http://www.secuobs.com L'observatoire de la securite Internet fr webmaster@secuobs.com UPDATE Snort 2.9.1.1 http://www.secuobs.com/revue/news/333239.shtml http://www.secuobs.com/news/comments1811052008-snort_ids.shtml#11124 http://www.secuobs.com/news/comments1811052008-snort_ids.shtml#11124 Apache Issues Patch To Stop Reverse-Proxy Bypass Attack http://www.secuobs.com/revue/news/333142.shtml http://www.secuobs.com/news/comments1103052004mod_security.html#11121 http://www.secuobs.com/news/comments1103052004mod_security.html#11121 ESRT @HackerTheDude @r0bertmart1nez @xanda @morenops - Kernel hacking the BSD way, new post http://www.secuobs.com/twitter/news/254581.shtml http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#11118 http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#11118 ESRT @room362 - The Dirty Little Secrets They Didn't Teach You In Pentesting Class http://www.secuobs.com/twitter/news/254934.shtml http://www.secuobs.com/news/comments525082006-audit_windows.shtml#11115 http://www.secuobs.com/news/comments525082006-audit_windows.shtml#11115 ESRT @jcran @dkarg - Metasploit Payloads VS Libemu - Alienvault Labs http://www.secuobs.com/twitter/news/254611.shtml http://www.secuobs.com/news/comments7728122007-metasploit.shtml#11111 http://www.secuobs.com/news/comments7728122007-metasploit.shtml#11111 ESRT @bidatasecurity - 37 percent of users browsing the Web with insecure Java versions http://www.secuobs.com/twitter/news/254327.shtml http://www.secuobs.com/news/comments610072003java-rmi1.html#11109 http://www.secuobs.com/news/comments610072003java-rmi1.html#11109 Metasploit Feature 5598: New Windows Post Module: Windows Gather Wireless Profile http://dev.metasploit.com/redmine/issues/5598#change-22538 http://www.secuobs.com/news/comments7728122007-metasploit.shtml#11108 http://www.secuobs.com/news/comments7728122007-metasploit.shtml#11108 Kernel Developers Share Security Tips http://www.secuobs.com/revue/news/332854.shtml http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#11102 http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#11102 Exploit Pack An Open Source Security Framework http://www.secuobs.com/revue/news/332780.shtml http://www.secuobs.com/news/comments7628122007-metasploit.shtml#11099 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#11099 Apache HTTP Server mod_proxy reverse proxy issue, Thu, Oct 6th http://www.secuobs.com/revue/news/333067.shtml http://www.secuobs.com/news/comments1003052004mod_security.html#11098 http://www.secuobs.com/news/comments1003052004mod_security.html#11098 ESRT @dragosr @lwnnet - Kernel.org is back http://www.secuobs.com/twitter/news/254061.shtml http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#11095 http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#11095 pCrack Suite and WEAKERTHAN 4 http://www.secuobs.com/revue/news/332220.shtml http://www.secuobs.com/news/comments1312062007-secubulive.shtml#11085 http://www.secuobs.com/news/comments1312062007-secubulive.shtml#11085 ESRT @cyberlocksmith @Security_Sifu - Backtrack 5 with Aircrack for Motorola Xoom http://www.secuobs.com/twitter/news/253418.shtml http://www.secuobs.com/news/comments1312062007-secubulive.shtml#11083 http://www.secuobs.com/news/comments1312062007-secubulive.shtml#11083 ESRT @FlUxIuS @PhysicalDrive0 - Linux Kernel 2.6.182 Local Root Exploit http://www.secuobs.com/twitter/news/253574.shtml http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#11080 http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#11080 ESRT @BorjaMerino @mmorenog - Post-explotación con John the Ripper y ophcrack por @spankito en @securityartwork http://www.secuobs.com/twitter/news/253080.shtml http://www.secuobs.com/news/comments7628122007-metasploit.shtml#11079 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#11079 ESRT @ChrisJohnRiley @hackerschoice - Hydra v7.1 is available Now supports socks, new proxy url enum module, bug fixes http://www.secuobs.com/twitter/news/253643.shtml http://www.secuobs.com/news/comments731122005-captive.shtml#11070 http://www.secuobs.com/news/comments731122005-captive.shtml#11070 ESRT @corq - Nmap 561 TEST2 - IPv6 OS detection Added http://www.secuobs.com/twitter/news/253651.shtml