Windows Gather Domain Enumeration

This module enumerates currently the domains a host can see and the domain controllers for that domain. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windows Gather Domain Enumeration',...

DNS does not start on Microsoft Windows Server 2008 Domain Controllers

Challenge Cause The Surebackup Domain Controller can't communicate with the replication partners before loading the zone. Solution There is a Microsoft registry key that should be modified only on the Virtual Machines inside the SureBackup job due to the nature of the key. Open Regedit Browse to...

The Inside Story of the Kelihos Botnet Takedown

Earlier this week, Microsoft released an announcement about the disruption of a dangerous botnet that was responsible for spam messages, theft of sensitive financial information, pump-and-dump stock scams and distributed denial-of-service attacks. Kaspersky Lab played a critical role in this botn...

Information disclosure

PHProjekt 6.0.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by Setup/Controllers/IndexController.php...

Dillon Beresford Talked Siemens Vulnerabilities

NSS researcher Dillon Beresford continued his research into the security of SCADA and industrial control systems with a talk on vulnerabilities in Siemens Step 7 programmable logic controllers. Read more: Black Hat: Remote DOS, Backdoor, Easter Egg Among Newly Discovered Siemens Holes...

Black Hat: Remote DOS, Backdoor, Easter Egg Among Newly Discovered Siemens Holes

Dillon Beresford used a presentation at the Black Hat Briefings on Wednesday to detail more software vulnerabilities affecting industrial controllers from Siemens, including a serious remotely exploitable denial of service vulnerability, more hard-coded administrative passwords, and even an easte...

Don't Say I Never Told You: Researcher Warned Congress Of Stuxnet Variants 10 Months Ago

Stuxnet may have been super sophisticated cyber weapon deployed by state actors, but future generations of the malware will be available to run of the mill script kiddies, a noted expert on security and industrial control systems has warned in a letter to the U.S. Congress ten months ago. Ralph...

Stuxnet Source Code Released Online - Download Now

Stuxnet Source Code Released Online - Download Now Stuxnet is a Microsoft Windows computer worm discovered in July 2010 that targets industrial software and equipment. While it is not the first time that crackers have targeted industrial systems,it is the first discovered malware that spies on an...

Siemens Patches SCADA Holes, Downplays Threat

In the wake of a report about vulnerabilities in its products, Siemens issued a patch for its Simatic S7 industrial controllers on Monday. ICS CERT, the Cyber Emergency Response Team for Industrial Control Systems, issued an alert advising Siemens customers to apply the patch. Siemens said its...

Many Stuxnet Vulnerabilities Still Unpatched

The media storm over the Stuxnet worm may have passed, but many of the software holes that were used by the worm remain unpatched and leave Siemens customers open to a wide range of potentially damaging cyber attacks, according to industrial control system expert Ralph Langner. Writing on his...

Siemens Working On Fix For 'Security Gaps' In Logic Controllers

Siemens AG said on Tuesday that it was talking to its customers about what it acknowledged were “security gaps” in its Programmable Logic Controllers PLCs, after an NSS Labs researcher disclosed the discovery of what he described as serious security holes in the company’s industrial control...

Researcher Says Siemens Downplaying Serious SCADA Holes

Dillon Beresford, the NSS Labs researcher who disclosed serious holes in industrial control system software from Siemens says the company is downplaying the seriousness of the vulnerabilities in its public statements, and that a supposed “fix” for the vulnerabilities is inadequate. In a message...

Network access control system PacketFence 2.2 released !

PacketFence is a free and open source network access control NAC system. It can be used to effectively secure networks - from small to very large heterogeneous networks. PacketFence has been deployed in production environments where thousands of users are involved - on wired and wireless networks...

Cisco Security Advisory: Cisco Wireless LAN Controllers Denial of Service Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco Wireless LAN Controllers Denial of Service Vulnerability Document ID: 112916 Advisory ID: cisco-sa-20110427-wlc Revision 1.0 For Public Release 2011 April 27 1600 UTC GMT...

Cisco Security Advisory: Cisco Network Access Control Guest Server System Software Authentication Bypass Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco Network Access Control Guest Server System Software Authentication Bypass Vulnerability Advisory ID: cisco-sa-20110330-nac Revison 1.0 For Public Release 2011 March 30 1600 UTC GMT...

CVE-2010-4331

Multiple cross-site scripting XSS vulnerabilities in Seo Panel 2.2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 defaultnews or 2 sponsors cookies, which are not properly handled by a controllers/index.ctrl.php or b controllers/settings.ctrl.php...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Seo Panel 2.2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 defaultnews or 2 sponsors cookies, which are not properly handled by a controllers/index.ctrl.php or b controllers/settings.ctrl.php...

CVE-2010-4331

Seo Panel 2.2.0 contains cookie‑rendered persistent XSS vulnerabilities: unmapped content is reflected from two cookies, default_news and sponsors, into pages that include controllers/index.ctrl.php or controllers/settings.ctrl.php. The issue is demonstrated across multiple references (Exploit-DB...

HP ProCurve access points / access controllers / mobility controllers privilege escalation

No description provided...

[security bulletin] HPSBGN02589 SSRT100296 rev.1 - HP ProCurve Access Points, Access Controllers, and Mobility Controllers, Privilege Escalation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02544568 Version: 1 HPSBGN02589 SSRT100296 rev.1 - HP ProCurve Access Points, Access Controllers, and Mobility Controllers, Privilege Escalation NOTICE: The information in this Security Bulletin...