soapbox 0.3.1 - Local Privilege Escalation

soapbox 0.3.1 - Local Privilege Escalation ----------------------------------- soapbox 0.3.1 Description: "Soapbox allows to restrict processes to write only to those places you want. Read-access however is still based on file-permissions. By preloading the Soapbox library, you can run programs a...

Soapbox 0.3.1 Local Root

----------------------------------- soapbox 0.3.1 Description: "Soapbox allows to restrict processes to write only to those places you want. Read-access however is still based on file-permissions. By preloading the Soapbox library, you can run programs as root and monitor which writes/changes are...

soapbox 0.3.1 - Local Privilege Escalation

----------------------------------- soapbox 0.3.1 Description: "Soapbox allows to restrict processes to write only to those places you want. Read-access however is still based on file-permissions. By preloading the Soapbox library, you can run programs as root and monitor which writes/changes are...

The JIRA/Crowd applications fail to properly sanitize user input in the query string of the website or in the value of a parameter

panel:bgColor=e7f4fa NOTE: This suggestion is for JIRA Cloud. Using JIRA Server? See the corresponding suggestion|http://jira.atlassian.com/browse/JRASERVER-29640. panel We need to avoid Cross-site Scripting vulnerabilities. A function should be created to provide server side and client side inpu...

Termineter Security Framework for Smart Meters Released

It’s that most wonderful time of the year again: tool release season. With Black Hat, DEF CON and BSides Las Vegas all looming, researchers are beginning to publish the tools that they’ll be discussing during their talks at the various conferences next week. Among the more interesting releases so...

Developing and Sharing Tools for Professional Hackers

Professional hackers or security testers tend to write a lot of code. We write exploit code, fuzzers, code to handle esoteric protocols and data structures, unpackers, disassemblers, reversers, parsers, and so much more. We write this code because often what we’re doing is so specific that is...

IBM Rational AppScan企业平台验证代码执行漏洞

Bugtraq ID: 53247 CVE ID：CVE-2012-0736 IBM Rational AppScan是一款Web应用的安全测试工具，可以在开发生命周期中进行自动化动态和静态安全漏洞扫描。 IBM Rational AppScan企业版在某些配置下创建扫描作业时存在错误，允许远程攻击者执行任意代码。诱使用户扫描恶意WEB站，可在目标用户系统上执行任意代码。 0 IBM Rational Policy Tester 8.5 IBM Rational AppScan Reporting Console 8.0.1.1 IBM Rational AppScan Reportin...

EU Plan to Standardize Punishments Also Could Impact Security Research

While much has been made of recent efforts to provide parity in prosecutions and punishments for cybercrimes across the 27-nation European Union, less has been said about how it may impact security researchers who use the same hacker tools to perform their work. Under a proposal approved recently...

Eleytt Research ER-03-2012

Eleytt Research www.eleytt.com Overview: ==================== Michal A. Bucko Credit: ==================== Anonymous researcher Michal A. Bucko Vulnerability Table =================== Note: All of the vulnerabilities are reported in Holdem Manager Professional, poker tracking software. 1. Holdem...

Hcon's Security Testing Framework (Hcon STF) v0.4 [Fire base]

Hcon's Security Testing Framework Hcon STF v0.4 Fire base +v0.4+%5BFire+base%5D.jpg Hcon respects & salutes to all of the freedom fighters of India, without whom we can never be able get our freedom.A tribute to all of the freedom fighters of all the countries we present HconSTF version 0.4...

SAPID 1.2.3 Remote File Inclusion

Exploit Title: SAPID Stable RFI Google Dork: tanyakan pada dan pemula :D Date: January 08 2011 Author: Opa Yong Software Link: http://sourceforge.net/projects/sapid/files/sapid-cms/ Version: SAPID 1.2.3 Stable Tested on: Windows XP Home Edition SP2 @POC:...

Attacking 3G and 4G Mobile Tele-Communications Networks

Document Title: =============== Attacking 3G and 4G Mobile Tele-Communications Networks References: =========== Document: http://www.vulnerability-lab.com/resources/documents/320.pdf Speaker: http://conference.hitb.org/hitbsecconf2011kul/?pageid=1782 Original Mirror:...

Core Security Technologies victim of latest Hack

Core Security Technologies victim of latest Hack Core Security Technologies itself become the latest victim of hack by sncope hacker. Hacker deface the websites, Mirror of hack can be seen here. Core Security offers the first and only real-world approach to security testing and measurement, but...

Seeker Advisory Sep11: Insecure Redirect in Microsoft SharePoint Portal

Seeker Research Center Security Advisory This vulnerability was discovered by Seekerr Automatic Run-Time Application Security Testing Solution Disclosed By Irene Abezgauz, September 13th, 2011 ========= I. Overview ========= An Insecure Redirect vulnerability has been identified in Microsoft...

Automated HTTPS Vulnerability Testing by Qualys SSL Labs

Automated HTTPS Vulnerability Testing by Qualys SSL Labs One of main problem in HTTP protocol is encrypting traffic and verifying data security, securing the web application against any threat is very important especially that if hackers conduct a Man-in the middle attack he can get all users...

Apache Log Extractor tool

Apache Log Extractor tool Apache Log Extractor is a quick script to export URL information from Apache access logs. The thought behind this script was to provide a list of known URL's on a remote server by analysing the logs. This list could then be used as the input for further testing tools e.g...

WebSurgery v0.5 - Web app testing tool Released

WebSurgery v0.5 - Web app testing tool Released WebSurgery is a suite of tools for security testing of web applications. Itwas designed for security auditors to help them with the web applicationplanning and exploitation. Currently, it uses an efficient, fast and stableWeb Crawler, File/Dir...

THC-HYDRA v6.4 - Fast network logon cracker

THC-HYDRA v6.4 - Fast network logon cracker THC-HYDRA is a very fast network logon cracker which support many different services. This tool is a proof of concept code, to give researchers and security consultants the possibility to show how easy it would be to gain unauthorized access from remote...

Nmap NSE net: smb-enum-users

Attempts to enumerate the users on a remote Windows system, with as much information as possible, through two different techniques both over MSRPC, which uses port 445 or 139; see 'smb.lua'. The goal of this script is to discover all user accounts that exist on a remote system. This can be helpfu...

Cross-Site Request Forgery

Cross-Site Request Forgery Security auditing tests performed on a Jira Bug Issue and Project Tracking Software locally running instance shown that the application is succeptible to Cross-Site Request Forgery attacks within this URL: /jira/plugins/servlet/streamscomments This vulnerability enables...