http://www.secuobs.com/news/comments714032006-fingerprinting.shtml#11069 http://www.secuobs.com/news/comments714032006-fingerprinting.shtml#11069 Post Exploitation Shellbag `ing http://www.secuobs.com/revue/news/332099.shtml http://www.secuobs.com/news/comments616092006-wishmaster.shtml#11065 http://www.secuobs.com/news/comments616092006-wishmaster.shtml#11065 ncrack with domain creds http://www.secuobs.com/revue/news/332100.shtml http://www.secuobs.com/news/comments714032006-fingerprinting.shtml#11064 http://www.secuobs.com/news/comments714032006-fingerprinting.shtml#11064 Security Onion 20111001 now available http://www.secuobs.com/revue/news/332161.shtml http://www.secuobs.com/news/comments1312062007-secubulive.shtml#11060 http://www.secuobs.com/news/comments1312062007-secubulive.shtml#11060 ESRT @ethicalhack3r - Modified Metasploit's php_include module to handle RFI's in POST requests http://www.secuobs.com/twitter/news/252836.shtml http://www.secuobs.com/news/comments7628122007-metasploit.shtml#11055 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#11055 ESRT @securityshell - Local Session Poisoning in PHP Part 3: Bypassing Suhosin's Session Encryption http://www.secuobs.com/twitter/news/252617.shtml http://www.secuobs.com/news/comments610052008-php_security.shtml#11054 http://www.secuobs.com/news/comments610052008-php_security.shtml#11054 ESRT @ChrisJohnRiley @p4dawan - Metasploit Post Exploitation With Inject CA http://www.secuobs.com/twitter/news/252094.shtml http://www.secuobs.com/news/comments7628122007-metasploit.shtml#11041 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#11041 ESRT @TimelessP @kanguru_news - The Air Force's secure Linux distribution http://www.secuobs.com/twitter/news/251850.shtml http://www.secuobs.com/news/comments1312062007-secubulive.shtml#11040 http://www.secuobs.com/news/comments1312062007-secubulive.shtml#11040 ESRT @Mike_Poor @joswr1ght - Packetstan post: Sorting Packet Captures with Scapy http://www.secuobs.com/twitter/news/252139.shtml http://www.secuobs.com/news/comments601102007-scapy.shtml#11039 http://www.secuobs.com/news/comments601102007-scapy.shtml#11039 ESRT @danphilpott - NIST released draft SP 800-121 Rev 1 Guide to Bluetooth Security http://www.secuobs.com/twitter/news/252108.shtml http://www.secuobs.com/news/comments205022006-bluetooth1.shtml#11037 http://www.secuobs.com/news/comments205022006-bluetooth1.shtml#11037 ESRT @teksquisite - Java, Adobe vulns blamed for Windows malware mayhem http://www.secuobs.com/twitter/news/252170.shtml http://www.secuobs.com/news/comments610072003java-rmi1.html#11036 http://www.secuobs.com/news/comments610072003java-rmi1.html#11036 Facts and myths about antivirus evasion with Metasploit http://www.secuobs.com/revue/news/331450.shtml http://www.secuobs.com/news/comments7628122007-metasploit.shtml#11035 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#11035 Diebold voting machines vulnerable to remote tampering via man-in-the-middle attack http://www.secuobs.com/revue/news/331514.shtml http://www.secuobs.com/news/comments1023092006-hacking_hardware.shtml#11034 http://www.secuobs.com/news/comments1023092006-hacking_hardware.shtml#11034 Hacking the HID From Zero to Pwned in 10 Seconds - Hak5 http://www.secuobs.com/revue/news/331448.shtml http://www.secuobs.com/news/comments211122006-usbdumper2.shtml#11033 http://www.secuobs.com/news/comments211122006-usbdumper2.shtml#11033 UPDATE Lightweight Portable Security 1.2.5 http://www.secuobs.com/revue/news/331482.shtml http://www.secuobs.com/news/comments1312062007-secubulive.shtml#11032 http://www.secuobs.com/news/comments1312062007-secubulive.shtml#11032 ESRT @xanda @adulau - icmp.sh simple reverse ICMP shell with a win32 slave POSIX compatible master in C, Perl or Python http://www.secuobs.com/twitter/news/251708.shtml http://www.secuobs.com/news/comments19092007-escape_restricted_shell.shtml#11020 http://www.secuobs.com/news/comments19092007-escape_restricted_shell.shtml#11020 ESRT @jonoberheide - Kernel memory disclosure in grsecurity http://www.secuobs.com/twitter/news/251773.shtml http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#11019 