SEARCH RESULTS
 
Showing 1-5 of 5 records
1
 
Expand article

Limiting Process Privileges Should Be Easier

2007-11-09 10:00:00 by Security Retentive in Security Retentive
 
...uid dedicated to this process ID. This can be as simple as adding the process ID to a base uid, as long as other system-administration tools stay away from the same uid range Ensure that nothing is running under the uid: fork a child to run setuid(targetuid), kill(-1,SIGKILL), and exit(0), and then check that the child exited normally...
 
Tags: process, uid, effective process sandbox, kill, prohibit kill, uid range, prohibit, privileges, target uid
 
 
 
 
Expand article

Orkut XSS Worm

2007-12-20 16:18:37 by RSnake in ha.ckers.org web application security lab
 
...uid Cookie: -xxxxxxxxx Pragma: no-cache Cache-Control: no-cache Content-Length: 98 POST TOKEN=0B57493EBE09C74A3D69298F67635479&signature=Bm1YihIUAe5I%2BAvfFH7v4bjtdrI%3D&Action.join POST request sent by the worm to submit itself to the scrapbook of the victims friends POST /Scrapbook.aspx HTTP/1.1 Host: www.orkut.com User-Agent: Mozilla/5.0...
 
Tags: orkut, worm, post, community, orkut community, post scrapbook, xss worm, post requests, worm code
 
 
 
 
Expand article

Anton Security Tip of the Day #16: Virtually There - Journey Into VMWare ESX Log Analysis

2008-08-25 12:11:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...uide for VMWare ( here ) and DISA STIG for virtual machines ( here ) both mandate collection and analysis of VM platform logs; none goes into enough details on what to look for in logs. Let's try to shed some light on security-focused log analysis of VMWare ESX v. 3.x logs First, at least until ESXi becomes the default choice, one needs to...
 
Tags: vmware, vmware esx, analyze vmware logs, analyze, vmware esx logs, esx, security tip, anton security tip, user
 
 
 
 
Expand article

Serving Malware Through Advertising Networks

The Article has images
2008-02-18 10:58:53 by HASH0x8bfe2fc in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...uid=160 (72.232.241.20 validall.com/portal.php?ref=kamilet (207.150.179.58 feisearch.com/portal.php?r=0&username=fxlayer (63.246.133.63 g2xml.com/portal.php?r=0&username=kamilet (74.86.191.98 xtraff.biz/ad3.htm loads utracker.pl/stat.php xtraff.biz/filtercountry.php Upon registering at the second affiliate program, the participant is asked...
 
Tags: malware, php attempt, php, neosploit malware kit, xtraff, exploit, live exploit urls, urls, htm
 
 
 
 
Expand article

Lazy Summer Days at UkrTeleGroup Ltd

The Article has images
2008-07-22 07:12:02 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...uid=06f80eaf-94d7-4b8b-9cf0-5c6f75d2c69f&tm=1211198022 (85.255.118.171), and the scammy ecosystem continues using the same hosting provider. The rest of the rogue tools are also using the same subdomain structure, and IP, stat.antivirusxp2008 .com (85.255.118.172), stat.antivirxp08 .com (85.255.118.172), stat.antivirusxp08 .com...
 
Tags: ukrtelegroup, codecs, fake codecs simultaneously, rogue security software, ukrtelegroup ukrtelegroup, fake codecs, home, home stat, scammy ecosystem
 
 
 
 
 
Showing 1-5 of 5 records
1
 
TOP SEARCH
Expand / MinimizeClose Widget
  •  
RECENT SEARCH
Expand / Minimize
  •  
RELATED VIDEO
Expand / Minimize
SecurityRatty FAQ
Sergey Zarubin, 31yo
CISSP, CCSP
Moscow, Russia