Archive | April, 2007


28 April 2007 | 16,134 views

login (security through obscurity) – weird PHP script

This was the idea with which I have won the regional web apps contest… well actually I did a CMS but the security part of it was the most appreciated. Maybe because it was weird, you’ll see… Classical Login scripts What exactly do classical login scripts do… they get the password from the database by […]

Continue Reading


27 April 2007 | 3,948 views

Bot Infections Surges to 1.2 Million

I have noticed an increase in Spam activity lately, especially in Spam blog comments there has been a noticeable surge in the frequency and number. That’s why we’ve implemented stricter measures against spammers on Darknet and our other sites. It seems there has been a big raise in the number of bot infected systems, so […]

Continue Reading


26 April 2007 | 3,711 views

SSA 1.5.1 Released – Security System Analyzer an OVAL Based Scanner

A new version of SSA (Security System Analyzer) has been released – version 1.5.1. SSA is a scanner based on OVAL, the command line tool provided by MITRE is not very easy to use so the guys at Security Database decided to write a GUI to make it simple to use and understand and then […]

Continue Reading


25 April 2007 | 5,826 views

Social Engineering Gets a Big Jewel Heist

It just goes to show, sometimes the simple things are the most effective. A box of chocolates can defeat all the most hi-tech security systems if you add a little charm. 21 million Euros of diamonds, that’s one hell of a catch. A thief has evaded one of the world’s most expensive hi-tech security systems, […]

Continue Reading


24 April 2007 | 7,077 views

Techm4sters Releases ProTech Security Distribution

Techm4sters e-mailed us recently to let us know about their new security distro called ProTech, we haven’t had time to download it and test it yet but it certainly looks promising. – What is PROTECH? Protech is a very light live security distribution based on Ubuntu Linux. – Is this like Nubuntu? It is similar, […]

Continue Reading


23 April 2007 | 13,684 views

LLTD – Link Layer Topology Discovery Protocol

Gomor released a LLTD (Link Layer Topology Discovery Protocol) implementation written in Perl (using Net::Frame framework). You may use this two modules to write fuzzers, or anything. You can find the modules here: Net Frame LLTD

Continue Reading


20 April 2007 | 5,088 views

Google’s Blogger Platform Used to Aid Phishing Attacks

I’ve known for a while you can buy software for spamming and MFA (Made for Adsense) site generation for a few hundred USD which utilises Google’s Blogger platform (blogspot.com sites). You will have seen all the splogs as they are called (spam blogs) hosted on Blogger, a lot of them scrape Darknet articles and repost […]

Continue Reading


18 April 2007 | 8,372 views

IE 7 Flaw Could Help Phishers – Error Message Processing

Ah another way for phishers and people wanting to steal login credentials to con IE7 users. Yet another reason to use Firefox or Opera? Not saying these browsers are perfect…but look at the amount of problems Internet Exploder Explorer has had. The flaw lies in the way IE7 processes a locally stored HTML error message […]

Continue Reading


17 April 2007 | 21,973 views

Damn Vulnerable Linux – DVL – IT-Security Attack and Defense

Damn Vulnerable Linux (DVL) is a Linux-based (modified Damn Small Linux) tool for IT-Security & IT-Anti-Security and Attack & Defense. It was initiated for training tasks during university lessons by the IITAC (International Institute for Training, Assessment, and Certification) and S²e – Secure Software Engineering in cooperation with the French Reverse Engineering Team. Damn Vulnerable […]

Continue Reading


16 April 2007 | 19,077 views

Microsoft Loves you to Pirate Their Software

I’ve heard this ‘rumour’ plenty of times, I always suspected it was true and Adobe have said similar things about their software. If you are going to pirate, Microsoft wants you to pirate their software as when you go legit you are already locked in to their proprietary system. All the more grounds for OSS […]

Continue Reading