http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#11019 ESRT @packet_storm - DNS Spider Multithreaded Bruteforcer 0.3 http://www.secuobs.com/twitter/news/251649.shtml http://www.secuobs.com/news/comments219122007-dnsa.shtml#11018 http://www.secuobs.com/news/comments219122007-dnsa.shtml#11018 ESRT @y0m - Almost All you want to know about Dionaea SIP Module http://www.secuobs.com/twitter/news/251634.shtml http://www.secuobs.com/news/comments1811052008-snort_ids.shtml#11017 http://www.secuobs.com/news/comments1811052008-snort_ids.shtml#11017 ESRT @wireheadlance @nodaki - BT5 MSF Keyscan - key-logger - issues with winlogon process. Workaround Lockout_Keylogger http://www.secuobs.com/twitter/news/251334.shtml http://www.secuobs.com/news/comments7628122007-metasploit.shtml#11008 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#11008 ESRT @opexxx @Snort - Snort 2.9.1: SIP preprocessor http://www.secuobs.com/twitter/news/251323.shtml http://www.secuobs.com/news/comments1811052008-snort_ids.shtml#11006 http://www.secuobs.com/news/comments1811052008-snort_ids.shtml#11006 Multi Threaded TCP Port Scanner TCP Syn port scanner tool http://www.secuobs.com/revue/news/331041.shtml http://www.secuobs.com/news/comments714032006-fingerprinting.shtml#11001 http://www.secuobs.com/news/comments714032006-fingerprinting.shtml#11001 MAC versus DAC in SELinux http://www.secuobs.com/revue/news/331005.shtml http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#11000 http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#11000 Metasploit Revision 13793: Armitage 09.26.11 rearrange tabs through dragdrop, export data from msf, zoom on snapshots. http://dev.metasploit.com/redmine/projects/framework/repository/revisions/13793 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#10998 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#10998 Metasploit Revision 13790: Add GlassFish BruteForce auxiliary module by Josh http://dev.metasploit.com/redmine/projects/framework/repository/revisions/13790 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#10997 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#10997 ESRT @3141592f - Codenomicon fuzzes bluetooth, BT go boom This is how your new car will kill you when Skynet says GO http://www.secuobs.com/twitter/news/250971.shtml http://www.secuobs.com/news/comments205022006-bluetooth1.shtml#10994 http://www.secuobs.com/news/comments205022006-bluetooth1.shtml#10994 ESRT @mosesrenegade @j0emccray - Ani-Shell v1.4 Released With Python - Bind Shell , Anti-Crawler Feature and MD5 Cracker http://www.secuobs.com/twitter/news/251184.shtml http://www.secuobs.com/news/comments610052008-php_security.shtml#10993 http://www.secuobs.com/news/comments610052008-php_security.shtml#10993 ESRT @mikkohypponen - A short update on the kernel.org hack outage, from LKML mailing list - Thanks @jsqf http://www.secuobs.com/twitter/news/251110.shtml http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#10992 http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#10992 ESRT @MarioVilas - Gateway-finder is a scapy script that finds which systems on the local LAN can reach the Internet http://www.secuobs.com/twitter/news/251179.shtml http://www.secuobs.com/news/comments601102007-scapy.shtml#10991 http://www.secuobs.com/news/comments601102007-scapy.shtml#10991 ESRT @MarioVilas @Foundstone - @CoreSecurity gets DNS Hijacked by @snc0pe http://www.secuobs.com/twitter/news/250672.shtml http://www.secuobs.com/news/comments219122007-dnsa.shtml#10977 http://www.secuobs.com/news/comments219122007-dnsa.shtml#10977 simple-shellcode-generator.py http://www.secuobs.com/revue/news/330577.shtml http://www.secuobs.com/news/comments616092006-wishmaster.shtml#10970 http://www.secuobs.com/news/comments616092006-wishmaster.shtml#10970 UPDATE pfSense 2.0 http://www.secuobs.com/revue/news/330610.shtml http://www.secuobs.com/news/comments1312062007-secubulive.shtml#10966 http://www.secuobs.com/news/comments1312062007-secubulive.shtml#10966 Security Onion 20110922 now available http://www.secuobs.com/revue/news/330639.shtml http://www.secuobs.com/news/comments1312062007-secubulive.shtml#10965 http://www.secuobs.com/news/comments1312062007-secubulive.shtml#10965 