Recherche : [vuln]

Vulnerable Wi-Fi dildo camera endoscope. Yes really | Pen Test Partners

Sometimes, our jaws hit the floor. We see some pretty bad things in IoT security, but this has to take the biscuit. After the WeVibe lawsuit and settlement, we

iot · vuln

April 4, 2017 at 9:34:22 AM GMT+2 * · permalien

·

https://www.pentestpartners.com/blog/vulnerable-wi-fi-dildo-camera-endoscope-yes-really/

Introducing the Metasploit Vulnerable Service E... | Rapid7 Community and Blog

Penetration testing with Metasploit made easy. Millions of IT professionals all over the world want to get into the hot field of security, and

vuln · metasploit

March 5, 2017 at 1:25:47 AM GMT+1 * · permalien

·

https://community.rapid7.com/community/metasploit/blog/2017/03/01/vulnerable-service-emulator

Analysis and Exploitation of a Linux Kernel Vulnerability (CVE-2016-0728) | Perception Point

CVE-2016-0728 is caused by a reference leak in the keyrings facility.
https://gist.github.com/PerceptionPointTeam/18b1e86d1c0f8531ff8f
https://gist.github.com/matlink/e92b4cd522df178bf23f#file-cve_2016_0728-c-L103

linux · kernel · vuln

January 22, 2016 at 9:58:44 AM GMT+1 * · permalien

·

http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/

Misfortune Cookie : 12 millions de routeurs vulnérables | UnderNews

protocole TR-069 ou CWMP (Customer Premises Equipment Management Protocol WAN). Serveur "rompager"?

http://mis.fortunecook.ie/

web · vuln

December 23, 2014 at 12:12:32 AM GMT+1 * · permalien

·

http://www.undernews.fr/reseau-securite/misfortune-cookie-12-millions-de-routeurs-vulnerables.html

Web App Auditing | Tenable Network Security

https://discussions.nessus.org/servlet/JiveServlet/download/4615-1194/Nessus_Question.doc
http://www.tenable.com/sites/drupal.dmz.tenablesecurity.com/files/uploads/documents/whitepapers/Tenable_Web_App_Scanning_0.pdf
http://www.tenable.com/sites/drupal.dmz.tenablesecurity.com/files/uploads/documents/whitepapers/Using%20Nessus%20in%20Web%20Application%20Vulnerability%20Assessments.pdf
https://www.owasp.org/images/4/4f/Web_Application_Vul_Testing_with_Nessus_2012.02.01.pdf

Playgrounds For Your Web App Assessments
• Virtual Machines
– DVL (Damn Vulnerable Linux) • http://www.damnvulnerablelinux.org/
– Moth • http://www.bonsai-sec.com/en/research/moth.php

metasploitable http://sourceforge.net/projects/metasploitable/ https://community.rapid7.com/docs/DOC-1875
OWASP BWA https://www.owasp.org/index.php/OWASP_Broken_Web_Applications_Project
LAMPsecurity http://sourceforge.net/projects/lampsecurity/ - http://www.madirish.net/
• Stand-alone Applications
– Stanford SecuriBench • http://suif.stanford.edu/~livshits/securibench/
– WebGoat • http://www.owasp.org/index.php/Category:OWASP_WebGoat_Project
– Mutillidae • http://www.irongeek.com/i.php?page=security/mutillidae-deliberatelyvulnerable-php-owasp-top-10&mode=print
• Remote Sites
– Acunetix: • http://testphp.acunetix.com/
Vulnhub: https://www.vulnhub.com/ donkeydocker et plein de VM et autres ressources

• Scanning Multiple Apache VirtualHosts With Nessus – http://blog.tenablesecurity.com/2009/05/scanning-multiple-virtual-hosts-withnessus.html
• Tips For Using Nessus In Web Application Testing – http://blog.tenablesecurity.com/2009/04/tips-for-using-nessus-in-web-applicationtesting.html
• Auditing PHP Settings to OWASP Recommendations with Nessus
– http://blog.tenablesecurity.com/2009/03/auditing-php-settings-to-owasprecommendations-with-nessus.html
• Detecting Base64 Encoded Authentication Requests
– http://blog.tenablesecurity.com/2009/03/detecting-base64-encoded-authenticationrequests.html

http://lab.lonerunners.net/blog/virtual-host-and-dns-names-enumeration-techniques et hostmap réécrit en ruby https://github.com/jekil/hostmap

nessus · eh · sécu · owasp · crackme · vuln

April 26, 2013 at 5:08:15 PM GMT+2 * · permalien

·

http://www.tenable.com/taxonomy/term/373?page=1