Vulnerability Info http://www.securityfocus.com Security Focus http://www.osvdb.org OSVDB http://nvd.nist.gov Nist NVD http://cve.mitre.org Mitre http://ciac.llnl.gov CIAC http://www.cert.org CERT http://iase.disa.mil ISAE Exploit Info http://www.milw0rm.com Milw0rm http://www.packetstormsecurity.nl Packet Storm Active Research Groups http://www.shmoo.com The Shmoo Group http://www.thc.org THC http://www.phenoelit.de Phenoelit Commercial Groups http://www.ngssoftware.com NGS http://www.immunitysec.com Immunitysec http://www.secunia.com Secunia http://www.securiteam.com Securiteam http://xforce.iss.net Xforce http://www.idefense.com Idefense http://www.eeye.com Eeye http://www.2600.com 2600 Security Organizations http://www.owasp.org OWASP http://www.isc2.org ISC2 http://www.isecom.org ISECOM http://www.sans.org SANS http://www.infragard.com Infragard Methodologies http://www.osissg.org OISSG http://www.isecom.org/ ISECOM http://www.osstmm.org OSSTMM Free "Auditing" Tools http://www.nessus.org Nessus http://www.insecure.org Nmap http://www.cqure.net Cqure Tools http://www.sqlsecurity.com/DesktopDefault.aspx?tabid=26 MS SQL Utilities http://www.cirt.net Nikto http://www.sysinternals.com Sysinternals Tools http://www.bindview.com/services/razor/utilities/ Bindview Tools http://thc.org/releases.php THC Tools http://www.metasploit.org Metasploit http://www.parosproxy.org/ Paros Proxy http://www.portswigger.net/proxy/ Burp Proxy http://www.securityforest.com Exploit Tree http://www.tank.net Spork http://ettercap.sourceforge.net/ Ettercap http://www.cirt.net/code/nikto.shtml nikto http://www.sensepost.com/research/wikto/ wikto http://www.nstalker.com/eng/products/nstealth/ nStealth http://reedarvin.thearvins.com/tools/PWDumpX14.zip pwdumpx (Obtain MS Hashes) http://www.foofus.net/fizzgig/fgdump/ fgdump (Obtain MS Hashes) http://www.off-by-one.net/misc/cachedump.html Cachedump (Obtain MS Hashes) http://studenti.unina.it/~ncuomo/syskey/ samdump2 http://www.ethereal.com/ Ethereal http://www.immunitysec.com/resources-freesoftware.shtml Free Immunitysec Tools http://www.foundstone.com/resources/freetools.htm Free Foundstone Tools http://www.eeye.com/html/Research/Tools/index.html Free Eeye Tools http://sectools.org/ Sectools.org Free Virtualization Tools http://www.vmware.com/products/server/ VMWare Server http://bochs.sourceforge.net/ Bochs http://pearpc.sourceforge.net/ PearPC http://www.microsoft.com/windows/virtualpc/default.mspx MS Virtual PC Free Reverse Engineering/Debugging Tools http://directory.fsf.org/GNU/binutils.html binutils http://www.gnu.org/software/gdb/ GDB http://directory.fsf.org/GNU/GUSS.html Guss http://www.gnu.org/software/ddd/ DDD http://www.ollydbg.de/ Ollydbg http://labs.idefense.com/labs-software.php iDefense Labs Tools http://oss.coresecurity.com/projects/uhooker.htm CORE Tools Defaced Websites http://www.zone-h.org/component/option,com_attacks/Itemid,43/ Zone H Default Password Lists http://www.cirt.net/cgi-bin/passwd.pl Cirt's Passwords http://www.phenoelit.de/dpl/dpl.html Phenoelit's Passwords http://www.petefinnigan.com/default/default_password_list.htm Pete Finnigan's Default Oracle Passwords http://www.governmentsecurity.org/articles/DefaultLoginsandPasswordsforNetworkedDevices.php GovernmentSecurity.org http://defaultpassword.com/ defaultpassword.com http://www.cyxla.com/passwords/passwords.html Cyxla's Password Database http://www.e-tech.ca/017-Default_Passwords_ad.asp e-tech Default Passwords http://www.uktsupport.co.uk/reference/biosp.htm Bios Passwords Technical Conferences http://www.defcon.org DefCon http://www.blackhat.com Blackhat http://www.cansecwest.com CanSecWest http://toorcon.com Toorcon http://www.shmoocon.org/ ShmooCon http://www.hopenumbersix.net/ H.O.P.E. http://www.ccc.de/ Chaos Computer Club http://conference.hackinthebox.org/ Hack in the Box CD Distros http://www.remote-exploit.org/index.php/Auditor_main Auditor http://www.knoppix.org Knoppix http://www.whoppix.net/index.php/Tools Whoppix / Whax http://www.remote-exploit.org/index.php/Main_Page BackTrack Wireless Tools http://www.netstumbler.com Netstumbler http://prismstumbler.sourceforge.net Prismstubler http://www.kismetwireless.net Kismet http://kismac.de/ Kismac (For Macs) http://airsnort.shmoo.com Airsnort http://wepcrack.sourceforge.net WEPCrack http://www.aircrack-ng.org/doku.php Aircrack-ng http://csrc.nist.gov/publications/nistpubs/800-48/NIST_SP-48.pdf Wireless SP http://www.blackalchemy.to/project/fakeap/ FakeAP http://www.802.11mercenary.net/lorcon/ Lorcon http://theta44.org/karma/index.html Karma Checklists / Hardening Guides http://csrc.nist.gov NIST CSRC http://nvd.nist.gov/cvss.cfm?version=2 NIST NVD Common Vulnerability Scoring System (Risk Rating Standardization) http://checklists.nist.gov NIST Checklists http://www.cisecurity.org Center for Internet Security http://www.nsa.gov/snac/index.cfm?MenuID=scg10.3.1 NSA Security Configuration Guides http://otn.oracle.com/deploy/security/oracle9i/pdf/9i_checklist.pdf Oracle's 9i Checklist http://www.petefinnigan.com/orasec.htm PF's Checklists http://www.microsoft.com/technet/archive/security/chklist/default.mspx Microsoft Checklists http://www.openna.com/pdfs/Securing-Optimizing-Linux-The-Ultimate-Solution-v2.0.pdf Securing and Optimizing Linux OS and Service Hardening Tools http://www.sun.com/software/security/jass/ Solaris - JASS http://www.sun.com/service/serviceplans/software/patchmanagement/patchmanager.html Solaris - Patch Manager http://www.bastille-unix.org/ Bastille Unix http://www.microsoft.com/technet/security/tools/default.mspx#EZE Microsoft Security Tools Defunct Research Groups ? http://www.attrition.org Attrition http://www.w00w00.org w00w00 http://adm.freelsd.net/ADM/ ADM http://en.wikipedia.org/wiki/TESO TESO http://en.wikipedia.org/wiki/Gobbles Gobbles Professional