Metasploit Feature #5503 HavePatch: New post module myca http://dev.metasploit.com/redmine/issues/5503 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#10954 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#10954 ESRT @carnal0wnage @PenTesticles - The evolution of Pentesting High Security Environments http://www.secuobs.com/twitter/news/249273.shtml http://www.secuobs.com/news/comments525082006-audit_windows.shtml#10950 http://www.secuobs.com/news/comments525082006-audit_windows.shtml#10950 ESRT @xanda @LightOS - @kkotowicz: PHP recursive obfuscation I like to call it Inception - how to handle it with deception http://www.secuobs.com/twitter/news/249616.shtml http://www.secuobs.com/news/comments610052008-php_security.shtml#10949 http://www.secuobs.com/news/comments610052008-php_security.shtml#10949 ESRT @CanDeger - Bluetooth vulnerabilities becoming easier to exploit http://www.secuobs.com/twitter/news/249858.shtml http://www.secuobs.com/news/comments205022006-bluetooth1.shtml#10946 http://www.secuobs.com/news/comments205022006-bluetooth1.shtml#10946 UPDATE Nmap 5.61TEST1 http://www.secuobs.com/revue/news/330215.shtml http://www.secuobs.com/news/comments714032006-fingerprinting.shtml#10943 http://www.secuobs.com/news/comments714032006-fingerprinting.shtml#10943 UPDATE SAMHAIN v2.8.6 http://www.secuobs.com/revue/news/330147.shtml http://www.secuobs.com/news/comments119042008-samhain_fids.shtml#10942 http://www.secuobs.com/news/comments119042008-samhain_fids.shtml#10942 Windows 8 Syscall Interface and Export Table diffing fun http://www.secuobs.com/revue/news/330195.shtml http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#10941 http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#10941 Windows 8 secure boot to block Linux http://www.secuobs.com/revue/news/330160.shtml http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#10940 http://www.secuobs.com/news/comments2114112007-kernel_hardening.shtml#10940 ESRT @teamcymru - On-line tools to test your DNS setup http://www.secuobs.com/twitter/news/249255.shtml http://www.secuobs.com/news/comments219122007-dnsa.shtml#10939 http://www.secuobs.com/news/comments219122007-dnsa.shtml#10939 Security Onion 20110920 now available http://www.secuobs.com/revue/news/329914.shtml http://www.secuobs.com/news/comments1212062007-secubulive.shtml#10929 http://www.secuobs.com/news/comments1212062007-secubulive.shtml#10929 Metasploit Feature 5479 HavePatch: 2 New Vsploit Modules - Syslog Spoofing Messages and FIles http://dev.metasploit.com/redmine/issues/5479 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#10927 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#10927 Highlighter v1.1.3 Released http://www.secuobs.com/revue/news/329684.shtml http://www.secuobs.com/news/comments107042008-tenshi.shtml#10925 http://www.secuobs.com/news/comments107042008-tenshi.shtml#10925 ESRT @teamcymru - fingerbank - DHCP fingerprint database http://www.secuobs.com/twitter/news/249147.shtml http://www.secuobs.com/news/comments714032006-fingerprinting.shtml#10920 http://www.secuobs.com/news/comments714032006-fingerprinting.shtml#10920 ESRT @dragosr - Reverse shell one liners in bash, perl, ruby, netcat, telnet, xterm http://www.secuobs.com/twitter/news/248509.shtml http://www.secuobs.com/news/comments7628122007-metasploit.shtml#10913 http://www.secuobs.com/news/comments7628122007-metasploit.shtml#10913 ESRT @packet_storm - Covert Post-Exploitation Forensics With Metasploit - whitepaper http://www.secuobs.com/twitter/news/249027.shtml http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10911 http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10911 Security Onion 20110915 now available http://www.secuobs.com/revue/news/329308.shtml http://www.secuobs.com/news/comments1212062007-secubulive.shtml#10892 http://www.secuobs.com/news/comments1212062007-secubulive.shtml#10892 ESRT @ethicalhack3r - BLOG SPAM ES Metasploit db_autopwn contra Windows 8 - en Español http://www.secuobs.com/twitter/news/247905.shtml http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10873 http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10873 ESRT @DarkOperator - Importing and Working with Nmap