Archive | February, 2010


25 February 2010 | 6,659 views

US School Remotely Spying On Kids With Webcams

The big news that has been blowing up in the past week or so is about a relatively unknown school district in Pennsylvania, US that has been spying on its students using Macbook webcams. It has actually turned into a class action lawsuit and there is a lot of debate surrounding the story, the school [...]

Continue Reading


24 February 2010 | 6,337 views

keimpx – Open Source SMB Credential Scanner

keimpx is an open source tool, released under a modified version of Apache License 1.1. It can be used to quickly check for the usefulness of credentials across a network over SMB. Credentials can be: Combination of user / plain-text password. Combination of user / NTLM hash. Combination of user / NTLM logon session token. [...]

Continue Reading


23 February 2010 | 8,523 views

US Investigators Pinpoint Author Of Google Attack Code

The big news over the past few months were the Aurora attacks and how they seemed to originate from China, last month Microsoft took the unusual step and released an Out-Of-Band patch for the IE6 0-Day vulnerability used in the attacks. Within the last few days the origin of the code was traced to 2 [...]

Continue Reading


22 February 2010 | 20,099 views

Medusa 2.0 Released – Parallel Network Login Brute Forcing Tool

After what feels like an eternity (one year to the date since Medusa version 1.5), Medusa 2.0 is now available for public download. What is Medusa? Medusa is a speedy, massively parallel, modular, login brute-forcer for network services created by the geeks at Foofus.net. It currently has modules for the following services: AFP, CVS, FTP, [...]

Continue Reading


18 February 2010 | 5,394 views

Google Buzz Patches XSS Flaw In Mobile Version

You may or may not have noticed, but I was on hiatus for a few days. As you’re probably aware (and I’m sure many of you celebrate) it was Chinese New Year on February 14th so I was offline for a few days taking a well deserved break. I’d like to wish all of you [...]

Continue Reading


11 February 2010 | 8,403 views

Darknet – A Finalist For The 2010 Social Security Bloggers Awards

Well this is a first for me and this blog, Darknet has been nominated for a blogging award and selected as a finalist! There’s some heavy-weights in our category too like SANS ISC and Evil Bytes from Dark Reading. If you don’t know about SBN (Security Bloggers Network) it’s a VERY good collection of RSS [...]

Continue Reading


10 February 2010 | 8,179 views

GreenSQL – Open Source Database Firewall Software

GreenSQL is an Open Source database firewall used to protect databases from SQL injection attacks. GreenSQL works as a proxy for SQL commands and has built in support for MySQL & PostgreSQL . The logic is based on evaluation of SQL commands using a risk scoring matrix as well as blocking known db administrative commands [...]

Continue Reading


09 February 2010 | 8,949 views

Chinese Police Shut Down ‘Black Hawk Safety Net’ Hacking School

There’s been a LOT of news lately about attacks from China, Chinese hackers and sites from China propagating malware. The latest news is that China police have managed to shut down a hacker training operating that was schooling the next generation of Chinese script kiddies. It seems like China is grooming a huge cyberarmy both [...]

Continue Reading


05 February 2010 | 8,786 views

SecuBat – Modular Web Vulnerability Scanner

As the popularity of the web increases and web applications become tools of everyday use, the role of web security has been gaining importance as well. The last years have shown a significant increase in the number of web-based attacks. For example, there has been extensive press coverage of recent security incidences involving the loss [...]

Continue Reading


03 February 2010 | 6,411 views

Twitter Major Password Reset After Phishing Attack

Twitter has come under attack fairly frequently in recent months, which is not surprising considering the explosive growth of the platform and the sheer number of users it has. If you are a Twitter use you may have noticed many people had their password reset automatically yesterday, Twitter today announced the reason for this on [...]

Continue Reading