logo

Exploitation

Category: tools | Posted by Avatar Staff 289 days ago
Via: http://blog.metasploit.com | Tags: Black Hat USA Tactical Exploitation comments Discuss  
Valsmith and I took the stage at Black Hat yesterday to deliver a 150 minute presentation on what we call "Tactical Exploitation". The talk was aimed at penetration testers who find themselves limited in what they can exploit due to artificial constraints placed on their scope. The first half of the talk focused on lesser-known discovery and fingerprinting tools. Third-party services, such as DomainTools.com and the web interface to Paterva's Evolution product were discussed. The first half ended up with s read more »
addto Add this link to... report Bury 
Category: tools | Posted by Avatar Staff 289 days ago
Via: http://blog.metasploit.com | Tags: Metasploit Automated Exploitation comments Discuss  
A recurring theme in my presentations about Metasploit 3.0 is the need for exploit automation. As of tonight, we finally have enough code to give a quick demonstration :-)Metasploit 3 uses the ActiveRecord module (part of RoR) to provide an object-oriented interface to an arbitrary database service. Database support is enabled by installing RubyGems, ActiveRecord ("gem install activerecord"), and a database-specific driver ("gem install [ postgresql | sqlite3 | mysql | etc ]"). Once these components have b read more »
addto Add this link to... report Bury 
| Posted by Avatar Staff 286 days ago
Via: http://www.uninformed.org | Tags: activex active exploitation comments Discuss  
This paper provides a general introduction to the topic of understanding software vulnerabilities that affect ActiveX controls. A brief description of how ActiveX controls are exposed to Internet Explorer is given along with an analysis of three example ActiveX vulnerabilities that have been previously disclosed. read more »
addto Add this link to... report Bury 
| Posted by Avatar Staff 286 days ago
Via: http://www.uninformed.org | Tags: improving software security analysis using exploitation properties comments Discuss  
Reliable exploitation of security vulnerabilities has continued to become more difficult as formidable mitigations have been established and are now included by default with most modern operating systems. Future exploitation of software vulnerabilities will rely on either discovering ways to circumvent these mitigations or uncovering flaws that are not adequately protected. Since the majority of the mitigations that exist today lack universal bypass techniques, it has become more fruitful to take the latte read more »
addto Add this link to... report Bury 
| Posted by Avatar Staff 286 days ago
Via: http://www.uninformed.org | Tags: os x kernelmode exploitation in a weekend comments Discuss  
Apple's Mac OS X operating system is attracting more attention from users and security researchers alike. Despite this increased interest, there is still an apparent lack of detailed vulnerability development information for OS X. This paper will attempt to help bridge this gap by walking through the entire vulnerability development process. This process starts with vulnerability discovery and ultimately finished with a remote code execution. To help illustrate this process, a real vulnerability found read more »
addto Add this link to... report Bury 
| Posted by Avatar Staff 286 days ago
Via: http://www.uninformed.org | Tags: preventing the exploitation of seh overwrites comments Discuss  
This paper proposes a technique that can be used to prevent the exploitation of SEH overwrites on 32-bit Windows applications without requiring any recompilation. read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 279 days ago
Via: http://go.theregister.com | Tags: web browsers line exploitation comments Discuss  
It's war out there and the good guys ain't winningCybercriminals are stepping up their efforts to exploit vulnerabilities in web browsers to spread malware using drive-by download techniques.… read more »
addto Add this link to... report Bury 
Category: blogs | Posted by Avatar Staff 274 days ago
Via: http://www.symantec.com | Tags: exploitation facebook imageuploader vulnerability comments Discuss  
As seems to be the trend lately, anytime a vulnerability is disclosed in an ActiveX control, it is only a short time before it is bundled into the Web attack toolkits. For this Facebook vulnerability, it was less than a day from the vulnerability being disclosed on February 12th to it first showing up on our honeypots on February 13th. So far, the exploits that have shown up are encoded versions of the public exploit, bundled with an exploit for Yahoo Jukebox and several other routinely exploitable vulner read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 273 days ago
Via: http://lists.jammed.com | Tags: isn book review hacking art exploitation nd edition comments Discuss  
http://books.slashdot.org/books/08/02/20/1439224.shtmlAuthor: Jon EricksonPages: 472Publisher: No Starch PressRating: 9Reviewer: David MartinjakISBN: 1-59327-144-1Summary An informative, and authoritative source on hacking and exploit techniques."Hacking: The Art of Exploitation is authored by Jon Erickson and published by No Starch Press. It is the anticipated second edition of Erickson's earlier publication of the same title. I can't think of a way to s read more »
addto Add this link to... report Bury 


Copyright 2005-2008 Best of Security