- Latest
- Trending
Specially crafted “socket_id” parameter could get us a valid auth for any private Pusher channel of your application and even...
For some time I’ve been seeing the Angler exploit kit pop up and infect clients without through malvertising campaigns without...
I’ve posted about open X11 servers before, including keylogging and grabbing an image of the desktop. Today I just want...
Edit 27-5-2015: I added a download link to the memory dump of the machine I used in this article for...
Within XML, there is a way to inject an external file. For a long time, automatic XML parsers (using libxml2...
Yesterday, Microsoft released the MS15-034 patch for the CVE-2015-1635 vulnerability. Today, enough people have reverse engineered it to figure out this...
Another tool that is part of the Powersploit toolkit mentioned earlier is Get-GPPPassword. One way to add a user (or...
The US Federal Bureau of Investigation (FBI) just released a public service announcement (PSA) to the public about a large...
Security Risk: Dangerous Exploitation level: Very Easy/Remote DREAD Score: 8/10 Vulnerability: Persistent XSS Patched Version: 1.4.4 During a routine audit...
Sometimes during testing, you need to send custom created packets. This is just a short post for two tools that...
We bring you the best Premium WordPress Themes that perfect for news, magazine, personal blog, etc. Check our landing page for details.
