Oracle Exploits
Location with some good explanations and exploit code for various Oracle versions. Also some links to other locations with exploit code.
- VMTN Virtual Appliances Directory
The vmware virtual appliances directory looks very very cool to me. It's a collection of pre-installed pre-configured virtual machines setup for specific purposes... need a media-wiki server... no problem... need a network security scannng server ... no problem...
just download and go...
And if you combine it with the release of vmware server FOR FREE then you really have something cool...
One thing I did notice is that, unsurprisingly, all the VM's I looked at are based on Linux, and I expect this kind of thing will really drive the takeup of linux. If you think about it.. you're asked to demo a say e-mail security server to handle your burgeoning Virus/SPAM problems...
you could pay for a windows server license, buy it, configure it, get some software to do the filtering, install it, configure it, etc etc
or you could download a pre-configured Linux VM using Pre-configured Open source software ...
If you were a small overworked IT department... which would you choose?
Security Fix - Brian Krebs on Computer and Internet Security - (washingtonpost.com)
Post about a MITM attack on Citibanks two-factor authentication system. The relaying of error messages from Citi by the attacker is a nice touch as it makes it seem a lot more legitimate...
Well not really a surprise that the attackers have worked this out. Of course it's slightly easier to detect/shut down as they have to do the attack in real-time as opposed to gathering the credentials and then using them at their leisure, which can happen with standard phishing.
Still, goes to show that there's more work neeeded to be done on this.
A Chronology of Data Breaches Since the ChoicePoint Incident
this list of all the data breaches since 2005 that the privacy rights clearing house have assembled looks quite handy.
Penetration Test
I'm a bit of a fan of Mind maps so seeing this information in that format works pretty well for me...
Australian IT - Bungle exposes bank files (Natalie O'Brien and Michael McKinnon, JUNE 26, 2006)
Another story in a long line of articles about sensitive data being lost by organisations who should know better. This time it's the turn of the Australian High-Tec crime unit.
One thing I've noticed about these stories is that the organisations involved almost always blame the employee involved for "breaking the rules"
I think this is pretty disingenous(sp?) really. The organisation needs to provide methods/procedures/tools for it's staff to move data around in a secure fashion in the manners in which they need to before they can blame individual staff members for data losses and I don't think that it's likely that most companies will do that.
So that means if you need people to take data with them from one country to another, you have to provide file encryption software (or better still device encryption software). If data keys are the best way of doing this (and they usually are) then companies should be providing encrypted data keys to staff.
Otherwise what happens is that people break rules because they have no way of getting their job done whilst staying within them.
Now I may be off base and maybe all these companies have easy-to-use pervasive support for data encryption and the indiviudals involved were all just willfully negligent people who were willing to risk their jobs by deliberately avoiding all the controls their organisations had put in place.......
Top 100 Network Security Tools
Updated list of Pen testing tools from insecure.org. Interesting to see that web app. tools are starting to make an appearance into the list (albeit mostly in the lower orders)
iKu Systemhaus AG - Sicherheit
Advisory about a new(?) character encoding issue. The problem for Internet Explorer appears to be that they handle the encoding correctly but that A-V /Filtering systems may not, essentially obfuscating attacks on the browser....
Ajax security basics
Interesting article on Security Focus looking at the security implications of AJAX technologies and also the implications for Penetration testing AJAX enabled applications.
In terms of the security risks of AJAX it will be interesting to see how well frameworks like Atlas and RoR take care of this for the developer. One thing I noticed in testing .NET v2 applications was the in-built input validation really cuts down on XSS and SQL Injection vulnerabilities, instead of the "old days" with classic ASP where I could virtually guarantee some kind of input validation problem somewhere...
SQL Power Injector Product Information
A new release of SQL Power Injector. Not a tool I've played with much yet, but could be cool to try it out in conjunction with the hacme stuff from foundstone...
