4li3n’s after midnight useless news and links – 2010.12.31 (Texas Hold’em edition)

After a crazy Texas Hold’em night here comes the accompanying edition! Last one for 2010!

[DISCLOSURE] SQL-injection in people.joomla.org -> http://goo.gl/c1YaW
[INFO] Kernel Buffer Overflow in NDProxy.sys (MS10-099) -> http://goo.gl/SkBqz
[POST] Mitigating Attacks on the User of the Web Browser -> http://goo.gl/PdRnP
[POST] Mitigating Attacks on the Web Browser and Add-Ons -> http://goo.gl/iWJJ0
[NEWS] Cambridge university refuses to censor student’s thesis on chip-and-PIN vulnerabilities -> http://goo.gl/0Fk5c
[VM] VirtualBSD 8.1: The simplest way to experience a desktop ready FreeBSD -> http://goo.gl/qZ01m
[POST] Putting the Record Straight on the Lamo-Manning Chat Logs -> http://goo.gl/uWCE2
[POST] A Study of HTTPOnly and Secure Cookie Flags for the Top 1000 Websites -> http://goo.gl/cf5eN
[INFO] Information Security Cheat Sheets and Checklists -> http://goo.gl/frMNz
[ONLINE] AutoDiff: Automated Binary Differential Analysis -> http://goo.gl/7gk5C
[27C3] Wideband GSM Sniffing -> http://goo.gl/2BNmo
[INFO] Syscall Hijacking: Simple Rootkit (kernel 2.6.x) -> http://goo.gl/EsLgQ
[DISTRO] Tor-ramdisk i686 UClibc-based Linux Distribution x86 20101227 -> http://goo.gl/SnZak
[SCRIPT] Nikto trunk: now has full regex support in test matching (ZIP) -> http://goo.gl/8R3Yi
[VIDEO] DOJOCON 2010 Videos -> http://goo.gl/MOLYT
[METASPLOIT] Feature #3429 – Cisco IOS SNMP file copy (TFTP) -> http://goo.gl/IXxsv
[UPDATE] WordPress 3.0.4 Important Security Update -> http://goo.gl/eJItt
[EXPLOIT] Targeted attacks against recently addressed Microsoft Office vulnerability (CVE-2010-3333/MS10-087) -> http://goo.gl/z4ilJ
[27C3] Chip and PIN is Broken -> http://goo.gl/fdkZx
[INFO] Awakenedlands.com Hacked/Username-Password Dump & Source Code -> http://goo.gl/zpHXC
[ONLINE] CrashIE8 -> http://goo.gl/gpQhg
[INFO] Joe Johnson explains how the Alureon MBR rootkit is able to work under 64-bit Win7 (PDF) -> http://goo.gl/1l6ZR
[TOOL] HelloOX2: Symbian Rooting Kit -> http://goo.gl/YSAc2
[NEWS] Android Trojan with botnet capabilities found in the wild -> http://goo.gl/cwexm
[ONLINE] Wavsep: webapp collection of vuln pages to assess scanners -> http://goo.gl/00CTK
[POST] BotTorrent? Using BitTorrent as a DDoS Tool -> http://goo.gl/Gfed7
[27C3] SMS of Death (posts & video) -> http://goo.gl/PH204 , http://goo.gl/BMdbQ , http://goo.gl/xwmPY , http://goo.gl/iNGRp
[EXPLOIT] Microsoft Word/RTF pFragments Stack/Buffer Overflow -> http://goo.gl/D8Yar
[27C3] Hackers obtain PS3 private cryptography key due to epic programming fail -> http://goo.gl/g8tqi , http://goo.gl/tkmOh , http://goo.gl/KaNiN
[27C3] High-speed high-security cryptography: encrypting and authenticating the whole Internet -> http://goo.gl/FR56S
[INFO] Bridge mode security bug in Fonera 2.0n -> http://goo.gl/3dMgC
[PAPER] An Army of Bots by Jason Suplita (PDF) -> http://goo.gl/v7ndN
[TOOL] NetS-X: e-learning environment for network security -> http://goo.gl/nQqEo
[ADVISORY] WordPress 3.0.4 Stored XSS -> http://goo.gl/pdwAV
[INFO] New Fast Flux Botnet for the Holidays: Could it be Storm Worm 3.0? -> http://goo.gl/M6YYV


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s