Building secure systems is difficult. It would be nice if we had a bunch of well-designed crypto building blocks that we could assemble in all sorts of ways and be certain that they would, no matter what, yield a secure system overall. There are, in fact, folks working on such things at a theoretical level…
Seccomp, une sandbox intégrée au noyau Linux…
w3af is a Web Application Attack and Audit Framework. The project's goal is to create a framework to find and exploit web application vulnerabilities that
Firefox is a popular web browser from Mozilla. Popularity of Firefox is not only because it's a good web browser, it also supports add-ons to enhance the f
Weaponized stealth tiny web shell
RIPS est un logiciel qui permet de faire auditer la sécurité d'un code PHP et de détecter es failles qu'il peut contenir
A fast password cracker for Unix, Windows, DOS, BeOS, and OpenVMS, with support for Unix, Windows, and Kerberos AFS passwords, plus a lot more with contributed patches
Web application firewalls (WAF’s) are part of the defense in depth model for web applications. While not a substitute for secure code, they o...
This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a specially crafted image file. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Tips for a Debian GNU/Linux System Administrator.