Security Programs https://www.pcisecuritystandards.org/ Payment Card Industry http://www.isc2.org ISC2 http://www.eccouncil.org/ EC Council Password Crackers/Auditors http://www.insecure.org/stf/lc5-setup.exe LC5 http://www.insecure.org/stf/lc5-crack.zip LC5 Keygen http://www.oxid.it/cain.html Cain and Abel http://www.openwall.com/john/ John the Ripper http://www.banquise.net/misc/patch-john.html John Bigpatch (For more hash types) http://en.wikipedia.org/wiki/RainbowCrack RainbowCrack http://rainbowtables.shmoo.com/ Rainbow Tables Open Source Intelligence http://johnny.ihackstuff.com/ Google Hacking http://news.netcraft.com/ NetCraft http://www.archive.org/ Way Back Machine http://www.domaintools.com DomainTools http://whois.webhosting.info Web Hosting dot info Compliance Resources http://www.hhs.gov/ocr/hipaa/ HIPAA http://www.aicpa.org/info/sarbanes_oxley_summary.htm SOX http://banking.senate.gov/conf/ FMA (GLBA) http://csrc.nist.gov/sec-cert/ FISMA http://www.iso.org/iso/en/prods-services/popstds/informationsecurity.html ISO 17799 http://csrc.nist.gov/fasp/ NIST FASP Resources http://usa.visa.com/business/accepting_visa/ops_risk_management/cisp.html Visa PCI http://www.sans.org/resources/policies/ SANS Security Policies Email Lists http://www.securityfocus.com/archive Security Focus E-mail Lists http://lists.grok.org.uk/mailman/listinfo/full-disclosure Full Disclosure (Unmoderated) http://www.immunitysec.com/mailman/listinfo/dailydave Daily Dave http://www.seclists.org Security List Archives Defense / IDS http://www.snort.org Snort http://www.bleedingsnort.com "Bleeding Edge" Snort http://acidlab.sourceforge.net/ ACID Snort Interface Load Testing / Denial of Service Info http://staff.washington.edu/dittrich/misc/ddos/ DDOS Info IDS Testing/Tuning Tools ftp://ftp.st.ryuAkoku.ac.jp/pub/security/tool/snot/ Snot http://securityfocus.com/data/tools/stick.tgz Stick Firewall Ruleset Testing Tools http://www.packetfactory.net/projects/firewalk/ Firewalk http://dev.inversepath.com/trac/ftester FTester Welcome to the ThreatPerspective Security Information Center. This is a portal site created by ThreatPerspective to enable our clients and other interested parties to learn more about Information Security. http://seclists.org/#bugtraq The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently! Posted by filip.palian_at_pjwstk.edu.pl on Jul 2<p> operators Orange and Polish Telecom to provide... http://seclists.org/bugtraq/2009/Jul/0016.htmlhttp://seclists.org/bugtraq/2009/Jul/0016.html Thu, 2 Jul 2009 14:49:08 -0600 Posted by Alex Legler on Jul 02<p> <br />... http://seclists.org/bugtraq/2009/Jul/0015.htmlhttp://seclists.org/bugtraq/2009/Jul/0015.html Thu, 02 Jul 2009 21:38:32 +0200 Posted by Alex Legler on Jul 02<p> <br />... http://seclists.org/bugtraq/2009/Jul/0014.htmlhttp://seclists.org/bugtraq/2009/Jul/0014.html Thu, 02 Jul 2009 21:36:57 +0200 Posted by Marc Deslauriers on Jul 02<p> <p>Ubuntu... http://seclists.org/bugtraq/2009/Jul/0013.htmlhttp://seclists.org/bugtraq/2009/Jul/0013.html Thu, 02 Jul 2009 14:29:06 -0400 Posted by Marc Deslauriers on Jul 02<p> <p>A security issue affects the following Ubuntu... http://seclists.org/bugtraq/2009/Jul/0012.htmlhttp://seclists.org/bugtraq/2009/Jul/0012.html Thu, 02 Jul 2009 14:27:30 -0400 Posted by ISecAuditors Security Advisories on Jul 02<p> <p>I.... http://seclists.org/bugtraq/2009/Jul/0011.htmlhttp://seclists.org/bugtraq/2009/Jul/0011.html Thu, 02 Jul 2009 17:13:50 +0200 Posted by Andrea Barisani on Jul 2<p> <p>The vulnerability is triggered by PNG image... http://seclists.org/bugtraq/2009/Jul/0010.htmlhttp://seclists.org/bugtraq/2009/Jul/0010.html Thu, 2 Jul 2009 14:01:24 +0100 Posted by linuxrootkit2008_at_gmail.com on Jul 2<p> eAccelerator is a free open-source PHP accelerator, optimizer, and dynamic content cache. It increases the performance of PHP scripts by caching them in their compiled state, so that... http://seclists.org/bugtraq/2009/Jul/0009.htmlhttp://seclists.org/bugtraq/2009/Jul/0009.html 2 Jul 2009 03:19:03 -0000 Posted by c3rb3r_at_videotron.ca on Jul 1<p> <p><p>... http://seclists.org/bugtraq/2009/Jul/0008.htmlhttp://seclists.org/bugtraq/2009/Jul/0008.html Wed, 1 Jul 2009 14:44:41 -0600 Posted by security-alert_at_hp.com on Jul 01<p> <p>NOTICE: The information in this Security Bulletin should be acted upon as soon as... http://seclists.org/bugtraq/2009/Jul/0007.htmlhttp://seclists.org/bugtraq/2009/Jul/0007.html Wed, 01 Jul 2009 10:59:01 -0700 Posted by security-alert_at_hp.com on Jul 01<p> Last... http://seclists.org/bugtraq/2009/Jul/0006.htmlhttp://seclists.org/bugtraq/2009/Jul/0006.html Wed, 01 Jul 2009 10:56:41 -0700 Posted by Vladimir 3APA3A Dubrovin on Jul 1<p> <p>Cb&gt; Hi... http://seclists.org/bugtraq/2009/Jul/0005.htmlhttp://seclists.org/bugtraq/2009/Jul/0005.html Wed, 1 Jul 2009 21:08:30 +0400 Posted by VMware Security Team on Jul 01<p> Synopsis: ESX Service Console update... http://seclists.org/bugtraq/2009/Jul/0004.htmlhttp://seclists.org/bugtraq/2009/Jul/0004.html Wed, 01 Jul 2009 00:10:21 -0700 Posted by Kirchner Michael on Jul 1<p> Lukas... http://seclists.org/bugtraq/2009/Jul/0003.htmlhttp://seclists.org/bugtraq/2009/Jul/0003.html Wed, 1 Jul 2009 08:26:35 +0200 Posted by Kirchner Michael on Jul 1<p> Impact: Remote... http://seclists.org/bugtraq/2009/Jul/0002.htmlhttp://seclists.org/bugtraq/2009/Jul/0002.html Wed, 1 Jul 2009 08:26:21 +0200 http://seclists.org/#dailydave This technical discussion list covers vulnerability research, exploit development, and security events/gossip. It was started by ImmunitySec founder Dave Aitel and many security luminaries particpate. Many posts simply advertise Immunity products, but you can't really fault Dave for being self-promotional on a list named DailyDave. Posted by Dave Aitel on Jun 30<p> pointed out that he should