Archives for May 13th, 2011

13 May

Pen Test Standard Alpha Released

Kev Orrey Papers 4 Comments

Welcome to the Penetration Testing Execution Standard homepage. This will be the ultimate home for the penetration testing execution standard. What we are looking ...

13 May

Microsoft Security Intelligence Report Released

Kev Orrey Papers No Comment

The Security Intelligence Report (SIR) is an investigation of the current threat landscape. It analyzes exploits, vulnerabilities, and malware based on data from ...

13 May

OpenDLP The Data Loss Prevention suite v0.3.1 Released

NJ Ouchn Tools No Comment

OpenDLP is a free and open source, agent-based, centrally-managed, massively distributable data loss prevention tool released under the GPL. Given appropriate Windows domain ...

13 May

MalBox Malware Analysis System – An Online Program Behavior

NJ Ouchn Tools No Comment

MalBox is a Program/Malware Behavior Analysis System, which is able to analyze the local and network behaviors of a submitted malware, including file/process/registry/network(irc,http,ect.) behaviors, and ...

13 May

Pytbull is an Intrusion Detection/Prevention System (IDS/IPS) – v1.1 released

NJ Ouchn Tools 1 Comment

pytbull is an Intrusion Detection/Prevention System (IDS/IPS) Testing Framework for Snort and Suricata. It can be used to test the detection ...

13 May

Netsparker Professional 1.9.0.5 is out !

NJ Ouchn Tools No Comment

Netsparker can crawl, attack and identify vulnerabilities in all custom web applications regardless of the platform and the ...

[Papers] Game Engines: A 0-day’s Tale by ReVuln

This paper details several issues affecting different game engines. All the vulnerabilities discussed in this ...
[Paper] WASC: Static Analysis Technologies Evaluation Criteria v1.0 (SATEC)

The goal of the SATEC (Static Analysis Technologies Evaluation Criteria) project is to create a ...
[Report] For Their Eyes Only: The Commercialization of Digital Spying (The Citizen Lab)

The Citizen Lab is an interdisciplinary laboratory based at the Munk School of Global Affairs,at the University ...
The Art of Exploiting Injection Flaws at Black Hat Vegas 2013

(Article by Sumit 'Sid' Siddharth) Read other Sid's posts at www.notsosecure.com) So, you found a SQL ...
Book Review: Violent Python A Cookbook for Hackers, Forensic Analysts, Penetration Testers and Security Engineers

'Give a man a fish and you feed him for a day. Teach a man ...

R.I.P Brad “the Nurse” Smith – A Blackhat Icon passed away

Dear all, This is a very sad news for the Hackers & Blackhat Community. After a ...
A Day in the Blackhat Arsenal without Brad ‘TheNurse’ Smith

This year, The Blackhat Arsenal had a bitter aftertaste without the participation of a renowned ...
Blackhat USA 2012: Interview with Stach & Liu Team about Google Diggity Project

Francis Brown Stach & Liu, LLC Francis Brown, CISA, CISSP, MCSE, is a Managing Partner at Stach ...
Blackhat USA 2012: Interview with FishNet Team about SIRA

Justin Engler FishNet Security Justin Engler is a Senior Security Consultant for FishNet Security's Application Security practice. ...
Blackhat USA 2012: Interview with Raphael Mudge about Armitage (Also Introducing CobaltStrike)

Raphael Mudge Strategic Cyber LLC Raphael Mudge is the founder of Strategic Cyber LLC, a Washington, DC ...