AppSec… Owasp Security Shepherd – Poor Data Validation – Solution – LSB 8 Sep 20179 Sep 2017 Welcome hackers to a new OWASP Security Shepherd solution. The challenge in question is the Poor Data Validation and this happens when data is only checked on the client side.…
Hacking… Linux commands everyone should know 29 Aug 201729 Aug 2017 sysadmin commands for Linux development environments, containers, virtual machines (VMs), and bare metal. In a world bursting with new tools and diverse development environments, it's practically a necessity for any…
AppSec… How to Hijack Web Browsers Using BeEF 28 Aug 201728 Aug 2017 Welcome back my fellow hackers! Today we’re going to be introducing a new tool for hacking web browsers. Often times, we will need to exploit a variety of vulnerabilities associated…
AppSec… Security Shepherd Solutions 20 Aug 201728 Aug 2017 The OWASP Security Shepherd project is a web and mobile application security training platform. Security Shepherd has been designed to foster and improve security awareness among a varied skill-set demographic.…
Hacking… Wifite : Hacking Wifi The Easy Way 20 Aug 201720 Aug 2017 Disclaimer - TLDR; some stuff here can be used to carry out illegal activity, our intention is, however, to educate. Wifite While the aircrack-ng suite is a well known name…
Dark Net… How Elliot & Fsociety Made Their Hack of Evil Corp Untraceable 17 Aug 201717 Aug 2017 Welcome back, my tenderfoot hackers! Well, the first season of Mr. Robot just ended and Elliot and fsociety successfully took down Evil Corp! They have effectively destroyed over 70% of the world's…
Android Security… Broadpwn Bug Affects Millions of Android and iOS Devices 11 Jul 201711 Jul 2017 Broadcom Wi-Fi chips embedded in Android and iOS devices are vulnerable to a bug that allows an attacker to execute code on their devices, without any interaction needed from the…
Android Security… How the CopyCat malware infected Android devices around the world 7 Jul 20177 Jul 2017 Check Point researchers identified a mobile malware that infected 14 million Android devices, rooting approximately 8 million of them, and earning the hackers behind the campaign approximately $1.5 million in…
Crypto Currency… Bitcoin Ethical Hacking Leads to Solving FBI Murder Case 5 Jul 20175 Jul 2017 Excellent article on the case: Suicide or murder? In November 2016, 47-year-old Mrs. Allwine was found dead in their home in Cottage Grove, Minnesota. While her husband Stephen Carl Allwine…
Exploits… Systemd flaw leaves many Linux distros open to attack 4 Jul 20174 Jul 2017 A flaw in systemd, the init system used on many Linux systems, can be exploited using a malicious DNS query to either crash a system or to run code remotely.…
Attacks… How Shipping Giant Maersk Dealt With a Malware Meltdown, And Other Security News This Week 3 Jul 20173 Jul 2017 WHEN A PIECE of unprecedented malicious software rampages through thousands of critical networks around the world, it tends to get our full attention. And this week's digital plague, known as…
Attacks… Using Appcache and ServiceWorker for Evil 7 Jun 20177 Jun 2017 You’re a bad guy and you just hacked a website. Normally you leak the database and leave. The owner fixes everything next day and removes your backdoor. With Middlekit techniques…
Attacks… Thousands of computers now compromised with leaked NSA tools 27 Apr 201727 Apr 2017 Thousands of Microsoft Windows machines worldwide are infected with an NSA-developed backdoor that hackers installed by reusing leaked executable code from an outdated hacking toolkit belonging to the spy agency, multiple…
Hacking Hackers Are Already Targeting Our Critical Infrastructure 21 Mar 201721 Mar 2017 Cyber defenders still don’t understand the real threats that the power grid, energy plants and other critical infrastructure face. In the last few years, several government officials have made a…
Hacking Inside the Russian hack of Yahoo 20 Mar 201720 Mar 2017 One mistaken click. That's all it took for hackers aligned with the Russian state security service to gain access to Yahoo's network and potentially the email messages and private information of…
Cyber Security… In-the-wild exploits ramp up against sites using Apache Struts 19 Mar 201719 Mar 2017 Eight days after developers patched a critical flaw in the Apache Struts Web application framework, there has been no let-up in the volley of attacks attempting to exploit the vulnerability,…
Hacking The Coolest Hacks Of 2017 So Far 19 Dec 201628 Mar 2017 In a year when ransomware became the new malware and cyber espionage became a powerful political propaganda tool for Russia, it's easy to forget that not all hacking in 2016…