Scans in Metasploit Framework 4 http://www.secuobs.com/twitter/news/248001.shtml http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10871 http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10871 UPDATE THC-HYDRA v7.0 http://www.secuobs.com/revue/news/328879.shtml http://www.secuobs.com/news/comments731122005-captive.shtml#10860 http://www.secuobs.com/news/comments731122005-captive.shtml#10860 ESRT @xsploitedsec - Learning Assembly Through Writing Shellcode http://www.secuobs.com/twitter/news/247367.shtml http://www.secuobs.com/news/comments616092006-wishmaster.shtml#10852 http://www.secuobs.com/news/comments616092006-wishmaster.shtml#10852 ESRT @nicowaisman @nahsra @nicowaisman @jduck1337 - javasnoop 1.1 http://www.secuobs.com/twitter/news/247619.shtml http://www.secuobs.com/news/comments610072003java-rmi1.html#10849 http://www.secuobs.com/news/comments610072003java-rmi1.html#10849 ESRT @CiscoSecurity - Using Pogoplug to build a 50 dollars disposable backdoor http://www.secuobs.com/twitter/news/247168.shtml http://www.secuobs.com/news/comments923092006-hacking_hardware.shtml#10848 http://www.secuobs.com/news/comments923092006-hacking_hardware.shtml#10848 ESRT @DarkOperator - Metasploit Gets Covert Forensics And PXE Boot Attack Capabilities http://www.secuobs.com/twitter/news/247532.shtml http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10847 http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10847 Metasploit Feature 5451 New: aux gather module for Shodan search engine http://dev.metasploit.com/redmine/issues/5451 http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10846 http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10846 Upverter A new tool for open-source hardware http://www.secuobs.com/revue/news/328729.shtml http://www.secuobs.com/news/comments923092006-hacking_hardware.shtml#10845 http://www.secuobs.com/news/comments923092006-hacking_hardware.shtml#10845 Test Suricata with Pytbull http://www.secuobs.com/revue/news/328453.shtml http://www.secuobs.com/news/comments1811052008-snort_ids.shtml#10843 http://www.secuobs.com/news/comments1811052008-snort_ids.shtml#10843 ESRT @jonoberheide - ksymhunter and kstructhunter tools for linux kernel exploit dev http://www.secuobs.com/twitter/news/246687.shtml http://www.secuobs.com/news/comments2014112007-kernel_hardening.shtml#10838 http://www.secuobs.com/news/comments2014112007-kernel_hardening.shtml#10838 ESRT @packet_storm - DNS Spider Multithreaded Bruteforcer 0.2 http://www.secuobs.com/twitter/news/246856.shtml http://www.secuobs.com/news/comments219122007-dnsa.shtml#10836 http://www.secuobs.com/news/comments219122007-dnsa.shtml#10836 UPDATE Smooth-Sec v1.2 http://www.secuobs.com/revue/news/328230.shtml http://www.secuobs.com/news/comments1711052008-snort_ids.shtml#10828 http://www.secuobs.com/news/comments1711052008-snort_ids.shtml#10828 Hackers break into Linux Foundation http://www.secuobs.com/revue/news/328237.shtml http://www.secuobs.com/news/comments2014112007-kernel_hardening.shtml#10824 http://www.secuobs.com/news/comments2014112007-kernel_hardening.shtml#10824 Security Onion 20110909 now available http://www.secuobs.com/revue/news/328336.shtml http://www.secuobs.com/news/comments1212062007-secubulive.shtml#10821 http://www.secuobs.com/news/comments1212062007-secubulive.shtml#10821 ESRT @ChrisJohnRiley - Suggested Reading DEP Enforcing Shellcode http://www.secuobs.com/twitter/news/246514.shtml http://www.secuobs.com/news/comments616092006-wishmaster.shtml#10814 http://www.secuobs.com/news/comments616092006-wishmaster.shtml#10814 ESRT @hlixaya @Sourcefire - Snort 2.9.1 Installation Guide for Ubuntu 10.04 LTS has been posted http://www.secuobs.com/twitter/news/246374.shtml http://www.secuobs.com/news/comments1711052008-snort_ids.shtml#10811 http://www.secuobs.com/news/comments1711052008-snort_ids.shtml#10811 Metasploit Revision 13707 - Armitage 09.08.11 http://dev.metasploit.com/redmine/projects/framework/repository/revisions/13707 http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10804 http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10804 ESRT @davidu @jedisct1 - Yaifo is ready for OpenBSD 5.0 Sorry for the delay