Brute forcing device passwords

When working with IoT and embedded systems, brute-force password guessing attacks are an effective tool to gain access. Over the years, I’ve learned some tips and tricks to make these attacks more effective. What is brute forcing? Very simply, it’s guessing passwords so that you can find a valid...

Hidden in the Share button in the attack: Blogger. com exposure of high-risk CSRF（cross-site request forgery）vulnerability-vulnerability warning-the black bar safety net

The Egyptian security expert Mazen shows Gamal Mesbah on Blogger. com found a high risk of CSRF（cross-site request forgery）vulnerabilities. The vulnerability can allow an attacker in blogger without the knowledge of writing and publishing blogs, while the private blog public. Blogger is Google's...

[COVERT-2000-06] Initialized Data Overflow in Xlock

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Network Associates, Inc. COVERT Labs Security Advisory May 29, 2000 Initialized Data Overflow in Xlock COVERT-2000-06 o Synopsis An implementation vulnerability in xlock allows global variables in the initialized data section of memory to be...