Windows Gather mRemote Saved Password Extraction

This module extracts saved passwords from mRemote. mRemote stores connections for RDP, VNC, SSH, Telnet, rlogin and other protocols. It saves the passwords in an encrypted format. The module will extract the connection info and decrypt the saved passwords. This module requires Metasploit:...

VanishCrypt – Virtual Encryption Tool by SecurityLabs [Video Demonstration]

VanishCrypt – Virtual Encryption Tool by SecurityLabs SecurityLabs Experts from India release a new Virtual Encryption Tool called "VanishCrypt". A Freeware Utility to Secure Your Data. It creates a virtual disk that contains your secret files. Data is protected with a Encrypted Password. The fil...

VanishCrypt – Virtual Encryption Tool by SecurityLabs [Video Demonstration]

VanishCrypt – Virtual Encryption Tool by SecurityLabs SecurityLabs Experts from India release a new Virtual Encryption Tool called "VanishCrypt". A Freeware Utility to Secure Your Data. It creates a virtual disk that contains your secret files. Data is protected with a Encrypted Password. The fil...

Mac OS X Trojan Goes BitCoin Mining, Steals Files

A new Trojan targeting Mac OS X users is not only after data, but Bitcoins as well. The malware is being detected by Sophos as Miner-D, but is also known as DevilRobber. According to Sophos, the Trojan is hiding inside pirated versions of the Mac OS X image editing application GraphicConverter...

Duqu Trojan found in Indian Server

Duqu Trojan found in Indian Server Last week we update you about Duqu when Symantec said it had found a mysterious computer virus that contained code similar to Stuxnet, a piece of malware believed to have wreaked havoc on Iran's nuclear program. Two workers at a web-hosting company called Web...

Google Moving Gradually Toward Encrypted Search

Google is moving to make queries and results from the company’s immensely popular search engine encrypted by default in the coming weeks, but only for users signed into their Google Accounts. In a post on The Official Google Blog, the Mountain View based company claims signed-in users may begin...

Duqu - Next Major Cyber Weapon like Stuxnet

Duqu - Next Major Cyber Weapon like Stuxnet The Stuxnet cyberworm could soon be modified to attack vital industrial facilities in the US and abroad, cybersecurity experts warned Wednesday at a Senate hearing. Computer security companies agree that these virus is unprecedented and it means the daw...

MIPS Linux XOR Shellcode Encoder 60 Bytes

MIPS Linux XOR Shellcode Encoder 60 Bytes. Shellcode exploit for linuxmips platform include include include include include include include define DEBUG 0 / entropy at phiral.net mips linux shellcode xor encoder \xAB\xCD is overwritten with jmp back offset \x00\x00 is overwritten with the byte it...

WineHQ database compromise - One More Linux Project Fail

WineHQ database compromise - One More Linux Project Fail Jeremy White, Codeweavers Founder has announced that access to the WineHQ database has been compromised. "On the one hand, we saw no evidence of harm to any database. We saw no evidence of any attempt to change the database and candidly,...

Android malware - Works on remote commands form encrypted blog

Android malware - Works on remote commands form encrypted blog Researchers from Trend Micro have spotted a piece of malicious software for Android. This is the first known Android malware that reads blog posts and interprets these as commands. It can also download and install additional...

Android malware - Works on remote commands form encrypted blog

Android malware - Works on remote commands form encrypted blog Researchers from Trend Micro have spotted a piece of malicious software for Android. This is the first known Android malware that reads blog posts and interprets these as commands. It can also download and install additional...

CVE-2008-7302

SQL injection vulnerability in netinvoice.php in the nBill comnetinvoice component 1.2.0 SP1 for Joomla! allows remote attackers to execute arbitrary SQL commands via unspecified vectors involving "knowledge of ... the contents of an encrypted file."...

Sql injection

SQL injection vulnerability in netinvoice.php in the nBill comnetinvoice component 1.2.0 SP1 for Joomla! allows remote attackers to execute arbitrary SQL commands via unspecified vectors involving "knowledge of ... the contents of an encrypted file."...

CVE-2008-7302

CVE-2008-7302 is a reported SQL injection vulnerability in the Joomla! extension component nBill (com_netinvoice) version 1.2.0 SP1, affecting the file netinvoice.php. The underlying issue is an SQL injection that could allow remote attackers to execute arbitrary SQL commands through unspecified ...

Unsecured Calls, 5.0

New with iOS 5, the “unsecured call” call warning seems like a direct response to presentations like “Practical Cellphone Spying” at DEFCON, which demonstrated the ability of attackers to set up a phony GSM base station and intercept cellphone calls. iPhone users who are communicating over an...

Russian firm Elcomsoft unveils tool to crack BlackBerry encryption security

Russian firm Elcomsoft unveils tool to crack BlackBerry encryption security A Russian security company has upgraded a phone-password cracking suite with the ability to figure out the master device password for Research in Motion's BlackBerry devices. Elcomsoft said that before it developed the...

CentOS 5 : ecryptfs-utils (CESA-2011:1241)

Updated ecryptfs-utils packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

Secure Boot in Windows 8 Worries Researchers

Windows 8, like Windows 7 and Vista before it, is being touted as the most secure version of Windows ever. In past releases, many of the security improvements have come through exploit mitigations such as ASLR and DEP and better software security practices during development. In Windows 8, howeve...

John the Ripper 1.7.8-jumbo-7 Released

John the Ripper 1.7.8-jumbo-7 Released Change Log : Support for encrypted pkzip archives has been added, testing millions of candidate passwords per second. JimF This is in addition to WinZip/AES archives, support for which was added in prior -jumbo updates. Support for Mac OS X 10.7 Lion salted...

John the Ripper 1.7.8-jumbo-7 Released

John the Ripper 1.7.8-jumbo-7 Released Change Log : Support for encrypted pkzip archives has been added, testing millions of candidate passwords per second. JimF This is in addition to WinZip/AES archives, support for which was added in prior -jumbo updates. Support for Mac OS X 10.7 Lion salted...