GET YOUR VULNERABILITY AND THREAT DATABASE SUBSCRIPTION
EKOLABS 2016


OpenDLP v0.2.3 released

December 21st, 2010 | by NJ Ouchn

OpenDLP is a free and open source, agent-based, centrally-managed, massively distributable data loss prevention tool released under the GPL. Given appropriate Windows domain credentials, OpenDLP can simultaneously identify sensitive data at rest on hundreds or thousands of Microsoft Windows systems from a centralized web application. OpenDLP has two components: a web application and an agent


LittleBlackBox v0.1.1: Breaking SSL on Embedded Devices

December 21st, 2010 | by NJ Ouchn

A lot of embedded devices provide HTTPS support so that administrators can administer the devices securely over untrusted networks. Some devices, such as SSL VPNs, center their entire functionality around SSL encryption. OK, well SSL isn


Focus on Bluetooth Penetration Testing Framework

December 21st, 2010 | by NJ Ouchn

Bluetooth is a proprietary open wireless technology standard for exchanging data over short distances (using short wavelength radio transmissions) from fixed and mobile devices, creating personal area networks (PANs) with high levels of security. Created by telecoms vendor Ericsson in 1994,[1] it was originally conceived as a wireless alternative to RS-232 data cables. It can connect several devices, overcoming problems of synchronization. Today Bluetooth is managed by the Bluetooth Special Interest Group


Top 10 Database Vulnerabilities and Misconfigurations

December 21st, 2010 | by NJ Ouchn

TeamSHATTER (Security Heuristics of Application Testing Technology for Enterprise Research) has researched the Top 10 Database Vulnerabilities in order to provide you with the most up-to-date vulnerabilities, risk and remediation information


exploitdb nmap script available

December 21st, 2010 | by NJ Ouchn

Here is a little script wrote by “L10n“. It searches the exploitdb archive for possible exploits. It is very verbose [&hellip


Detecting Google hacking against your Website

December 20th, 2010 | by NJ Ouchn

Google or other search engines have been used for many purposes such as finding useful information, important websites and latest news on different topics, Google index a huge number of web pages that are growing daily


Common Weakness Scoring System (CWSS) v0.1 released

December 20th, 2010 | by NJ Ouchn

So for each weakness in the architecture, design, code or implementation that might be introduced into an application, which in some cases can contribute to a vulnerability within that software, we need to be able toreason and communicate about the relative importance of different weaknesses. For example, a buffer overflow vulnerability might arise from aweakness in which the programmer doesnot properly validate the length of an input buffer. This weakness only contributes to a vulnerability if the input buffer can be influenced by amalicious party, and the malicious buffer is copied toa smaller buffer



Back to Top ↑