Hacking Where To Buy Your Online Stolen Data 7 Dec 20167 Dec 2016 What malicious sites provide both free and paid access to stolen credit cards, company databases, malware and more? With nothing more than a standard Web browser, cybercriminals can find personal,…
Hacking… 10 Security/Hacking Tools & Utilities – LSBlog 2 Nov 20162 Nov 2016 1. Nmap I think everyone has heard of this one, recently evolved into the 4.x series. Nmap (“Network Mapper”) is a free open source utility for network exploration or security…
Hacking VoIP Hacking 22 Aug 201622 Aug 2016 By Mirko Raimondi Initially, the PSTN was a simple one-to-one telephone line connecting phones from one room to another. When telephone business grew, Private Branch eXchanges (PBX) were designed, and…
Hacking What Wireshark can Hack for you 17 Aug 201617 Aug 2016 Wireshark is a complete package filled with network analysis tools. Wireshark is not only a packet sniffer but also a packet analyzer, password hacker, and a firewall. It can also…
Hacking Hacking Linux with Armitage 8 Aug 20168 Aug 2016 Metasploit is a popular exploitation framework that has seen plenty of coverage on ethicalhacker.net. This article introduces Armitage, a new GUI for Metasploit built around the hacking process. Today, I…
Hacking Chip and Pin Bypass at Black Hat 5 Aug 20165 Aug 2016 Credit card companies for the most part have moved away from “swipe and signature” credit cards to chip and pin cards by this point; the technology known as EMV (Europay,…
Hacking Safe Skies luggage master key released online by hackers 29 Jul 201629 Jul 2016 Hackers reverse engineer Safe Skies master key, publish designs On Saturday evening, during the Eleventh HOPE conference in New York City, three hackers released the final master key used by…
Hacking 655,000 personal medical records, public. 29 Jun 201629 Jun 2016 A HACKER IS selling a huge collection of medical records online, and claims to have profited in this way already. 'Thedarkoverload' told Motherboard that business is good, and that the…
Hacking Millions Potentially Impacted by VerticalScope Hack 16 Jun 201616 Jun 2016 VerticalScope, which hosts 1,100 websites and forums, was hacked earlier this year, with the details of around 45 million users later leaked online. Some of the most popular online communities…
Hacking 10-year-old gets bounty for finding Instagram vulnerability 9 May 20169 May 2016 A 10-year-old schoolboy from Finland has become the youngest recipient of a £7,000 ($10,000) award under Facebook's bug bounty program, after he found a vulnerability that allowed anyone to delete…
Hacking Tesla Model S hacked to play movies 23 Apr 201623 Apr 2016 This is awesome – a hacker recently installed Gentoo Linux on the computer inside of his or her Tesla Model S,. all in the hopes of making the 17-inch screen…
Hacking How He Broke Into Hacking Team Servers 17 Apr 201615 Apr 2017 Almost a year after carrying out his attacks, the hacker behind the Hacking Team data breach has published a step-by-step explainer on how he breached the company's servers and stole…
Hacking Sqlmap: Testing With Sql Injection 12 Mar 20162 Nov 2016 Sqlmap is included in pen testing linux distros like kali linux, backtrack, backbox etc. On other distros it can be simply downloaded from the following url: http://sqlmap.org/. Since its written…
Cybercrime… Threats To Your Security When Using Social Media 29 Feb 201629 Feb 2016 Social networking has changed the way we interact with friends and associates. While social networks, like Facebook, Twitter, YouTube, FourSquare, and Google+, play a significant role in our lives, they…
Attacks… Cross Site Scripting Cheat Sheet 23 Feb 201629 Feb 2016 This cheat sheet is for people who already understand the basics of Cross Site Scripting (XSS) attacks but want a deep understanding of the nuances regarding filter evasion. XSS Locator…
Hacking Linux Mint hacked 21 Feb 20163 Mar 2016 "Hackers made a modified Linux Mint ISO, with a backdoor in it, and managed to hack our website to point to it," said Clem Lefebvre, creator of the Linux Mint…
Hacking… Popular Tools for Brute-force Attacks 18 Feb 201621 Feb 2016 The brute-force attack is still one of the most popular password cracking methods. Nevertheless, it is not just for password cracking. Brute-force attacks can also be used to discover hidden…
Attacks… Defending against CSRF Attacks 11 Feb 201611 Feb 2016 Cross-Site Request Forgery, or CSRF for short is a common and regular online attack. CSRF also goes by the acronym XSRF and the phrase “Sea-Surf”. CSRF attacks include a malicious…
Cyber Security… Beating the bad guys with their own tricks 31 Jan 201615 Apr 2017 I've only tried this on Chrome, I'm not sure how other browsers will handle it, but it should work across all browsers.. Have you ever experienced this while streaming content?…
