http://conference.hitb.org/hitbsecconf2008kl/



hackinthebox
 ::  hitb portal  ::  hitb portal (SSL)  ::  hitb forum (SSL)  ::  hitb security conference  ::  hitb training ::  hitb irc  ::  hitb photos  ::  hitb videos :: 

HITB Search:
Who's Online
There are 203 unregistered users and 0 registered users on-line.

You can log-in or register for a user account here.



Security White Papers:

Main Menu

Top Stories for Today
[506] Hackers attack Mexican Congress website, opposing oil privatization
[342] What can cash buy? Not an iPhone
[251] The 25 Year Old BSD Bug
[243] Anatomy of Security-Enhanced Linux (SELinux)
[198] Hackers target Herald website
[188] Tax refund spam circulating on Internet
[178] Websites provide crucial links in Myanmar cyclone crisis
[175] UK.gov torpedoes personal carbon credit plans
[166] UK Government Uses CCTV and Anti-Terror Laws to Prosecute Petty Crimes
[147] Games Convention Asia Conference calls for papers

View the Top 50 articles

Top 20 of the Last 2 Weeks

E-Zine Archive

Past Articles
Saturday, May 10
·TorrentSpy Won't Pay $111 Million Court Order, Lawyer Says (0)
·Facebook 'Connect' To Let Users Share Profiles (0)
·ID Theft Monitoring Services: What You Need To Know (0)
Friday, May 09
·Microsoft shares more IE8 security details (0)
·How to Regain Access to Your Admin Account in Vista using System Restore (0)
·China refuses to guarantee open Internet during Olympics (0)
·HSBC loses server stuffed with customer records (0)
·Windows Vista More Vulnerable To Malware Than Windows 2000 (0)
·Windows XP SP3 Sows Havoc, Users Complain (0)
·Belgium accuses China of cyber-attacks (0)
·Hollywood wants $15 million from Pirate Bay (0)
·DARPA Plans Cyberwar 'Matrix' (0)
·Yahoo Adds Security Warnings To Search Results (0)
Thursday, May 08
·UK company encrypts mobile calls (0)
·Korean Auction Identity Thieves Nabbed (0)
·Demand for IT staff slows dramatically (0)
·Microsoft is probing Facebook's merger interest (0)
·Free Mac OS X virtualiser released (0)
·Firefox Infects Vietnamese Users With Trojan Code (0)
·Vulnerability auction site WSLabi still going strong (0)
·id Software Announces Development of Doom 4  (0)
·Torrentspy Dinged $111 Million in MPAA Lawsuit (0)
·Rogue MP3 Trojan streaks across P2P networks (0)
·Comcast mulling metered access, 250GB monthly bandwidth caps (0)
· Unlocked and pricey, iPhone is coveted in Israel (0)
·Internet Explorer Zero-Day Treasure Hunt (0)
·Acunetix says they could have stopped DHS SQL attacks (0)
Wednesday, May 07
· Hacker kept on NDS payroll after accused of piracy (0)
·Microsoft warns of IE7 lock-in with XP SP3 (0)
·Human error and complacency biggest IT security threats (0)
 Older articles