probably bind to localhost instead of 0.0.0.0,... http://seclists.org/dailydave/2009/q2/0145.htmlhttp://seclists.org/dailydave/2009/q2/0145.html Tue, 30 Jun 2009 11:28:00 -0400 Posted by Chris Eagle on Jun 29<p> &gt; Windows 7 RC today and it pooped. I verified that it worked on... http://seclists.org/dailydave/2009/q2/0144.htmlhttp://seclists.org/dailydave/2009/q2/0144.html Mon, 29 Jun 2009 00:42:09 -0700 Posted by Dave Aitel on Jun 29<p> run the infrastructure for Microsoft and Yahoo. You can't... http://seclists.org/dailydave/2009/q2/0143.htmlhttp://seclists.org/dailydave/2009/q2/0143.html Mon, 29 Jun 2009 03:11:19 -0400 Posted by Christien Rioux on Jun 28<p> <br />... http://seclists.org/dailydave/2009/q2/0142.htmlhttp://seclists.org/dailydave/2009/q2/0142.html Sun, 28 Jun 2009 20:32:12 -0400 Posted by Shakacon on Jun 27<p> <p>This message contains confidential information... http://seclists.org/dailydave/2009/q2/0141.htmlhttp://seclists.org/dailydave/2009/q2/0141.html Sat, 27 Jun 2009 14:07:08 -1000 Posted by val smith on Jun 22<p> cg, egypt, I)ruid, myself and several others will be... http://seclists.org/dailydave/2009/q2/0140.htmlhttp://seclists.org/dailydave/2009/q2/0140.html Mon, 22 Jun 2009 22:34:15 -0600 Posted by Jared DeMott on Jun 26<p> <br />... http://seclists.org/dailydave/2009/q2/0139.htmlhttp://seclists.org/dailydave/2009/q2/0139.html Fri, 26 Jun 2009 14:16:43 -0400 Posted by RQDQ on Jun 16<p> -... http://seclists.org/dailydave/2009/q2/0138.htmlhttp://seclists.org/dailydave/2009/q2/0138.html Tue, 16 Jun 2009 20:22:20 +0200 Posted by Dave Aitel on Jun 16<p> <p>... http://seclists.org/dailydave/2009/q2/0137.htmlhttp://seclists.org/dailydave/2009/q2/0137.html Tue, 16 Jun 2009 10:19:18 -0400 Posted by Jared DeMott on Jun 15<p> you some insight into the types of exceptions you're hoping for.... http://seclists.org/dailydave/2009/q2/0136.htmlhttp://seclists.org/dailydave/2009/q2/0136.html Mon, 15 Jun 2009 16:36:41 -0400 Posted by Nate Lawson on Jun 12<p> &gt; product failed to... http://seclists.org/dailydave/2009/q2/0135.htmlhttp://seclists.org/dailydave/2009/q2/0135.html Fri, 12 Jun 2009 14:32:09 -0700 Posted by Nate Lawson on Jun 12<p> &gt; abort. What's wrong with the above? (assuming we get our... http://seclists.org/dailydave/2009/q2/0134.htmlhttp://seclists.org/dailydave/2009/q2/0134.html Fri, 12 Jun 2009 14:29:04 -0700 Posted by Jaime Lloret Mauri on Jun 11<p> <p>... http://seclists.org/dailydave/2009/q2/0133.htmlhttp://seclists.org/dailydave/2009/q2/0133.html Thu, 11 Jun 2009 23:59:15 +0200 Posted by Jaime Lloret Mauri on Jun 11<p> <p>... http://seclists.org/dailydave/2009/q2/0132.htmlhttp://seclists.org/dailydave/2009/q2/0132.html Thu, 11 Jun 2009 23:53:40 +0200 Posted by etd on Jun 12<p> <br />... http://seclists.org/dailydave/2009/q2/0131.htmlhttp://seclists.org/dailydave/2009/q2/0131.html Fri, 12 Jun 2009 00:28:26 +0100 http://seclists.org/#firewall-wizards Tips and tricks for firewall administrators Posted by plopz on Jul 1<p> using manual data entry into... http://seclists.org/firewall-wizards/2009/Jul/0002.htmlhttp://seclists.org/firewall-wizards/2009/Jul/0002.html Wed, 1 Jul 2009 08:23:07 -0700 (PDT) Posted by Marcin Antkiewicz on Jul 1<p> &gt; segmented and structured in such a way that... http://seclists.org/firewall-wizards/2009/Jul/0001.htmlhttp://seclists.org/firewall-wizards/2009/Jul/0001.html Wed, 1 Jul 2009 00:54:58 -0500 Posted by K K on Jun 30<p> ... http://seclists.org/firewall-wizards/2009/Jun/0034.htmlhttp://seclists.org/firewall-wizards/2009/Jun/0034.html Tue, 30 Jun 2009 21:40:14 -0500 Posted by plopz on Jun 30<p> segmented and structured in such a way that adding a... http://seclists.org/firewall-wizards/2009/Jun/0033.htmlhttp://seclists.org/firewall-wizards/2009/Jun/0033.html Tue, 30 Jun 2009 09:52:56 -0700 (PDT) Posted by pkc_mls on Jun 26<p> &gt; Frustratingly, the Juniper Host Checker comes with a firewall but you... http://seclists.org/firewall-wizards/2009/Jun/0032.htmlhttp://seclists.org/firewall-wizards/2009/Jun/0032.html Fri, 26 Jun 2009 08:38:24 +0200 Posted by Paul Melson on Jun 24<p> &gt; with 2 peer address on the main end... http://seclists.org/firewall-wizards/2009/Jun/0031.htmlhttp://seclists.org/firewall-wizards/2009/Jun/0031.html Wed, 24 Jun 2009 07:47:36 -0400 Posted by Farrukh Haroon on Jun 24<p> On Tue, Jun... http://seclists.org/firewall-wizards/2009/Jun/0030.htmlhttp://seclists.org/firewall-wizards/2009/Jun/0030.html Wed, 24 Jun 2009 09:24:34 +0300 Posted by Paul Hutchings on Jun 23<p> need admin rights simply to enable/disable... http://seclists.org/firewall-wizards/2009/Jun/0029.htmlhttp://seclists.org/firewall-wizards/2009/Jun/0029.html Tue, 23 Jun 2009 17:54:16 +0100 Posted by Halchishak John on Jun 23<p> clients. I can't... http://seclists.org/firewall-wizards/2009/Jun/0028.htmlhttp://seclists.org/firewall-wizards/2009/Jun/0028.html Tue, 23 Jun 2009 09:08:48 -0700 Posted by Chris Hughes on Jun 23<p> connection resets and disaster seemed imminent during rollout. Juniper... http://seclists.org/firewall-wizards/2009/Jun/0027.htmlhttp://seclists.org/firewall-wizards/2009/Jun/0027.html Tue, 23 Jun 2009 06:54:13 -0400 Posted by Todd Simons on Jun 22<p> To: Firewall Wizards Security... http://seclists.org/firewall-wizards/2009/Jun/0026.htmlhttp://seclists.org/firewall-wizards/2009/Jun/0026.html Mon, 22 Jun 2009 20:52:44 -0400 Posted by Victor Williams on Jun 22<p> <p>I leave ours on all the time. We don't allow workstations/laptops to share files or printers...all that is handled on our servers. So, it works... http://seclists.org/firewall-wizards/2009/Jun/0025.htmlhttp://seclists.org/firewall-wizards/2009/Jun/0025.html Mon, 22 Jun 2009 13:16:50 -0500 Posted by rjdriscoll_at_comcast.net on Jun 22<p> From:... http://seclists.org/firewall-wizards/2009/Jun/0024.htmlhttp://seclists.org/firewall-wizards/2009/Jun/0024.html