When facing off against a WebDAV enabled server, there are two things to find out quickly: can you upload files, and if so, can you execute code? DAVTest attempts help answer those questions, as well as enable the pentester to quickly gain access to the host. DAVTest tries to upload test files of various extension […]
Archives for April 2010
Texas Man Pleads Guilty To Bot Network For Hire
[ad] Another botnet herder bites the dust, the latest news in the malware arena is about David Anthony Edwards from Texas who has admitted he and his accomplice had offered tailor made malware and DDoS attacks for rent. 22,000 zombies is a reasonable number of bots for a herder to control on their own, and […]
fuzzdb – Comprehensive Set Of Known Attack Sequences
fuzzdb is a comprehensive set of known attack pattern sequences, predictable locations, and error messages for intelligent brute force testing and exploit condition identification of web applications. Many mechanisms of attack used to exploit different web server platforms and applications are triggered by particular meta-characters that are observed in more than one product security advisory. […]
Seattle Computer Security Expert Turns Tables On The Police
Honestly there’s been nothing much going on for the past few days or over the weekend, Microsoft retracted some patches citing ‘quality issues’ and there was announcement about Metasploit Express version. But well that was about it! This was the only story I found vaguely interesting, because well we all love to flip the bird […]
ReFrameworker – General Purpose Framework Modifier
[ad] ReFrameworker is a general purpose Framework modifier, used to reconstruct framework Runtimes by creating modified versions from the original implementation that was provided by the framework vendor. ReFrameworker performs the required steps of runtime manipulation by tampering with the binaries containing the framework’s classes, in order to produce modified binaries that can replace the […]