HITB Links


Top 50 Articles

Top 50 Articles of the Last 7 days

  • [1517] Windows XP SP3 Sows Havoc, Users Complain
  • [1133] Microsoft warns of IE7 lock-in with XP SP3
  • [653] Pirate Bay: MPAA damage claim is a fabrication
  • [652] GNUCITIZEN sets up House of Hackers
  • [592] UK company encrypts mobile calls
  • [577]  Cell Phone Spying: Is Your Life Being Monitored?
  • [533] How to Regain Access to Your Admin Account in Vista using System Restore
  • [511] Hackers Find a New Place to Hide Rootkits - SMM
  • [506] Hackers attack Mexican Congress website, opposing oil privatization
  • [462] Use Hydra to Remotely Test Password Security
  • [448] Microsoft shares more IE8 security details
  • [442]  Hacker kept on NDS payroll after accused of piracy
  • [431] Linux Shootout: 7 Desktop Distros Compared
  • [430] Free Mac OS X virtualiser released
  • [425] Windows Vista More Vulnerable To Malware Than Windows 2000
  • [421]  Hacking American Idol
  • [413] Isohunt Founder at Center of U.S. Torrent-Tracking Legal Battle
  • [411] Human error and complacency biggest IT security threats
  • [393] Korean Auction Identity Thieves Nabbed
  • [392] Zibri says 3G iPhone has no copy/paste and no MMS
  • [386] Demand for IT staff slows dramatically
  • [363] Internet Explorer Zero-Day Treasure Hunt
  • [357] Microsoft is probing Facebook's merger interest
  • [355] Rogue MP3 Trojan streaks across P2P networks
  • [355] Hacking NASA: One small step for man, one giant leap for hackers?
  • [352] Hackers harpoon US executives with phony email subpoenas
  • [349] HSBC loses server stuffed with customer records
  • [346] Windows Vista SP1 Disaster Recovery Guide
  • [343] DARPA Plans Cyberwar 'Matrix'
  • [342] What can cash buy? Not an iPhone
  • [338] China refuses to guarantee open Internet during Olympics
  • [338] Echoworx launches Windows file-based encryption tool
  • [336] Firefox Infects Vietnamese Users With Trojan Code
  • [336] Evolving Cyber Attacks Pose Challenges
  • [334] Sync Your iPhone Wirelessly in Linux
  • [326] Torrentspy Dinged $111 Million in MPAA Lawsuit
  • [321] Yahoo Adds Security Warnings To Search Results
  • [320]  Unlocked and pricey, iPhone is coveted in Israel
  • [319] id Software Announces Development of Doom 4
  • [319] Rumor: AMD May Divide Itself Into Two Companies
  • [315] Monster.com Founder Starts Social Networking Site for the Dead
  • [315] EBay not budging on PayPal proposal
  • [312] Cisco: Networking Is Hot Again
  • [309] Women in IT thank mums for encouragement
  • [306] Oracle architect says there ought to be one Linux distribution: Red Hat
  • [302] FBI probes counterfeit China computer parts
  • [297] Should security modules be dynamically loadable?
  • [296] Vulnerability auction site WSLabi still going strong
  • [294] The untold story of illegal peer-to-peer network activity on campus
  • [291] Comcast mulling metered access, 250GB monthly bandwidth caps

  • Top 50 Articles of the Last 4 weeks

  • [2298] WiFi keygen tool for BT Home Hubs released
  • [1848] Your 10 Biggest Network Security Worries
  • [1766] Microsoft (Belatedly) Admits to Windows Server 2008 Token Kidnapping
  • [1526] Do You Need a Mini-Notebook as a Second PC?
  • [1517] Windows XP SP3 Sows Havoc, Users Complain
  • [1406] GSM Security Researcher Targeted in Airport Shakedown
  • [1367] Hackers look to hardware viruses
  • [1351] SanDisk warns on USB drive threat
  • [1350] New MS Vulnerability - Web-Hosting Providers Beware!
  • [1204] Dell Vostro keyboards cause confusion
  • [1172] Windows XP SP3 completes Microsoft's NAC architecture
  • [1145] Alleged webcam hacker accused of spying on girls
  • [1133] Microsoft warns of IE7 lock-in with XP SP3
  • [1111] Pirate Bay Opens Uncensored Blogging Service
  • [1097] China hacker spills the beans on online break-ins
  • [1061] Microsoft Board Fails to Decide on Yahoo
  • [1050] Notorious eBay hacker arrested in Romania
  • [1000]  Mysterious fatal PS3 error shows up online
  • [994] Swedish researchers find hole in 'flawless' encryption technology
  • [970] IT crash hits Virgin Blue
  • [968] Miley Cyrus Takes Heat Over Sexy Photos Leaked Online
  • [962] 24 Digital Spy Tools To Capture, Protect, And Secure Data
  • [961] Students hack into school computer system in western New York
  • [925] Self-encrypting disk drive
  • [909] Windows XP SP3 is When?
  • [886] Hackers Cancel Attack on CNN
  • [858] 'Muslims' hack into Bank of Israel site
  • [858] Five important security apps for Linux, Mac OS X and Windows
  • [830] Nigerian duped gullible NASA employee
  • [829] IBM's own staff prefers Macs to ThinkPads
  • [828] New techniques hide PDF malware
  • [820] A Mac OS X security primer by Arstechnica
  • [795]  Crack the hackers
  • [786]  MySpace, Facebook: Big not always better
  • [779] Get Your Mac Clone While You Can
  • [772] ISPs' Error Page Ads Let Hackers Hijack Entire Web
  • [756] Microsoft Gives Backdoor to Law Enforcement -- Well, Not Really
  • [743] Edward Lorenz, father of chaos theory, dies at 90
  • [712] Strange earthquakes measured off U.S. west coast
  • [709] Bahrain ministry servers hacked
  • [702] Web-based e-mail may be exposing you to privacy and security problems you didn't expect
  • [696] Microsoft Patch Process Called Security Risk
  • [695] Microsoft denies fault in hacks
  • [694] Military computer contractor pleads guilty to ID theft
  • [691] Coldplay to give new single away for free
  • [687] Fring, fring: VoIP calling the iPhone
  • [663] IBM's 'racetrack' technology could increase iPhone storage tenfold
  • [655]  Romanian hackers attempted to fool thousands of managers of US financial institutions
  • [653] Pirate Bay: MPAA damage claim is a fabrication
  • [652] GNUCITIZEN sets up House of Hackers