Mon, 22 Jun 2009 19:42:19 +0000 (UTC) Posted by Paul Hutchings on Jun 22<p> <p>What seems to... http://seclists.org/firewall-wizards/2009/Jun/0023.htmlhttp://seclists.org/firewall-wizards/2009/Jun/0023.html Mon, 22 Jun 2009 17:19:18 +0100 Posted by Victor Williams on Jun 22<p> <p>All of our VPN clients work with the Microsoft XP firewall turned on without issue. We use the Cisco IPSec client as... http://seclists.org/firewall-wizards/2009/Jun/0022.htmlhttp://seclists.org/firewall-wizards/2009/Jun/0022.html Mon, 22 Jun 2009 11:01:00 -0500 http://seclists.org/#focus-ids Technical discussion about Intrusion Detection Systems. You can also read the archives of a previous IDS list Posted by r00t on Jul 1<p> purposely... http://seclists.org/focus-ids/2009/Jul/0003.htmlhttp://seclists.org/focus-ids/2009/Jul/0003.html Wed, 1 Jul 2009 18:45:33 -1000 Posted by Albert Gonzalez on Jul 1<p> <br />... http://seclists.org/focus-ids/2009/Jul/0002.htmlhttp://seclists.org/focus-ids/2009/Jul/0002.html Wed, 1 Jul 2009 19:49:47 -0400 Posted by Tomas Olsson on Jul 01<p> <p><p>... http://seclists.org/focus-ids/2009/Jul/0001.htmlhttp://seclists.org/focus-ids/2009/Jul/0001.html Wed, 01 Jul 2009 10:18:53 +0200 Posted by Tomas Olsson on Jun 30<p> and from hosts (e.g. from NIDS,... http://seclists.org/focus-ids/2009/Jun/0047.htmlhttp://seclists.org/focus-ids/2009/Jun/0047.html Tue, 30 Jun 2009 15:23:08 +0200 Posted by Stefano Zanero on Jun 30<p> readable, but rather human readable. So you would need some sort... http://seclists.org/focus-ids/2009/Jun/0046.htmlhttp://seclists.org/focus-ids/2009/Jun/0046.html Tue, 30 Jun 2009 15:30:29 +0200 Posted by Martin Roesch on Jun 28<p> &gt;&gt;&gt; on this topic since... http://seclists.org/focus-ids/2009/Jun/0045.htmlhttp://seclists.org/focus-ids/2009/Jun/0045.html Sun, 28 Jun 2009 21:46:28 -0400 Posted by Gary Halleen on Jun 26<p> <p>&gt;... http://seclists.org/focus-ids/2009/Jun/0044.htmlhttp://seclists.org/focus-ids/2009/Jun/0044.html Fri, 26 Jun 2009 14:18:53 -0700 Posted by mhellman_at_taxandfinance.com on Jun 26<p> &gt;&gt; Well, I guess I have to pipe in also, then. Cisco is doing the... http://seclists.org/focus-ids/2009/Jun/0043.htmlhttp://seclists.org/focus-ids/2009/Jun/0043.html Fri, 26 Jun 2009 17:00:03 -0500 (CDT) Posted by Stuart Staniford on Jun 26<p> &gt;&gt;&gt; intrusion or... http://seclists.org/focus-ids/2009/Jun/0042.htmlhttp://seclists.org/focus-ids/2009/Jun/0042.html Fri, 26 Jun 2009 12:30:45 -0700 Posted by Stefano Zanero on Jun 26<p> &gt; my... http://seclists.org/focus-ids/2009/Jun/0041.htmlhttp://seclists.org/focus-ids/2009/Jun/0041.html Fri, 26 Jun 2009 22:14:07 +0200 Posted by Gary Halleen on Jun 25<p> &gt; That's a good definition, but not really complete.... http://seclists.org/focus-ids/2009/Jun/0040.htmlhttp://seclists.org/focus-ids/2009/Jun/0040.html Thu, 25 Jun 2009 17:18:00 -0700 Posted by Gary Halleen on Jun 25<p> <p>You... http://seclists.org/focus-ids/2009/Jun/0039.htmlhttp://seclists.org/focus-ids/2009/Jun/0039.html Thu, 25 Jun 2009 17:26:07 -0700 Posted by Martin Roesch on Jun 26<p> ... http://seclists.org/focus-ids/2009/Jun/0038.htmlhttp://seclists.org/focus-ids/2009/Jun/0038.html Fri, 26 Jun 2009 10:17:23 -0400 Posted by Gary Halleen on Jun 25<p> <p>&gt; Not for nothing but #2 is exactly what... http://seclists.org/focus-ids/2009/Jun/0037.htmlhttp://seclists.org/focus-ids/2009/Jun/0037.html Thu, 25 Jun 2009 17:28:06 -0700 Posted by Richard Bejtlich on Jun 25<p> ... http://seclists.org/focus-ids/2009/Jun/0036.htmlhttp://seclists.org/focus-ids/2009/Jun/0036.html Thu, 25 Jun 2009 17:12:31 -0400 http://seclists.org/#fulldisclosure An unmoderated high-traffic forum for disclosure of security information. Fresh vulnerabilities sometimes hit this list many hours before they pass through the Bugtraq moderation queue. The relaxed atmosphere of this quirky list provides some comic relief and certain industry gossip. Unfortunately 80% of the posts are worthless drivel, so finding the gems takes patience. Posted by Alex Legler on Jul 02<p> <br />... http://seclists.org/fulldisclosure/2009/Jul/0015.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0015.html Thu, 02 Jul 2009 21:36:57 +0200 Posted by Alex Legler on Jul 02<p> <br />... http://seclists.org/fulldisclosure/2009/Jul/0014.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0014.html Thu, 02 Jul 2009 21:38:32 +0200 Posted by Marc Deslauriers on Jul 02<p> <p>Ubuntu... http://seclists.org/fulldisclosure/2009/Jul/0013.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0013.html Thu, 02 Jul 2009 14:29:06 -0400 Posted by Marc Deslauriers on Jul 02<p> <p>A security issue affects the following Ubuntu... http://seclists.org/fulldisclosure/2009/Jul/0012.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0012.html Thu, 02 Jul 2009 14:27:30 -0400 Posted by Shaked Vax on Jul 2<p> the management... http://seclists.org/fulldisclosure/2009/Jul/0011.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0011.html Thu, 2 Jul 2009 14:23:16 +0300 Posted by ISecAuditors Security Advisories on Jul 02<p> <p>I.... http://seclists.org/fulldisclosure/2009/Jul/0010.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0010.html Thu, 02 Jul 2009 17:13:50 +0200 Posted by Tomas L. Byrnes on Jul 2<p> wrecked it in the '90s are moving on to &quot;green&quot; tech.... http://seclists.org/fulldisclosure/2009/Jul/0009.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0009.html Thu, 2 Jul 2009 09:28:06 -0700 Posted by Kees Cook on Jul 1<p> <br />... http://seclists.org/fulldisclosure/2009/Jul/0008.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0008.html Wed, 1 Jul 2009 22:44:22 -0700 Posted by NOC on Jul 02<p> ... http://seclists.org/fulldisclosure/2009/Jul/0007.