslamotors.com and their twitter got owned today
whoever had control of the twitter mistakenly posted a screenshot of their skype session
the site is currently down.
cyberkryption has finished getting a build for Kali Linux 1.1.10 for a Raspberry Pi 2 with working XFCE and raspi-config
Check out his blog for more info: cyberkryption.wordpress.com
ATT U-Verse service includes the VAP2500 video access point as part of the installation,. From their guide “The VAP2500 enables you to transmit multiple standard- and high-definition video streams throughout your home wirelessly. You can enjoy a full range of video services and applications without having to run wires, lay cables, or drill holes...
Analysis and demo written by @0x710DDDD http://www.secniu.com/cve-2014-1767-afd-sys-double-free-vulnerability-analysis-and-exploit/
Quick and dirty Metasploit module based off of @yuange ‘s code from 2009. This vulnerability affects Windows 95 IE 3.0 until Windows 10 IE 11. https://forsec.nl/2014/11/cve-2014-6332-internet-explorer-msf-module/ Module here: ms14_064_ie_olerce.rb