Live Hacking
Ethical Hacking | Penetration Testing
Auto Update your Programs – Secunia PSI 2.0 Public Beta
Sep 2nd
Secunia released version 2 of its Personal Software Inspector (PSI) application.
With reference to Secunia blog, The core of the Secunia PSI, the scan engine or the Secunia Software Inspector technology has remained practically untouched and it is still the most accurate scanning engine available for detecting installed programs and missing security updates on the Windows platform.
The Secunia PSI uses the same framework and engine which has been used in Secunia commercial solutions, like the Secunia CSI, which is used by some of the largest and most security conscious companies and organisations in the world.
Download Secunia PSI:
http://secunia.com/PSI2SetupBeta.exe
Source:[http://secunia.com/blog/123/]
The H Security: Microsoft continues to workaround DLL vulnerability
Sep 2nd
Users wishing to use Microsoft’s tool (released last week) to block the DLL vulnerability present in a wide range of programs may find that they have a problem. If the setting for the manually created CWDIllegalInDllSearch registry entry in the ‘HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager’ path is too strict, programs including Google’s Chrome web browser may become unusable. Microsoft has now released a ‘fix-it’ solution which automatically generates the key and sets it to the less severe value of ’2′ – this protects users from direct DLL hijacking from network shares. The fix-it requires the original tool to have been previously installed. Microsoft is currently considering distributing it via Windows Update.
Read the full article here.
Source:[TheHSecurity]
Apple QuickTime backdoor creates code-execution peril
Aug 31st
A security researcher has unearthed a “bizarre” flaw in Apple’s QuickTime Player that can be exploited to remotely execute malicious code on Windows-based PCs, even those running the most recent versions of operating system.
Read the full article here.
Source:[TheRegister]
Microsoft tool for DLL vulnerability interferes with some applications
Aug 31st
Microsoft’s tool to protect against the DLL hijacking vulnerability, which was released last week, results in some programs no longer working properly. Users who want to use the tool to reliably prevent attackers from passing infected libraries to trusted applications should set the new registry key DWORD value to 0xFFFFFFFF (“ffffffff”).
Read the full article here.
Source:[TheHSecurity]
Firefox 4 to Include HTTP Strict Transport Security Support
Aug 28th
In an effort to help mitigate man-in-the-middle attacks that make normal HTTP connections look like secured HTTPS sessions, Mozilla is adding support in Firefox 4 for a new technology called HTTP Strict Transport Security that enables site operators to tell browsers to always request an HTTPS session on future visits.
The technology, which is also known as ForceTLS, is currently an IETF draft specification and Mozilla officials say it should give users more confidence in HTTPS connections over time.
Read the full article here.
Source:[Threatpost]
Once-prolific Pushdo botnet crippled
Aug 28th
Security researchers have disrupted the botnet known as Pushdo, a coup that over the past 48 hours has almost completely choked the torrent of junkmail from the once-prolific spam network.
Researchers from the security inteligence firm LastLine said that they identified a total of 30 servers used as Pushdo command and control channels and managed to get the plug pulled on 20 of them.
Read the full article here.
Source:[TheRegister]
The H Security: Scope of DLL security problem widens – Update
Aug 27th
After HD Moore released details last week about the DLL problem under Windows, along with a testing tool, an increasing number of affected applications and their matching exploits have been reported. In addition to Firefox and Opera, vulnerable programs include such popular applications as PowerPoint, Photoshop, Dreamweaver, VLC, uTorrent and Wireshark – in each case, the current version is affected. They all use an insecure way of loading DLLs in which at an early stage the search order contains the current directory – a directory that could be on a network device.
Read the full story here.
Source:[The H Security]
Live Hacking V1.2 Released
Aug 25th
Dr. Ali Jahangiri, the respected security expert and author, is pleased to announce an update to the Live Hacking CD, a Linux distribution designed for ethical computer hacking. The updated Live CD contains the tools and utilities you need to test and hack your own network in the same way a malicious hacker would. New in this version is the metasploit penetration testing framework and a range of IPv6 foot-printing tools.
The metasploit framework, one of the new tools included with this release, can be used to test your network using the frameworks internal database of known weaknesses and exploits.
As the number of available IPv4 addresses decreases more and more organizations are deploying IPv6. Also included in this new release of the Live Hacking CD is the THC-IPV6 tool, a set of tools to attack the inherent protocol weaknesses of IPv6 and ICMP6.
‘The Live Hacking CD has been an outstanding success’ said Dr. Ali Jahangiri. ‘Now with this new updated version we are putting more tools into the hands of IT professionals so they can defend against the malicious activities of cyber criminals.’
Download Live Hacking V1.2 Here.
Whodunnit? Tools to manage investigations
Aug 23rd
As you already know or you will learn your first time in court, proper documentation of your investigation is a must for all your cases. Unfortunately your case plan, notes, evidence and even how you come to the conclusion of your investigation can be more complex and harder to manage then the case itself.
Read the full article here.
Source: [Computerworld}
Google closes critical vulnerabilities in Chrome 5
Aug 20th
Google has released version 5.0.375.127 of Chrome, a security update that addresses two “critical” and six “high” risk vulnerabilities in its WebKit-based browser. According to the developers, one of the critical issues related to the file dialogue could lead to memory corruption, while the second could cause a crash on shut down due to a notifications bug.
Read the full article here.
Source: [The H Security]