  • Top 50 Articles Ever

  • [1293475] Microsoft XP Programs Keygen.
  • [620232] How to hack Windows XP Admin Passwords
  • [248308] SAM Files and NT Password Hashes
  • [202203] Pirates crack Windows XP Service Pack 1
  • [165789] Cable modem owners hack for free cable TV
  • [136484] HITB - Now wireless
  • [134346] HITB - mobile edition
  • [127970] Want to add hackinthebox.org content to your site?
  • [124006] Hacking Windows Shares from Linux with Samba
  • [105570] WinXP product activation cracked: totally, horribly, fatally
  • [79209] Cable Modem Hacking Tricks Uncapped Online
  • [73663] Hotmail Hacker X-Edition - The BEST hotmail account hacker there is
  • [68197] How to bypass the new Windows Genuine Advantage (WGA) check
  • [68157] Anatomy of Brute Force Attacks
  • [68132] Wireless Security & Hacking
  • [65160] The occasional hacking of web applications
  • [60036] Issue #25
  • [58745] Windows XP Service Pack 1 (again)
  • [58038] Issue #27
  • [57908] Issue #28
  • [57352] Issue #32
  • [56319] Issue #26
  • [54995] Little-Known DOS Commands That Have Saved My Ass
  • [54994] Dreamcast Underground
  • [54607] Issue #31
  • [54467] Issue #29
  • [54234] Issue #30
  • [51843] Hotmail ‘bug’ has MSN scratching its head
  • [51440] Myths about TCP Spoofing
  • [49204] Guide to ARP Spoofing
  • [46969] WinXP activation: what happens under the covers?
  • [46934] MAC Addressing and ARP Functionality
  • [46892] A Guide To A New Generation of Phreaking - Part 1
  • [46817] IRC Chat Page
  • [45058] Review: Mac OS X x86 10.4.1 & 10.4.3
  • [44036] NetBios Shares -- Cracking Windows Machines
  • [43597] iTunes 7 DRM Already Cracked
  • [42512] State of the Hack Awards #2
  • [42000] Footprinting: The Basics of Hacking
  • [41878] Camouflaging Nmap Scans
  • [39303] Net Stat - An over look at market out locked commands
  • [38911] Dreamcast Hacking
  • [37965] Cable Modem Hacking Goes Mainstream
  • [37848] Brute Force - The Attackers Last Resort
  • [36488] How to Build a Simple Wireless Authenticated Gateway (SWAG) Using OpenBSD
  • [35590] Raw Socket Access in Windows XP
  • [34698] DSniff: Use and Abuse
  • [33636] The Tuxtendo's Tuxkit Rootkit Analysis
  • [32959] Review of Yellow Dog Linux 3.0
  • [30053]  MySpace Music Player Hacked
  • Login
     



     


     Log in Problems?
     New User? Sign Up!


