Article: Sucuri WAF XSS Filter Bypass - published about 9 years ago.
Content: Introduction Sucuri Cloud Proxy is a very well known WAF capable of preventing DOS, SQL Injection, XSS and malware detection and prevention. It acts as a reverse proxy which means that all the traffic sent to an application behind Sucuri WAF would be first sent to Sucuri's network which (based upon it's signature database) would check if a particular req...
Copy Link: http://www.rafayhackingarticles.net/2015/04/sucuri-waf-xss-filter-bypass.html   
Published: 2015 04 25 14:10:00
Received: 2024 02 17 13:21:46
Feed: Ethical Hacking - Rafayhackingarticles
Source: Ethical Hacking - Rafayhackingarticles
Category: Cyber Security
Topic: Cyber Security

Cyber Tzar Free Score Certificate

Article: Operation RussianDoll: Adobe & Windows Zero-Day Exploits Likely Leveraged by Russia’s APT28 in Highly-Targeted Attack - published about 9 years ago.
Content: FireEye Labs recently detected a limited APT campaign exploiting zero-day vulnerabilities in Adobe Flash and a brand-new one in Microsoft Windows. Using the Dynamic Threat Intelligence Cloud (DTI), FireEye researchers detected a pattern of attacks beginning on April 13th, 2015. Adobe independently patched the vulnerability (CVE-2015-3043) in ...
Copy Link: http://www.fireeye.com/blog/threat-research/2015/04/probable_apt28_useo.html   
Published: 2015 04 18 16:10:00
Received: 2021 06 06 09:05:11
Feed: FireEye Blog
Source: FireEye Blog
Category: Cyber Security
Topic: Cyber Security

Article: CSP 2015 Capture The Flag Writeup - published about 9 years ago.
Content: On 11th April Giuseppe Trotta and myself organized a CTF (Capture The Flag) competition for Cyber Secure Pakistan (A conference that combines all the stakeholders). The challenge was hosted on hack.me and contained 9 different challenges, some challenges itself contained sub-challenges. Overall, we received great feedback from vast majority of participan...
Copy Link: http://www.rafayhackingarticles.net/2015/04/csp-2015-capture-flag-writeup.html   
Published: 2015 04 18 07:31:00
Received: 2024 02 17 13:21:46
Feed: Ethical Hacking - Rafayhackingarticles
Source: Ethical Hacking - Rafayhackingarticles
Category: Cyber Security
Topic: Cyber Security

Cyber Tzar Score Summary

Cyber Tzar Your Score Explained

Article: Oracle Critical Patch Update Advisory - April 2015 - published about 9 years ago.
Content:
Copy Link: http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html    
Published: 2015 04 14 19:30:54
Received: 2021 06 06 09:03:27
Feed: Oracle Security Alerts
Source: Oracle Security Alerts
Category: Alerts
Topic: Vulnerabilities

Article: 3009008 - Vulnerability in SSL 3.0 Could Allow Information Disclosure - Version: 3.0 - published about 9 years ago.
Content: Revision Note: V3.0 (April 14, 2015): Revised advisory to announce with the release of security update 3038314 on April 14, 2015 SSL 3.0 is disabled by default in Internet Explorer 11, and to add instructions for how to undo the workarounds.Summary: Microsoft is aware of detailed information that has been published describing a new method to exploit a vulner...
Copy Link: https://technet.microsoft.com/en-us/library/security/3009008   
Published: 2015 04 14 17:00:00
Received: 2022 04 14 18:03:37
Feed: Latest Security Advisories
Source: Latest Security Advisories
Category: Alerts
Topic: Vulnerabilities

Article: 3045755 - Update to Improve PKU2U Authentication - Version: 1.0 - published about 9 years ago.
Content: Revision Note: V1.0 (April 14, 2015): Advisory published.Summary: Microsoft is announcing the availability of a defense-in-depth update that improves the authentication used by the Public Key Cryptography User-to-User (PKU2U) security support provider (SSP) in Windows 8.1, Windows Server 2012 R2, and Windows RT 8.1. The improvement is part of ongoing efforts...
Copy Link: https://technet.microsoft.com/en-us/library/security/3045755   
Published: 2015 04 14 17:00:00
Received: 2022 04 14 18:03:37
Feed: Latest Security Advisories
Source: Latest Security Advisories
Category: Alerts
Topic: Vulnerabilities

Cyber Tzar Gold Score Certificate

Article: Apple fixes security vulnerabilities in Safari, OS X, iOS and Apple TV - published about 9 years ago.
Content:
Copy Link: http://www.livehacking.com/2015/04/09/apple-fixes-security-vulnerabilities-in-safari-os-x-ios-and-apple-tv/   
Published: 2015 04 09 07:37:20
Received: 2021 06 06 09:04:45
Feed: LIVE HACKING
Source: LIVE HACKING
Category: Cyber Security
Topic: Cyber Security

Article: sshDoor (good ssh backdoor) - published about 9 years ago.
Content: Usage: ./install passwrod port ./install jancok 33   open putty ssh port : 33 login : root password : jancok [root@serv ~]# uname -a;id Linux serv.test.com 2.6.18-53.1.13.el5 #1 SMP Tue Feb 12 13:01:45 EST 20010 i686 i686 i386 GNU/Linux uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel) [roo...
Copy Link: http://hacking-share.blogspot.com/2015/04/sshdoor-good-ssh-backdoor.html   
Published: 2015 04 03 03:42:00
Received: 2024 02 07 05:20:19
Feed: Hacking Share
Source: Hacking Share
Category: Cyber Security
Topic: Cyber Security

Cyber Tzar Score Analysis

Article: Local Root Exploit For Linux Kernel 2.6.32 (precompile) - published about 9 years ago.
Content: Note:  Its a pre-compiled exploit and has been verified for list servers. It might working on other 2.6.32-X kernels too. So, test it and update us in comments. Thanks. Following is the list of vulnerable kernels which can be rooted with our exploit. Vulnerable Kernels: Linux localhost.domain 2.6.32-358.2.1.el6.x86_64 #1 SMP Wed Mar 13 00:26:49 UT...
Copy Link: http://hacking-share.blogspot.com/2015/04/local-root-exploit-for-linux-kernel.html   
Published: 2015 04 02 08:59:00
Received: 2024 02 07 05:20:19
Feed: Hacking Share
Source: Hacking Share
Category: Cyber Security
Topic: Cyber Security

Cyber Tzar Risk Impact Distribution