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0007.html Thu, 02 Jul 2009 00:26:24 -0700 Posted by Daniel H. Renner on Jul 01<p> <p>The purpose of this email is to notify you of my moving on from the... http://seclists.org/fulldisclosure/2009/Jul/0006.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0006.html Wed, 01 Jul 2009 23:48:58 -0700 Posted by James Rankin on Jul 1<p> &gt; &gt;From: full-disclosure-bounces_at_lists&#46;grok.org.uk... http://seclists.org/fulldisclosure/2009/Jul/0005.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0005.html Wed, 1 Jul 2009 20:52:00 +0100 Posted by Tomas L. Byrnes on Jul 1<p> &gt;Sent: Wednesday, July 01, 2009... http://seclists.org/fulldisclosure/2009/Jul/0004.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0004.html Wed, 1 Jul 2009 11:28:23 -0700 Posted by Kevin Wilcox on Jul 1<p> <p>... http://seclists.org/fulldisclosure/2009/Jul/0003.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0003.html Wed, 1 Jul 2009 09:31:38 -0400 Posted by James Matthews on Jul 1<p> &gt; Hope you don't mind: I forwarded your mail to... http://seclists.org/fulldisclosure/2009/Jul/0002.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0002.html Wed, 1 Jul 2009 15:15:54 +0300 Posted by Inbox on Jul 1<p> &gt; michelle.nash2009_at_yahoo&#46;com, and my space passwords... http://seclists.org/fulldisclosure/2009/Jul/0001.htmlhttp://seclists.org/fulldisclosure/2009/Jul/0001.html Wed, 1 Jul 2009 14:06:09 +0200 http://seclists.org/#honeypots Discussions about tracking attackers by setting up decoy honeypots or entire honeynet networks. Posted by Greg Bronevetsky on Jun 16<p> <p>... http://seclists.org/honeypots/2009/q2/0018.htmlhttp://seclists.org/honeypots/2009/q2/0018.html Tue, 16 Jun 2009 08:42:33 -0700 Posted by Sebastian Schmerl on May 26<p> <br />... http://seclists.org/honeypots/2009/q2/0017.htmlhttp://seclists.org/honeypots/2009/q2/0017.html Tue, 26 May 2009 12:59:20 +0200 Posted by Yves Roudier on May 26<p> <p>... http://seclists.org/honeypots/2009/q2/0016.htmlhttp://seclists.org/honeypots/2009/q2/0016.html Tue, 26 May 2009 12:07:10 +0200 Posted by Joshua Gimer on May 7<p> <p> http://seclists.org/honeypots/2009/q2/0015.htmlhttp://seclists.org/honeypots/2009/q2/0015.html Thu, 7 May 2009 17:11:10 -0600 Posted by Dragos Ruiu on May 6<p> &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;- Peleus Uhley,... http://seclists.org/honeypots/2009/q2/0014.htmlhttp://seclists.org/honeypots/2009/q2/0014.html Wed, 6 May 2009 15:24:04 -0700 Posted by hack.lu 2009 info on Apr 30<p> non-technical people can... http://seclists.org/honeypots/2009/q2/0013.htmlhttp://seclists.org/honeypots/2009/q2/0013.html Thu, 30 Apr 2009 14:42:46 +0200 Posted by Ian Bradshaw on Apr 22<p> be none too happy at being blacklisted;... http://seclists.org/honeypots/2009/q2/0012.htmlhttp://seclists.org/honeypots/2009/q2/0012.html Wed, 22 Apr 2009 22:18:15 +0100 Posted by Jesper Jurcenoks on Apr 22<p> <p>There should be no need to use TCPdump to capture the... http://seclists.org/honeypots/2009/q2/0011.htmlhttp://seclists.org/honeypots/2009/q2/0011.html Wed, 22 Apr 2009 14:15:14 -0700 Posted by dotcompex on Apr 22<p> communication method since... http://seclists.org/honeypots/2009/q2/0010.htmlhttp://seclists.org/honeypots/2009/q2/0010.html Wed, 22 Apr 2009 06:54:55 -0700 (PDT) Posted by Viktor on Apr 19<p> &gt; address(how else can u... http://seclists.org/honeypots/2009/q2/0009.htmlhttp://seclists.org/honeypots/2009/q2/0009.html Sun, 19 Apr 2009 20:56:45 +0200 Posted by Gergely RÃvay on Apr 19<p> <p>$ for i in `seq 2 254`; do sudo... http://seclists.org/honeypots/2009/q2/0008.htmlhttp://seclists.org/honeypots/2009/q2/0008.html Sun, 19 Apr 2009 17:11:38 +0200 Posted by Sushant Sinha on Apr 18<p> &gt; I'm running nepenthes on a debian OS at an universiry network with a fix IP. I managed to get a high number of unused IP addresses from the university network... http://seclists.org/honeypots/2009/q2/0007.htmlhttp://seclists.org/honeypots/2009/q2/0007.html Sat, 18 Apr 2009 11:37:29 -0400 Posted by Viktor on Apr 18<p> <p>I'm running nepenthes on a debian OS at an universiry network with a fix IP. I managed to get a high number of unused IP addresses from the university network administrator, all traffic from these are routed to my computer. Now i'm having 200 packet/s income rate, but nepenthes only looks... http://seclists.org/honeypots/2009/q2/0006.htmlhttp://seclists.org/honeypots/2009/q2/0006.html Sat, 18 Apr 2009 17:17:32 +0200 Posted by S. Praburaajan on Apr 15<p> <br />... http://seclists.org/honeypots/2009/q2/0005.htmlhttp://seclists.org/honeypots/2009/q2/0005.html Wed, 15 Apr 2009 12:12:17 +0800 Posted by Blarnum Seamus on Apr 11<p> <p>I am trying to write a college paper on various hacker methods and I would like to know if anyone has any sanitized sebek keystroke logs I could use in my paper. All I need is the actual command inputs and any associated process information. Everything else is not required (or better... http://seclists.org/honeypots/2009/q2/0004.htmlhttp://seclists.org/honeypots/2009/q2/0004.html Sat, 11 Apr 2009 11:47:08 -0700 (PDT) http://seclists.org/#incidents Lightly moderated list for dicussing actual security incidents (unexplained probes, breakins, etc). Topics include information about new rootkits, backdoors, trojans, virii, and worms. http://seclists.org/#microsoft Beware that MS often uses these security bulletins as marketing propaganda to downplay serious vulnerabilities in their products -- note how most have a prominent and often-misleading "mitigating factors" section. Posted by Microsoft on Jun 9<p> <p>The full... http://seclists.org/microsoft/2009/q2/0005.htmlhttp://seclists.org/microsoft/2009/q2/0005.html Tue, 9 Jun 2009 14:25:25 -0700 Posted by Microsoft on May 27<p> The following bulletins have undergone a major revision