Clik here to view.
Un informático en el lado del mal: Citas presenciales para Octubre: Eventos &...
Hace un par de días os dejé la lista de eventos y cursos online para Octubre, y ahora quiero dejaros la lista de las conferencias y charlas que hay por delante en las próximas dos semanas, que son una...
View ArticleSANS Internet Storm Center, InfoCON: green: Maldoc VBA Anti-Analysis: Video,...
Saturday I posted my Maldoc VBA Anti-Analysis diary entry: I step through the analysis of a malicious document that tries to detect (automated) analysis environments.Here is a video of the analysis of...
View ArticleClik here to view.
ArsTechnica: Security Content: Hacked Republican website skimmed donor credit...
EnlargeA website used to fund the campaigns of Republican senators was infected with malware that for more than six months collected donors' personal information, including full names, addresses, and...
View ArticleClik here to view.
Darknet - The Darkside: nishang – PowerShell For Penetration Testing
Nishang is a framework and collection of scripts and payloads which enables usage of PowerShell for penetration testing, offensive security and red teaming. Nishang is useful during all phases of...
View ArticleClik here to view.
ArsTechnica: Security Content: Defense contractor “white hat” tells FBI that...
Enlarge/ Excerpt of an FBI interview report detailing a Judicial Watch deal with a defense contractor to search for hacked Clinton files. More records from the Federal Bureau of Investigation's review...
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Tuesday,...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Un informático en el lado del mal: BlackBox: Ataques para Joomla, WordPress,...
Esta herramienta llamada BlackBox y escrita en Python permite a un pentester disponer de una suite interesante en su día a día en la oficina. BlackBox, que se encuentra en su versión 2.0 para...
View ArticleSANS Internet Storm Center, InfoCON: green: OpenSSH Protocol Mismatch In...
One reason you can tell your friends like you: They will share packets with you :) . One such friend sent me an interesting packet capture this weekend: And SSH Protocol Mismatch Error in response to...
View ArticleClik here to view.
ArsTechnica: Security Content: Trump Organization uses really, really...
(credit: Gage Skidmore)Hillary Clinton isn't the only one who may have had an e-mail security problem. A security researcher has discovered that the Trump Organization's mail servers all run on a...
View ArticleClik here to view.
/dev/random: Hack.lu 2016 Wrap-Up Day #1
I’m back to Luxembourg for a new edition of hack.lu. In fact, I arrived yesterday afternoon to attend the MISP summit. It was a good opportunity to meet MISP users and to get fresh news about the...
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Wednesday,...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Un informático en el lado del mal: Paper Key: Un hack con Latch para imprimir...
Cada seis meses tiene lugar el Equinox en ElevenPaths, y cada vez que tenemos este hackathon interno de 24 horas de duración, los proyectos son mejores. Muchas veces los proyectos se quedan...
View ArticleSANS Internet Storm Center, InfoCON: green: Spam Delivered via .ICS Files,...
Yesterday, I received a few interesting emails in myhoneypot. I set up catch-all email addresses for domains that are well known by spammers. Im capturing emails and extracting MIME attachments for...
View ArticleClik here to view.
ArsTechnica: Security Content: Flaw in Intel chips could make malware attacks...
EnlargeResearchers have devised a technique that bypasses a key security protection built into just about every operating system. If left unfixed, this could make malware attacks much more potent.ASLR,...
View ArticleClik here to view.
ArsTechnica: Security Content: LinkedIn says hacking suspect is tied to...
Enlarge (credit: Klaus with K)An alleged Russian hacker arrested in the Czech Republic following an FBI-coordinated tip-off is suspected of taking part in a 2012 breach of LinkedIn that resulted in the...
View ArticleClik here to view.
/dev/random: Hack.lu 2016 Wrap-Up Day #2
I’m just back from the second day of hack.lu. The day started early with Patrice Auffret about Metabrik! Patrice is a Perl addict and developed lot of CPAN modules like Net::Packet or Net:Frame. That’s...
View ArticleClik here to view.
/dev/random: [SANS ISC Diary] Spam Delivered via .ICS Files
I published the following diary on isc.sans.org: “Spam Delivered via .ICS Files“.Yesterday, I received a few interesting emails in my honeypot. I set up catch-all email addresses for domains that are...
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Thursday,...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleSANS Internet Storm Center, InfoCON: green: Malspam delivers NanoCore RAT,...
IntroductionNanoCore is a Remote Access Tool (RAT) thats currently available for a $25 license [1]. However, like many other RATs, NanoCore has been used by criminal groups to take over Windows...
View ArticleClik here to view.
Un informático en el lado del mal: ¿Quieres saber cómo piensa Facebook que...
Hoy en día estamos ante una era en la que la sociedad y el ser humano viven en una constante automatización. La tecnología avanza rápido y nos encontramos en un instante en el que las máquinas pueden...
View Article
