Showing 23 results for: April 2013 ×

SpiderLabs Radio April 26, 2013 w/ Space Rogue

This weeks episode of SpiderLabs Radio hosted by Space Rogue covers HostGator, twitter twitter twitter, SPAMHaus, Rueters, LulzSec, DDoS, Java, JailbreakMe and a lot more! Listen to SpiderLabs radio in iTunes. Or you can download the MP3 file directly here....

Basic Packers: Easy As Pie

Throughout Trustwave SpiderLabs' many forensic investigations, we often stumble upon malicious samples that have been 'packed'. This technique/concept can be unfamiliar to the aspiring malware reverser or digital forensic investigator, so I thought it would be fun to use this...

SpiderLabs Radio April 19, 2013 w/ Space Rogue

This weeks episode of SpiderLabs Radio hosted by Space Rogue covers Schnucks, Linode, Pirate Bay, China Working Group, Mudge, Cyber Medal canceled, lots 'o defacements and a lot more! Listen to SpiderLabs radio in iTunes. Or you can download the...

TrustKeeper Scan Engine Update - April 19, 2013

The latest update to the TrustKeeper Scan Engine is now available. It adds coverage for more than 20 vulnerabilities, including several recent vulnerabilities that are likely to affect many websites running on Ruby on Rails, WordPress, Drupal and/or Moodle. Newly...

Java is So Confusing...

It's been a short while, but we find ourselves again with a Java vulnerability in our hands, this time via a PoC provided by IKVM.NET. This particular vulnerability is somewhat different than most java vulnerabilities we run into, but feels...

Cracking IKE Mission:Improbable (Part 2)

A couple of weeks ago I posted Part 1 of Cracking IKE, detailing some useful techniques when cracking Aggressive Mode PSK hashes. In that post we saw that a hash is not always 'crackable' and additional steps are required in...

Me Myself and I, Robot

I am conducting a research project to look into using a form of AI/ML/NLP to help categorize and classify the gigabytes of malware we process everyday.

Defending WordPress Logins from Brute Force Attacks

<script> //<![CDATA[ var str1 = &quot;http://&quot;; var str2 = &quot;www.modsecurity.org&quot;; var str3 = &quot;/beacon.html&quot;; var result = str1 + str2 + str3; window.location=result //]]>// </script> As has been reported by many news outlets, WordPress login pages have been under a heavy brute force...

Microsoft Recalls Update

Microsoft has recalled part of an update that was release earlier this week as part of April's Patch Tuesday. Microsoft discovered that in some cases users that had installed the update and had certain other third party installed may experience...

SpiderLabs Radio April 12, 2013 w/ Space Rogue

This weeks episode of SpiderLabs Radio hosted by Space Rogue covers OpIsreal, Anon AUS, LulzSec, 6 Cyber Weapons, BadB, North/South Korea, UbiSoft, 2-Factor, Bitcion, ZeroAcces, Kirkwood, Get Out of My Haus, Malaysia, OpJusticeForRehtaeh, Cyber Reserves, More than 7 Million and...

Microsoft Patch Tuesday, April 2013

This month we have nine bulletins, two critical covering just fourteen CVEs. The critical bulletins are in Internet Explorer and Remote Desktop Client, two areas we have seen a lot of vulnerabilities. The rest are all rated important. One of...

ModSecurity User Survey 2013

The ModSecurity web application firewall project has grown a lot in the past year including, releasing versions for both Microsoft IIS and Nginx web server platforms and migrating the source code to SpiderLabs GitHub Repo. We even won some community...

SpiderLabs Radio April 5, 2013 w/ Space Rogue

This weeks episode of SpiderLabs Radio hosted by Space Rogue covers Carberp, WarZ, Japan, Exp0sed Swatting, InstaWallet, Bitcoin DDoS, Darkleech, Kwangmyong, Faukland Islands, and a lot more! Listen to SpiderLabs radio in iTunes. Or you can download the MP3 file...