increment.... http://seclists.org/microsoft/2009/q2/0004.htmlhttp://seclists.org/microsoft/2009/q2/0004.html Wed, 27 May 2009 02:35:34 -0700 Posted by Microsoft on May 12<p> <p>The full... http://seclists.org/microsoft/2009/q2/0003.htmlhttp://seclists.org/microsoft/2009/q2/0003.html Tue, 12 May 2009 14:59:41 -0700 Posted by Microsoft on May 12<p> The following bulletins have undergone a major revision increment.... http://seclists.org/microsoft/2009/q2/0002.htmlhttp://seclists.org/microsoft/2009/q2/0002.html Tue, 12 May 2009 13:44:08 -0700 Posted by Microsoft on Apr 30<p> The following bulletins have undergone a major revision... http://seclists.org/microsoft/2009/q2/0001.htmlhttp://seclists.org/microsoft/2009/q2/0001.html Thu, 30 Apr 2009 02:50:14 -0700 http://seclists.org/#nmap-dev Unmoderated technical development forum for debating ideas, patches, and suggestions regarding proposed changes to Nmap and related projects. Posted by David Fifield on Jul 2<p> &gt; &gt; NSE to hang forever in a busy-loop.  Since the... http://seclists.org/nmap-dev/2009/q3/0017.htmlhttp://seclists.org/nmap-dev/2009/q3/0017.html Thu, 2 Jul 2009 15:30:50 -0600 Posted by Patrick Donnelly on Jul 2<p> &gt; NSE to hang forever in a busy-loop.  Since the... http://seclists.org/nmap-dev/2009/q3/0016.htmlhttp://seclists.org/nmap-dev/2009/q3/0016.html Thu, 2 Jul 2009 15:19:19 -0600 Posted by David Fifield on Jul 2<p> &gt; &gt; scanning. I needed to run whois.nse... http://seclists.org/nmap-dev/2009/q3/0015.htmlhttp://seclists.org/nmap-dev/2009/q3/0015.html Thu, 2 Jul 2009 15:17:50 -0600 Posted by Michael Pattrick on Jul 2<p> &gt; scanning them first, and I had to hack the... http://seclists.org/nmap-dev/2009/q3/0014.htmlhttp://seclists.org/nmap-dev/2009/q3/0014.html Thu, 2 Jul 2009 17:13:48 -0400 Posted by Brandon Enright on Jul 2<p> Thanks to David's sharp eye and troubleshooting genius, I have... http://seclists.org/nmap-dev/2009/q3/0013.htmlhttp://seclists.org/nmap-dev/2009/q3/0013.html Thu, 2 Jul 2009 20:41:17 +0000 Posted by David Fifield on Jul 2<p> &gt; &gt; &gt; &gt; Fyodor... http://seclists.org/nmap-dev/2009/q3/0012.htmlhttp://seclists.org/nmap-dev/2009/q3/0012.html Thu, 2 Jul 2009 12:24:13 -0600 Posted by MostaÃo-Guidolin Luiz C. B. on Jul 2<p> <p> http://seclists.org/nmap-dev/2009/q3/0011.htmlhttp://seclists.org/nmap-dev/2009/q3/0011.html Thu, 2 Jul 2009 10:25:21 -0300 Posted by Daniel Roethlisberger on Jul 2<p> &gt; &gt; &gt;&gt; On Sat, Jun 27, 2009 at... http://seclists.org/nmap-dev/2009/q3/0010.htmlhttp://seclists.org/nmap-dev/2009/q3/0010.html Thu, 2 Jul 2009 19:23:01 +0200 Posted by David Fifield on Jul 2<p> <br /> http://seclists.org/nmap-dev/2009/q3/0009.htmlhttp://seclists.org/nmap-dev/2009/q3/0009.html Thu, 2 Jul 2009 09:50:54 -0600 Posted by Fyodor on Jul 1<p> &gt; My idea is... http://seclists.org/nmap-dev/2009/q3/0008.htmlhttp://seclists.org/nmap-dev/2009/q3/0008.html Wed, 1 Jul 2009 23:55:33 -0700 Posted by David Fifield on Jul 1<p> &gt; &gt;... http://seclists.org/nmap-dev/2009/q3/0007.htmlhttp://seclists.org/nmap-dev/2009/q3/0007.html Wed, 1 Jul 2009 19:22:31 -0600 Posted by David Fifield on Jul 1<p> &gt; For... http://seclists.org/nmap-dev/2009/q3/0006.htmlhttp://seclists.org/nmap-dev/2009/q3/0006.html Wed, 1 Jul 2009 18:34:07 -0600 Posted by J Marlow on Jul 1<p> also,... http://seclists.org/nmap-dev/2009/q3/0005.htmlhttp://seclists.org/nmap-dev/2009/q3/0005.html Wed, 1 Jul 2009 20:13:44 -0400 Posted by David Fifield on Jul 1<p> &gt; &gt;&gt;&gt; Fyodor... http://seclists.org/nmap-dev/2009/q3/0004.htmlhttp://seclists.org/nmap-dev/2009/q3/0004.html Wed, 1 Jul 2009 16:01:22 -0600 Posted by David Fifield on Jul 1<p> &gt; &gt;... http://seclists.org/nmap-dev/2009/q3/0003.htmlhttp://seclists.org/nmap-dev/2009/q3/0003.html Wed, 1 Jul 2009 10:36:39 -0600 http://seclists.org/#nmap-hackers Moderated list for announcements, patches, and light discussion regarding the Nmap Security Scanner and related projects. Posted by Fyodor on Jun 26<p> is time for a new stable version! I've... http://seclists.org/nmap-hackers/2009/0002.htmlhttp://seclists.org/nmap-hackers/2009/0002.html Fri, 26 Jun 2009 14:04:44 -0700 Posted by Fyodor on Mar 31<p> Some say 15,000,000... http://seclists.org/nmap-hackers/2009/0001.htmlhttp://seclists.org/nmap-hackers/2009/0001.html Tue, 31 Mar 2009 17:04:29 -0700 Posted by Fyodor on Dec 9<p> <br />... http://seclists.org/nmap-hackers/2008/0006.htmlhttp://seclists.org/nmap-hackers/2008/0006.html Tue, 9 Dec 2008 03:07:59 -0800 Posted by Fyodor on Sep 23<p> improvements. If 4.75 is... http://seclists.org/nmap-hackers/2008/0005.htmlhttp://seclists.org/nmap-hackers/2008/0005.html Tue, 23 Sep 2008 13:11:16 -0700 Posted by Fyodor on Sep 8<p> &nbsp;&nbsp;actually draw you a map of the... http://seclists.org/nmap-hackers/2008/0004.htmlhttp://seclists.org/nmap-hackers/2008/0004.html Mon, 8 Sep 2008 14:14:31 -0700 Posted by Fyodor on Jul 31<p> resolve in the next... http://seclists.org/nmap-hackers/2008/0003.htmlhttp://seclists.org/nmap-hackers/2008/0003.html Thu, 31 Jul 2008 23:06:28 -0700 Posted by Fyodor on Jul 31<p> nmap-hackers... http://seclists.org/nmap-hackers/2008/0002.htmlhttp://seclists.org/nmap-hackers/2008/0002.html Thu, 31 Jul 2008 14:45:38 -0700 Posted by Fyodor on Mar 24<p> generous and innovative program... http://seclists.org/nmap-hackers/2008/0001.htmlhttp://seclists.org/nmap-hackers/2008/0001.html Mon, 24 Mar 2008 21:04:25 -0700 http://seclists.org/#pen-test While this list is intended for "professionals", participants frequenly disclose techniques and strategies that would be useful to anyone with a practical interest in security and network auditing. Posted by SD List on Jul 1<p> <p>&gt;... http://seclists.org/pen-test/2009/Jul/0005.htmlhttp://seclists.org/pen-test/2009/Jul/0005.html Wed, 1 Jul 2009 18:11:57 +0200 (CEST) Posted by Nikhil Wagholikar