2016

securitynews

Thursday 2 June 2016 (2016-06-02)

🇬🇧

Pastejacking vs clipboard hijacking

Clipboard hijacking# It as been possible for a long time to use css (-9999px position trick) to append malicious content to the clipboard. Users doesn't notice anything and may execute unwanted comman

writeups

Thursday 26 May 2016 (2016-05-26)

🇬🇧

Writeups - Crypto - MindBlown

Information# Version# Date By Version Comment 05/06/2016 noraj 1.0 Creation CTF# Name : BackdoorCTF 2016 Website : https://backdoor.sdslabs.co Type : Online Format : Jeopardy CTF Time : lin

writeups

Thursday 26 May 2016 (2016-05-26)

🇬🇧

Writeups - Crypto - Oups it's all mixed

Information# Version# Date By Version Comment 03/05/2016 noraj 1.0 Creation Name# Oups it's all mixed Category# Cryptography Wording# Decipher the following flag: eGqaelr557dK4BbK47dS17dK68c

security

Tuesday 19 April 2016 (2016-04-19)

🇬🇧

c99.php : A backdoored backdoor

C99 is a PHP webshell. Attackers uploads it on web server in order to get information and above all execute commands with web user privileges (ex: www-data). This webshell is protected by a customizab

securitynews

Monday 18 April 2016 (2016-04-18)

🇬🇧

Tracking down Tor users with mouse movements

Jose Carlos Norte, security researcher, wrote a post detailing how Tor Browser users can be uniquely fingerprinted using the mouse wheel, mouse speed, a CPU benchmark, and “getClientRects”. POCs (proo

securitycentos

Thursday 7 April 2016 (2016-04-07)

🇬🇧

How to disable SSH login for the root user

Create a new user. In the following example, we will name it bob. root# useradd -m bob root# id bob uid=1000(bob) gid=1000(bob) groupes=1000(bob) Set the password for the new user. root# passwd bo

securitynews

Wednesday 6 April 2016 (2016-04-06)

🇬🇧

FreeBSD 10.3 is here

FreeBSD update to version 10.3. Main improvments: 15 security flaws patched UEFI support Gnome 3.16.2 Full Release Notes on official FreeBSD website.

misc

Wednesday 6 April 2016 (2016-04-06)

🇬🇧

OpenBSD 5.9 is here

OpenBSD update to version 5.9. Main improvments: Pledge - a new mitigation mechanism process in restricted mode security improved 70% of user components converted WiFi 802.11n multithread network

securitycentos

Thursday 3 March 2016 (2016-03-03)

🇬🇧

How to change OpenSSH port on CentOS 7

Before beginning# These are the steps to do on the SSH server. Be sure to do all the steps before exiting SSH connection if you are connected via SSH. This config was tested for default CentOS 7 iso.

2015

securitywindows

Sunday 20 December 2015 (2015-12-20)

🇬🇧

Disable NetBIOS in CLI with WMIC

NetBIOS is a very old protocol wich is no more interesting today except in some particular cases. But it has a large number of security flaws. We can use WMIC (Microsoft Windows Management Instrumenta

Tag: security