Introduction to Metasploit Video
The Metasploit Framework is a key resource for security assessors. Whether you’re goal is to become ...
Continue Reading
Granular Privacy Controls
Have you seen glympse.com? It’s a location-sharing site designed to let users share their GPS data ...
Continue Reading
What Do YOU Think About Privacy?
“What do you think about privacy?” That’s the question I asked my wife last week. We had just ...
Continue Reading
Intercepting DNS
Recently during a penetration test, I discovered a Linksys WRT54G wireless router that had been ...
Continue Reading
Why Target's Breach Included PIN Data
encryption |
PCI |
data breach |
target
Last Friday Target issued an update acknowledging that encrypted PIN data were included in the data ...
Continue Reading
Secure Ideas is Offering a Free Secure Coding Class
SECURE IDEAS IS OFFERING A FREE SECURE CODING CLASS You see it the news all the time. Websites are ...
Continue Reading
Professionally Evil Toolkit - Recon-ng
The first stage of almost every successful penetration test is the reconnaissance phase. During ...
Continue Reading
Facebook Removes Privacy Settings (or Why it's hard to hide information on the Internet)
A few weeks ago Facebook announced the removal of a “Search” setting. That’s their marketing term ...
Continue Reading
Security Tubthumping
I have a friend who is an alcoholic. A few weeks ago after 5 years of sobriety, she stumbled and ...
Continue Reading
Comparing Authorization Levels with Burp's Compare Site Map feature
Burp Suite from Portswigger.net is a fantastic web app testing tool that we use regularly at Secure ...
Continue Reading
Defending Against Pass-the-Hash (PtH) Attacks
Pass-the-Hash (PtH) attacks have become probably the most common form of credential attacks used in ...
Continue Reading