on Jul 1<p> Nikhil Wagholikar... http://seclists.org/pen-test/2009/Jul/0004.htmlhttp://seclists.org/pen-test/2009/Jul/0004.html Wed, 1 Jul 2009 08:46:19 +0530 Posted by Jeremy Brown on Jul 2<p> <br />... http://seclists.org/pen-test/2009/Jul/0003.htmlhttp://seclists.org/pen-test/2009/Jul/0003.html Thu, 2 Jul 2009 12:34:55 -0400 Posted by Christian Martorella on Jul 1<p> EARLY BIRD RATE EXPIRES... http://seclists.org/pen-test/2009/Jul/0002.htmlhttp://seclists.org/pen-test/2009/Jul/0002.html Wed, 1 Jul 2009 22:14:55 +0200 Posted by Tal Argoni on Jul 1<p> <br />... http://seclists.org/pen-test/2009/Jul/0001.htmlhttp://seclists.org/pen-test/2009/Jul/0001.html Wed, 1 Jul 2009 17:01:32 +0300 Posted by Todd Haverkos on Jun 30<p> &gt;... http://seclists.org/pen-test/2009/Jun/0174.htmlhttp://seclists.org/pen-test/2009/Jun/0174.html Tue, 30 Jun 2009 11:27:55 -0500 Posted by Benjamin Greenfield on Jun 30<p> <p>... http://seclists.org/pen-test/2009/Jun/0173.htmlhttp://seclists.org/pen-test/2009/Jun/0173.html Tue, 30 Jun 2009 12:53:43 -0400 Posted by pUm on Jun 30<p> &gt; in order to enumerate al files and scripts it detects and then... http://seclists.org/pen-test/2009/Jun/0172.htmlhttp://seclists.org/pen-test/2009/Jun/0172.html Tue, 30 Jun 2009 16:37:41 +0100 Posted by Rogan Dawes on Jun 30<p> <br />... http://seclists.org/pen-test/2009/Jun/0171.htmlhttp://seclists.org/pen-test/2009/Jun/0171.html Tue, 30 Jun 2009 18:05:23 +0200 Posted by rajat swarup on Jun 30<p> &gt; for this same files but with another... http://seclists.org/pen-test/2009/Jun/0170.htmlhttp://seclists.org/pen-test/2009/Jun/0170.html Tue, 30 Jun 2009 13:56:23 -0400 Posted by jason_jones98_at_hotmail.com on Jun 30<p> <p>... http://seclists.org/pen-test/2009/Jun/0169.htmlhttp://seclists.org/pen-test/2009/Jun/0169.html 30 Jun 2009 14:56:12 -0000 Posted by John Lampe on Jun 30<p> ... http://seclists.org/pen-test/2009/Jun/0168.htmlhttp://seclists.org/pen-test/2009/Jun/0168.html Tue, 30 Jun 2009 11:56:01 -0500 Posted by Sandro Gauci on Jun 30<p> <p><p><p><p>On Tue, Jun 30, 2009 at 2:47 PM, Juan Kinunt&lt;kinunt_at_gmail&#46;com&gt;... http://seclists.org/pen-test/2009/Jun/0167.htmlhttp://seclists.org/pen-test/2009/Jun/0167.html Tue, 30 Jun 2009 17:23:13 +0200 Posted by Jeffrey Walton on Jun 30<p> Subject: South... http://seclists.org/pen-test/2009/Jun/0166.htmlhttp://seclists.org/pen-test/2009/Jun/0166.html Tue, 30 Jun 2009 16:41:27 -0400 Posted by Chris Brenton on Jun 30<p> <p>Try setting some TCP... http://seclists.org/pen-test/2009/Jun/0165.htmlhttp://seclists.org/pen-test/2009/Jun/0165.html Tue, 30 Jun 2009 14:48:08 -0400 http://seclists.org/#risks Peter G. Neumann moderates this regular digest of current events which demonstrate risks to the public in computers and related systems. Security risks are often discussed. Posted by RISKS List Owner on Jun 23<p> <p>***** See last item for further information, disclaimers,... http://seclists.org/risks/2009/q2/0009.htmlhttp://seclists.org/risks/2009/q2/0009.html Tue, 23 Jun 2009 11:44:25 PDT Posted by RISKS List Owner on Jun 1<p> <p>***** See last item for further information, disclaimers,... http://seclists.org/risks/2009/q2/0008.htmlhttp://seclists.org/risks/2009/q2/0008.html Mon, 1 Jun 2009 14:57:35 PDT Posted by RISKS List Owner on May 24<p> <p>***** See last item for further information, disclaimers,... http://seclists.org/risks/2009/q2/0007.htmlhttp://seclists.org/risks/2009/q2/0007.html Sun, 24 May 2009 19:15:47 PDT Posted by RISKS List Owner on May 23<p> <p>***** See last item for further information, disclaimers,... http://seclists.org/risks/2009/q2/0006.htmlhttp://seclists.org/risks/2009/q2/0006.html Sat, 23 May 2009 17:21:11 PDT Posted by RISKS List Owner on May 16<p> <p>***** See last item for further information, disclaimers,... http://seclists.org/risks/2009/q2/0005.htmlhttp://seclists.org/risks/2009/q2/0005.html Sat, 16 May 2009 15:54:04 PDT Posted by RISKS List Owner on May 10<p> <p>***** See last item for further information, disclaimers,... http://seclists.org/risks/2009/q2/0004.htmlhttp://seclists.org/risks/2009/q2/0004.html Sun, 10 May 2009 13:40:29 PDT Posted by RISKS List Owner on Apr 29<p> <p>***** See last item for further information, disclaimers,... http://seclists.org/risks/2009/q2/0003.htmlhttp://seclists.org/risks/2009/q2/0003.html Wed, 29 Apr 2009 16:36:13 PDT Posted by RISKS List Owner on Apr 20<p> <p>***** See last item for further information, disclaimers,... http://seclists.org/risks/2009/q2/0002.htmlhttp://seclists.org/risks/2009/q2/0002.html Mon, 20 Apr 2009 14:03:53 PDT Posted by RISKS List Owner on Apr 5<p> <p>***** See last item for further information, disclaimers,... http://seclists.org/risks/2009/q2/0001.htmlhttp://seclists.org/risks/2009/q2/0001.html Sun, 5 Apr 2009 18:12:25 PDT http://seclists.org/#basics A high-volume list which permits people to ask "stupid questions" without being derided as "n00bs". I recommend this list to network security newbies, but be sure to read Bugtraq and other lists as well. Posted by Antão Miguel Chantre on Jul 2<p> In this guide we examine the importance of Apache-SSL and who... http://seclists.org/basics/2009/Jul/0004.htmlhttp://seclists.org/basics/2009/Jul/0004.html Thu, 2 Jul 2009 16:42:04 -0100 Posted by Andre Rodrigues on Jul 2<p> * Changes (+: new entries, -: removed... http://seclists.org/basics/2009/Jul/0003.htmlhttp://seclists.org/basics/2009/Jul/0003.html Thu, 2 Jul 2009 03:25:44 -0700 (PDT) Posted by Jim Mellander on Jun 30<p> &gt; forum posts. But... http://seclists.org/basics/2009/Jul/0002.htmlhttp://seclists.org/basics/2009/Jul/0002.html Tue, 30 Jun 2009 14:34:55 -0700 Posted by Andreas Heinzelmann on Jul 1<p> am located in... http://seclists.org/basics/2009/Jul/0001.htmlhttp://seclists.org/basics/2009/Jul/0001.html Wed, 1 Jul 2009 14:01:21 +0200 