Archive | May, 2011


13 May 2011 | 14,732 views

Mac Malware Becoming a Serious Threat

Malware on the ubiquitous Apple platform has always been scoffed at by Mac users, and it was fair enough really. There weren’t a whole lot of Mac users so the effort to develop malware for the Mac platform really wasn’t worth it. The platform has exploded though with Macs being the weapon of choice for [...]

Continue Reading


11 May 2011 | 7,518 views

peepdf – Analyze & Modify PDF Files

peepdf is a Python tool to explore PDF files in order to find out if the file can be harmful or not. The aim of this tool is to provide all the necessary components that a security researcher could need in a PDF analysis without using 3 or 4 tools to make all the tasks. [...]

Continue Reading


10 May 2011 | 5,925 views

VUPEN Whitehats Claim To Have Broken Chrome Sandbox

The big news recently is that someone has finally managed to pop the formidable Chrome browser, as we know from following Pwn2Own – it’s been safe for 3 years in a row. It has a sandbox, ASLR and DEP and that’s a pretty heavy combination to keep users safe from malicious software coming in via [...]

Continue Reading


05 May 2011 | 8,392 views

ArpON v2.2 Released – Tool To Detect & Block ARP Spoofing

ArpON (ARP handler inspection) is a portable handler daemon that make ARP secure in order to avoid the Man In The Middle (MITM) through ARP Spoofing/Poisoning attacks. It detects and blocks also derived attacks by it for more complex attacks, as: DHCP Spoofing, DNS Spoofing, WEB Spoofing, Session Hijacking and SSL/TLS Hijacking & co attacks. [...]

Continue Reading


04 May 2011 | 6,774 views

Sony Loses 25 Million More Customer Account Details Through SOE (Sony Online Entertainment)

I actually misread this news at first and thought it was an additional leak from the Sony PlayStation Network (PSN) Hack that has been flooding the news, but sadly for Sony this is an entirely different hack carried out at the same time. It turns out around the same time PSN got hacked SOE (Sony [...]

Continue Reading


02 May 2011 | 8,534 views

sslsnoop v0.6 – Dump Live Session Keys From SSH & Decrypt Traffic On The Fly

sslsnoop dumps live session keys from openssh and can also decrypt the traffic on the fly. Works if scapy doesn’t drop packets. using pcap instead of SOCK_RAW helps a lot now. Works better on interactive traffic with no traffic at the time of the ptrace. It follows the flow, after that. Dumps one file by [...]

Continue Reading