SEARCH RESULTS
 
Showing 1-10 of 183 records
 
Expand article

WCF Security Guidance from P&P

2008-04-04 06:09:00 by Keith Brown in Security Briefs
 
...Original Caller in WCF calling from Web Application How To - Impersonate the Original Caller in WCF calling from Windows Forms How To - Use netTcpBinding with Windows Authentication and Transport Security in WCF from Windows Forms How To - Use SQL Role Provider with Username Authentication in WCF from Windows Forms How To - Use SQL Role...
 
Tags: wcf, wcf security, authentication, username authentication, windows forms, host wcf, windows authentication, message security, sql role provider
 
 
 
 
Expand article

The FirePack Exploitation Kit - Part Two

The Article has images
2008-04-27 04:27:00 by HASH0x8ae4cf0 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...original one, which in February was $3000, speaks for itself. Firepack's original version was a great example of biased exclusiveness on behalf of the malicious parties, wanting to quickly cash in by pitching a new and undetected malware kit, and literally zero differentiaton factor next to now commodity web malware exploitations kits such as...
 
Tags: nuclear malware kit, malware kit, kit, metaphisher malware kit, icepack malware kit, original firepack kit, malware exploitation kit, php, scanners result
 
 
 
 
Expand article

WCF Security Guidance from P&P

2008-04-04 12:09:00 by keith-brown in Security Briefs
 
...Original Caller in WCF calling from Web Application How To - Impersonate the Original Caller in WCF calling from Windows Forms How To - Use netTcpBinding with Windows Authentication and Transport Security in WCF from Windows Forms How To - Use SQL Role Provider with Username Authentication in WCF from Windows Forms How To - Use SQL Role...
 
Tags: wcf, wcf security, authentication, username authentication, windows forms, host wcf, windows authentication, message security, sql role provider
 
 
 
 
Expand article

WCF Security Guidance from P&P

2008-04-04 12:09:00 by keith-brown in Security Briefs
 
...Original Caller in WCF calling from Web Application How To - Impersonate the Original Caller in WCF calling from Windows Forms How To - Use netTcpBinding with Windows Authentication and Transport Security in WCF from Windows Forms How To - Use SQL Role Provider with Username Authentication in WCF from Windows Forms How To - Use SQL Role...
 
Tags: wcf, wcf security, authentication, username authentication, windows forms, host wcf, windows authentication, message security, sql role provider
 
 
 
 
Expand article

Is Your Amazon Machine Image Vulnerable to SSH Spoofing Attacks?

The Article has images
2008-07-14 16:26:40 by Craig Balding in Cloud Security
...originally discussed in the Amazon developer forums. Amazon documentation was revised to reflect the change as follows Amazon EC2 public AMI s ( Amazon Machine Image ) generate unique SSH ( Secure Shell ) host keys each time you launch an instance. This enables you to get the host SSH keys from the console output and verify the host to which...
 
Tags: ssh, limit ssh access, ssh host keys, host keys, ssh user keys, amazon, host ssh keys, amazon machine image, initial ssh connection
 
 
 
 
Expand article

Email Hacking Going Commercial - Part Two

The Article has images
2008-08-08 14:31:54 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...original password. That mean the current active password. Your victim/target will not realized that she/he has been hacked. NEVER, we said How I will pay you, I do not have credit card or I do not want to give my credit card number on net Well, you can use international money transfer service such as Western Union (www.westernunion.com) or...
 
Tags: crack password, crack, crack email password, email password, password, original password, current password, password retrieval, email
 
 
 
 
Expand article

Applying SDL Principles to Legacy Code

2008-10-27 17:24:00 by sdl in The Security Development Lifecycle
 
...original developers for such features have often moved on, leaving no subject matter experts to drive reviews. The astute reader will ask How do I apply the principles of the Microsoft SDL to legacy code when I have no development resources and nobody knows how it works The answer is Start small, and build expertise over time A Rising Tide...
 
Tags: legacy code, mature security processes, security processes, cross-component security requirements, security requirements, processes, code, requirements, legacy code poses
 
 
 
 
Expand article

Modified Zeus Crimeware Kit Gets a Performance Boost

The Article has images
2008-11-03 14:12:30 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...original author of Zeus , but by third parties filling in the gaps he has left open. The very nature of open source web based malware exploitation kits is one of the key factors for the ongoing convergence of traffic management, exploits serving, ddos, and cybercrime as a service features into a simplified cybercrime platform available on...
 
Tags: fixed, sql injection fixed, zeus, fixed sql injection, upload, file upload purposes, file, function improvement, function
 
 
 
 
Expand article

Links for 2009-01-08 [del.icio.us]

2009-01-09 00:00:00 by Editor in Anton Chuvakin Blog -
 
...original NASA licensing deal is part of the sale There is No Money in Phishing (But It Still Won't Go Away) - ReadWriteWeb
 
Tags: tower, tower abruptly, tower customers, tower website, siem market narrows, original nasa, sale, technology platform, company