security-sh3ll.blogspot.com
Security-Shell: CookieCatcher - Session Hijacking Tool
http://security-sh3ll.blogspot.com/2013/08/cookiecatcher-session-hijacking-tool.html
Hacking and Security tools . News and Views for the World. Tuesday, August 27, 2013. CookieCatcher - Session Hijacking Tool. CookieCatcher is an open source application which was created to assist in the exploitation of XSS (Cross Site Scripting) vulnerabilities within web applications to steal user session IDs (aka Session Hijacking). The use of this application is purely educational and should not be used without proper permission from the target application. Prebuilt payloads to steal cookie data.
faithyoung.blogspot.com
A Beacon of Light: Testing a photo
http://faithyoung.blogspot.com/2011/08/testing-photo.html
A Beacon of Light. It's better to light a candle than curse the darkness. Saturday, August 27, 2011. Subscribe to: Post Comments (Atom). Fight your fights, find the grace in all the things that you can't change and help somebody, if you can.". MSIA 2008, MCP-MCTS: Windows 7, Configuration, Sec , PIRT Handler April 2006-December 2008, MS Consumer Security MVP July 2007-June 2010. View my complete profile. SANS Internet Storm Center, InfoCON: green. Id=5139, (Wed, Aug 24th). CyberCrime and Doing Time.
faithyoung.blogspot.com
A Beacon of Light: Microsoft's Free Windows Live Essentials Beta Debuts
http://faithyoung.blogspot.com/2010/06/microsoft-free-windows-live-essentials.html
A Beacon of Light. It's better to light a candle than curse the darkness. Saturday, June 26, 2010. Microsofts Free Windows Live Essentials Beta Debuts. Microsoft's Free Windows Live Essentials Beta Debuts. By Jeff Bertolucci, PC World, Jun 24, 2010. The new Windows Live Essentials. Beta will be available for public testing starting Thursday, according to Microsoft. You can download the beta here. The beta wasn't live as of 10 am U.S. Pacific, although it should be available sometime today.). In addition,...
pentesterconfessions.blogspot.com
Confessions of a Penetration Tester: Mallory MiTM Proxy as a Wireless Access Point (Part 1 of 2)
http://pentesterconfessions.blogspot.com/2012/04/mallory-mitm-proxy-as-wireless-access.html
Confessions of a Penetration Tester. This blog is mostly for my own archiving of vulnerabilities I have discovered and defensive techniques. Hopefully it will serve others as well. Mallory MiTM Proxy as a Wireless Access Point (Part 1 of 2). There are a ton of ways to setup and configure Mallory. The easiest is as a VPN but I feel the wireless access point is more robust and easier to get your devices proxing through it once you have it set up. Create a Virtual Machine Wireless Access Point. Your driver ...
security-sh3ll.blogspot.com
Security-Shell: Retire.js - Command line Scanner and Chrome plugin
http://security-sh3ll.blogspot.com/2013/11/retirejs-command-line-scanner-and.html
Hacking and Security tools . News and Views for the World. Saturday, November 2, 2013. Retire.js - Command line Scanner and Chrome plugin. Retire.js identify JavaScript libraries with known vulnerabilities in your application. It's important to note that even though your site is using a vulnerable library, that does not necessarily mean your site is vulnerable. It depends on whether and how your site exercises the vulnerable code. That said, it's better to be safe than sorry. More Info and Download:.
security-sh3ll.blogspot.com
Security-Shell: DefCamp 2013
http://security-sh3ll.blogspot.com/2013/09/defcamp-2013.html
Hacking and Security tools . News and Views for the World. Tuesday, September 10, 2013. International hacking and information security conference in Romania. The DefCamp 2013 call for papers. Is officially open. The fourth edition of the international information security conference hosted in Romania will take place on November 29-30 2013, in Bucharest, at the Crystal Palace Ballroom. Founder and coordinator of the Defcamp conference. The DCTF ( DefCamp Capture the Flag. September 11, 2013 at 6:38 AM.
security-sh3ll.blogspot.com
Security-Shell: Faraday - Penetration Test IDE
http://security-sh3ll.blogspot.com/2013/12/faraday-penetration-test-ide.html
Hacking and Security tools . News and Views for the World. Tuesday, December 17, 2013. Faraday - Penetration Test IDE. Introduces a new concept (IPE) Integrated Penetration-Test Environment a multiuser Penetration test IDE. Designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way. Support for multiple Workspaces.
security-sh3ll.blogspot.com
Security-Shell: SpearPhisher – A Simple Phishing Email Generation Tool
http://security-sh3ll.blogspot.com/2013/09/spearphisher-simple-phishing-email.html
Hacking and Security tools . News and Views for the World. Thursday, September 12, 2013. SpearPhisher – A Simple Phishing Email Generation Tool. Download and more info:. Https:/ www.trustedsec.com/september-2013/introducing-spearphisher-simple-phishing-email-generation-tool/. Subscribe to: Post Comments (Atom). Guided in-process fuzzing of Chrome components. How a security researcher is tackling IoT security testing. I'm joining the fight against malware and ransomware with SentinelOne.
security-sh3ll.blogspot.com
Security-Shell: Evil Foca - IPv4 and IPv6 Penetration testing tool
http://security-sh3ll.blogspot.com/2013/12/evil-foca-ipv4-and-ipv6-penetration.html
Hacking and Security tools . News and Views for the World. Monday, December 2, 2013. Evil Foca - IPv4 and IPv6 Penetration testing tool. Is a tool for Pentesters and Security Auditors to perform security testing in IPv4/ IPv6 data networks. The tool is capable to do different attacks such as:. MITM on IPv4 networks using ARP Spoofing and DHCP ACK injection. MITM on IPv6 networks using Neighbor Advertisement Spoofing, SLAAC Attack, fake DHCPv6. DoS (Denial of Service) on IPv4 networks using ARP Spoofing.
faithyoung.blogspot.com
A Beacon of Light: April 2010
http://faithyoung.blogspot.com/2010_04_01_archive.html
A Beacon of Light. It's better to light a candle than curse the darkness. Monday, April 5, 2010. ID Theft Protection Services. Lifelock claimed that it covered all types of ID Theft and basically it didn’t. . This is a link to the FTC Case Information with a phone number to contact them for more information. INFORMATION ON LIFELOCK SETTLEMENT. Here are some more newsworthy angles to the LifeLock controversy and the ID Theft Protection industry. Lifelock CEO Todd Davis Does Damage Control. Also, check out...
SOCIAL ENGAGEMENT