http://www.secuobs.com/twitter/news/245821.shtml http://www.secuobs.com/news/comments2014112007-kernel_hardening.shtml#10792 http://www.secuobs.com/news/comments2014112007-kernel_hardening.shtml#10792 OpenDNSSEC 1.3.1 released http://www.secuobs.com/revue/news/327489.shtml http://www.secuobs.com/news/comments219122007-dnsa.shtml#10785 http://www.secuobs.com/news/comments219122007-dnsa.shtml#10785 ESRT @securityshell @sans_isc - Java 7 Officially Released http://www.secuobs.com/twitter/news/245236.shtml http://www.secuobs.com/news/comments610072003java-rmi1.html#10781 http://www.secuobs.com/news/comments610072003java-rmi1.html#10781 ESRT @_argp @jonoberheide - List of all Linux kernel structs and sizes http://www.secuobs.com/twitter/news/245522.shtml http://www.secuobs.com/news/comments2014112007-kernel_hardening.shtml#10776 http://www.secuobs.com/news/comments2014112007-kernel_hardening.shtml#10776 ESRT @mubix @msfminute - metasploit CVE 2011-0257 Apple QuickTime PICT PnSize Buffer Overflow r13691 http://www.secuobs.com/twitter/news/245189.shtml http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10775 http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10775 Researcher Will Demo Crippling Siemens Attack Using Metasploit http://www.secuobs.com/revue/news/327295.shtml http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10772 http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10772 ESRT @xanda @jedisct1 - Linux Kernel less than 2.6.36.2 Econet Privilege Escalation Exploit http://www.secuobs.com/twitter/news/245303.shtml http://www.secuobs.com/news/comments2014112007-kernel_hardening.shtml#10770 http://www.secuobs.com/news/comments2014112007-kernel_hardening.shtml#10770 ESRT @MarioVilas - Exploiting recursive functions by smashing the stack against the heap http://www.secuobs.com/twitter/news/245308.shtml http://www.secuobs.com/news/comments201092007-winvuln_lexfo.shtml#10769 http://www.secuobs.com/news/comments201092007-winvuln_lexfo.shtml#10769 linux is now on github too http://www.secuobs.com/revue/news/327196.shtml http://www.secuobs.com/news/comments2014112007-kernel_hardening.shtml#10762 http://www.secuobs.com/news/comments2014112007-kernel_hardening.shtml#10762 Brute Force in pfSense with Metasploit http://www.secuobs.com/revue/news/327190.shtml http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10761 http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10761 OpenSSH 5.9 released http://www.secuobs.com/revue/news/327238.shtml http://www.secuobs.com/news/comments212012006-multiplexage-openssh.shtml#10760 http://www.secuobs.com/news/comments212012006-multiplexage-openssh.shtml#10760 UPDATE T50 v5.4 http://www.secuobs.com/revue/news/327059.shtml http://www.secuobs.com/news/comments501102007-scapy.shtml#10758 http://www.secuobs.com/news/comments501102007-scapy.shtml#10758 ESRT @sambowne @timanderson - According to zone-h, dns hack was achieved by hacking into netnames control panel http://www.secuobs.com/twitter/news/245065.shtml http://www.secuobs.com/news/comments219122007-dnsa.shtml#10757 http://www.secuobs.com/news/comments219122007-dnsa.shtml#10757 ESRT @gcluley - DNS hack hits popular websites: Telegraph, The Register etc http://www.secuobs.com/twitter/news/245037.shtml http://www.secuobs.com/news/comments219122007-dnsa.shtml#10755 http://www.secuobs.com/news/comments219122007-dnsa.shtml#10755 ESRT @ChrisJohnRiley - chrisjohnriley-metasploit-modules.googlecode.com - for easy SVN checkout http://www.secuobs.com/twitter/news/244987.shtml http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10754 http://www.secuobs.com/news/comments7528122007-metasploit.shtml#10754 ESRT @BorjaMerino @radareorg: Nice talk on analyzing shellcodes with r2 - by @vext01 http://www.secuobs.com/twitter/news/245023.shtml http://www.secuobs.com/news/comments616092006-wishmaster.shtml#10753 http://www.secuobs.com/news/comments616092006-wishmaster.shtml#10753 ESRT @xanda @slashdot - Kernel.org Attackers Didn't Know What They Had http://www.secuobs.com/twitter/news/244864.shtml http://www.secuobs.com/news/comments2014112007-kernel_hardening.shtml#10751 http://www.secuobs.com/news/comments2014112007-kernel_hardening.shtml#10751