Posted by Ansgar Wiechers on Jun 29<p> &gt; enough to... http://seclists.org/basics/2009/Jun/0186.htmlhttp://seclists.org/basics/2009/Jun/0186.html Mon, 29 Jun 2009 20:21:57 +0200 Posted by J. Oquendo on Jun 29<p> &gt; It formats the lists in whatever way your choose, depending on how you'll use... http://seclists.org/basics/2009/Jun/0185.htmlhttp://seclists.org/basics/2009/Jun/0185.html Mon, 29 Jun 2009 12:32:43 -0400 Posted by Ansgar Wiechers on Jun 29<p> &gt; your system is doing with the packet? Therefore no way of knowing... http://seclists.org/basics/2009/Jun/0184.htmlhttp://seclists.org/basics/2009/Jun/0184.html Mon, 29 Jun 2009 20:39:27 +0200 Posted by Murda Mcloud on Jun 26<p> done the 'right' thing? I suppose it could be 'did... http://seclists.org/basics/2009/Jun/0183.htmlhttp://seclists.org/basics/2009/Jun/0183.html Fri, 26 Jun 2009 14:11:10 +1000 Posted by Daniel Hood on Jun 26<p> forum posts. But after a couple of hours of googling though, I can't... http://seclists.org/basics/2009/Jun/0182.htmlhttp://seclists.org/basics/2009/Jun/0182.html Fri, 26 Jun 2009 14:06:54 +1000 Posted by Chris Teodorski on Jun 25<p> <br />... http://seclists.org/basics/2009/Jun/0181.htmlhttp://seclists.org/basics/2009/Jun/0181.html Thu, 25 Jun 2009 14:14:29 -0400 Posted by Ian Bradshaw on Jun 25<p> <p>Some people prefer to have them all... http://seclists.org/basics/2009/Jun/0180.htmlhttp://seclists.org/basics/2009/Jun/0180.html Thu, 25 Jun 2009 17:16:03 +0100 Posted by Tom Farrar on Jun 25<p> started... http://seclists.org/basics/2009/Jun/0179.htmlhttp://seclists.org/basics/2009/Jun/0179.html Thu, 25 Jun 2009 17:15:05 +0100 Posted by Marco Shaw on Jun 25<p> have a system... http://seclists.org/basics/2009/Jun/0178.htmlhttp://seclists.org/basics/2009/Jun/0178.html Thu, 25 Jun 2009 09:12:43 -0700 Posted by Charlie Clark on Jun 25<p> dropping SYN packets you are archiving nothing except... http://seclists.org/basics/2009/Jun/0177.htmlhttp://seclists.org/basics/2009/Jun/0177.html Thu, 25 Jun 2009 15:54:58 +0000 (GMT) Posted by chmod1777_at_mydotcom.com on Jun 25<p> <p>It formats the lists in whatever way your choose, depending on how you'll use them. If... http://seclists.org/basics/2009/Jun/0176.htmlhttp://seclists.org/basics/2009/Jun/0176.html Thu, 25 Jun 2009 09:32:42 -0600 http://seclists.org/#jobs A popular list for advertising or finding jobs in the security field. Employers post openings and job seekers post resumes (run by SecurityFocus). For privacy reasons, only the current year is archived. http://seclists.org/#vuln-dev A moderated list for discussing possible security issues and devising exploits for them. http://seclists.org/#vulnwatch A non-discussion, non-patch, all-vulnerability annoucement list supported and run by a community of volunteer moderators distributed around the world. http://seclists.org/#webappsec Provides insights on the unique challenges which make web applications notoriously hard to secure. Posted by Hellman Matthew on Jul 1<p> &gt;&gt;user (using WebScarab). The app throws and error and... http://seclists.org/webappsec/2009/q3/0012.htmlhttp://seclists.org/webappsec/2009/q3/0012.html Wed, 1 Jul 2009 11:26:06 -0500 Posted by Heine Deelstra on Jul 1<p> http://seclists.org/webappsec/2009/q3/0011.htmlhttp://seclists.org/webappsec/2009/q3/0011.html Wed, 1 Jul 2009 18:20:29 +0200 Posted by jay.tomas_at_infosecguru.com on Jul 01<p> the source and see... http://seclists.org/webappsec/2009/q3/0010.htmlhttp://seclists.org/webappsec/2009/q3/0010.html Wed, 01 Jul 2009 10:42:11 -0500 Posted by Christopher Firth on Jul 1<p> the cookie from the first browser. In -theory- this shouldn't lock out... http://seclists.org/webappsec/2009/q3/0009.htmlhttp://seclists.org/webappsec/2009/q3/0009.html Wed, 1 Jul 2009 23:29:09 +0800 Posted by S I on Jul 1<p> <p>And select the IE one. Or simply change copy/paste the IE user agent... http://seclists.org/webappsec/2009/q3/0008.htmlhttp://seclists.org/webappsec/2009/q3/0008.html Wed, 1 Jul 2009 23:39:50 +0900 Posted by Marc Ouwerkerk on Jul 1<p> &lt;=... http://seclists.org/webappsec/2009/q3/0007.htmlhttp://seclists.org/webappsec/2009/q3/0007.html Wed, 1 Jul 2009 16:50:53 +0200 Posted by Irene Abezgauz on Jul 1<p> 2. are you trying to execute a similar request? is there a... http://seclists.org/webappsec/2009/q3/0006.htmlhttp://seclists.org/webappsec/2009/q3/0006.html Wed, 1 Jul 2009 17:30:03 +0300 Posted by jay.tomas_at_infosecguru.com on Jul 01<p> is... http://seclists.org/webappsec/2009/q3/0005.htmlhttp://seclists.org/webappsec/2009/q3/0005.html Wed, 01 Jul 2009 10:02:35 -0500 Posted by Michael Yelland on Jul 1<p> ... http://seclists.org/webappsec/2009/q3/0004.htmlhttp://seclists.org/webappsec/2009/q3/0004.html Wed, 1 Jul 2009 09:42:21 -0500 Posted by Brad Causey on Jul 1<p> Configure... http://seclists.org/webappsec/2009/q3/0003.htmlhttp://seclists.org/webappsec/2009/q3/0003.html Wed, 1 Jul 2009 09:20:27 -0500 Posted by pUm on Jul 1<p> &gt; I'm auditing a web application... http://seclists.org/webappsec/2009/q3/0002.htmlhttp://seclists.org/webappsec/2009/q3/0002.html Wed, 1 Jul 2009 15:00:49 +0100 Posted by Martin ONeal on Jul 1<p> http://seclists.org/webappsec/2009/q3/0001.htmlhttp://seclists.org/webappsec/2009/q3/0001.html Wed, 1 Jul 2009 14:34:38 +0100 Posted by robert_at_webappsec.org on Jun 15<p> remediate the issue. Depending... http://seclists.org/webappsec/2009/q2/0081.htmlhttp://seclists.org/webappsec/2009/q2/0081.html Mon, 15 Jun 2009 14:08:10 -0400 (EDT) Posted by Scott Sanchez on Jun 11<p> session... http://seclists.org/webappsec/2009/q2/0080.htmlhttp://seclists.org/webappsec/2009/q2/0080.html Thu, 11 Jun 2009 21:11:38 -0400 Posted by etd on Jun 12<p> <br />... http://seclists.org/webappsec/2009/q2/0079.htmlhttp://seclists.org/webappsec/2009/q2/0079.html Fri, 12 Jun 2009 00:28:26 +0100