It’s not the first time Microsoft has had some issues with Firefox and add-ons they installed on users machines through Windows Update. Back in October of last year, Mozilla forcefully disabled a .NET add-on as it was causing ‘instability’ rather a security/vulnerability issue. I did notice the issue with my own Firefox and also noticed […]
Samurai Web Testing Framework v0.8 Released – Pen Testing Security LiveCD
The Samurai Web Testing Framework is a live linux environment that has been pre-configured to function as a web pen-testing environment. The CD contains the best of the open source and free tools that focus on testing and attacking websites. It’s been quite a while since the latest fairly major update of SamuraiWTF (around a […]
Microsoft Patches At Least 34 Bugs Including Pwn2Own Vulnerability
What a massive mother-load of patches Microsoft has unleashed on this month patching more than 34 security vulnerabilities including the fairly high profile vulnerability exploited at the Pwn2Own contest earlier this year in April. Good news as long as all the average Internet users actually use Windows Update and install the latest patches, which somehow […]
Knock v1.3b – Subdomain Enumeration/Brute-Forcing Tool
[ad] Knock is a python script designed to enumerate sub-domains on a target domain through a wordlist. Usage
1 |
$ python knock.py [ url ] [ wordlist ] |
You can view a demo of the tool enumerating Facebook sub-domains on Youtube here: Facebook and Knock v.1.2 Knock works on Linux, Windows and MAC OSX with a python version 2.6.x (or minor). Requirements Python version […]
FTC Cracks Down On Spyware Seller CyberSpy Software
Well this case has taken a while but the FTC won in the end and reached a settlement two years after halting the company from selling it’s “100 per cent undetectable” commercial keylogging application. It’s interesting to see court cases that venture into the grey area of ethics, I think the main problem stemmed from […]