    Last 15 Postings to HITB Forum

    Packet Storm Security Latest
    · SSRT071403.txt
    HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running ftp. The vulnerability could be exploited remotely to create a Denial of Service (DoS). The Denial of Service (DoS) affects the ftp server application only.
    · ibdmicro-sql.txt
    IBD Micro CMS version 3.5 suffers from a SQL injection vulnerability that allows for login bypass.
    · dsa-1574-1.txt
    Debian Security Advisory 1574-1 - Several remote vulnerabilities have been discovered in the Icedove mail client, an unbranded version of the Thunderbird client. moz_bug_r_a4 discovered that variants of CVE-2007-3738 and CVE-2007-5338 allow the execution of arbitrary code through XPCNativeWrapper. moz_bug_r_a4 discovered that insecure handling of event handlers could lead to cross-site scripting. Boris Zbarsky, Johnny Stenback, and moz_bug_r_a4 discovered that incorrect principal handling can lead to cross-site scripting and the execution of arbitrary code. Tom Ferris, Seth Spitzer, Martin Wargers, John Daggett and Mats Palmgren discovered crashes in the layout engine, which might allow the execution of arbitrary code. georgi , tgirmann and Igor Bukanov discovered crashes in the Javascript engine, which might allow the execution of arbitrary code.
    · rdesktoppdu-overflow.txt
    rdesktop version 1.5.0 BSS overflow vulnerability proof of concept exploit that makes use of process_redirect_pdu().
    · bigace-rfi.txt
    BIGACE version 2.4 suffers from multiple remote file inclusion vulnerabilities.
    · nipper-0.11.7.tgz
    nipper is a Network Infrastructure Configuration Parser. nipper takes a network infrastructure device configuration, processes the file and details security-related issues with the configuration together with detailed recommendations. nipper was previous known as CiscoParse. nipper currently supports Cisco switches (IOS), Cisco Routers (IOS), Cisco Firewalls (PIX/ASA/FWSM) and Juniper NetScreen (ScreenOS). Output is in HTML, Latex, XML and Text. Encrypted passwords can be output to a John-the-Ripper file for strength testing.
    · nipper-0.11.7.zip
    nipper is a Network Infrastructure Configuration Parser. nipper takes a network infrastructure device configuration, processes the file and details security-related issues with the configuration together with detailed recommendations. nipper was previous known as CiscoParse. nipper currently supports Cisco switches (IOS), Cisco Routers (IOS), Cisco Firewalls (PIX/ASA/FWSM) and Juniper NetScreen (ScreenOS). Output is in HTML, Latex, XML and Text. Encrypted passwords can be output to a John-the-Ripper file for strength testing. This is the Windows version.
    · zeuscart-sql.txt
    ZeusCart versions 2.0 and below suffers from a remote SQL injection vulnerability in category_list.php.


    Topics
    · All topics
    · AMD News (May 07, 2008)
    · Apple News (May 12, 2008)
    · Articles (Feb 13, 2006)
    · Ask Us (Feb 01, 2003)
    · Audio/Video (May 07, 2008)
    · Encryption (May 08, 2008)
    · Games (May 12, 2008)
    · Hardware (May 10, 2008)
    · HITB News (Dec 03, 2007)
    · Industry News (May 12, 2008)
    · Intel News (Apr 29, 2008)
    · Law and Order (May 12, 2008)
    · Linux (May 12, 2008)
    · Microsoft (May 09, 2008)
    · Networking (May 06, 2008)
    · PDAs (Feb 09, 2007)
    · Privacy (May 12, 2008)
    · Red Hat (May 07, 2008)
    · Science (Apr 28, 2008)
    · Security (May 12, 2008)
    · Software & Programming (May 12, 2008)
    · Spam (May 12, 2008)
    · Technology (May 03, 2008)
    · Transmeta (Jul 07, 2007)
    · Viruses & Malware (May 08, 2008)
    · Wireless (May 01, 2008)

    HITB Affiliates

    Latest Advisories from Xatrix