Hi All

Win32/Conficker.B is a worm that infects other computers across a network by exploiting a vulnerability in the Windows Server service (SVCHOST.EXE). If the vulnerability is successfully exploited, it could allow remote code execution when file sharing is enabled. It may also spread via removable drives and weak administrator passwords. It disables several important system services and security products.Remember even one unpatched machine is enough to have this worm spread through the entire network.Ms08-67 worm is spreading infection over millions of computers.

http://www.f-secure.com/weblog/archives/00001579.html

Read more »

Are you a regular Metasploit user?  Tired of scanning a host and tryout different vulnerabilities? Can’t get autopwn to work? It’s not enough? Well guess what?

Use MetaScanner!!!

What is it? It’s a script in ruby script that uses nmap’s output to compare to available exploits in metasploit. This little scanner is still young and need help and suggestions to make it a good one.

Please note that this is not a VULNERABILITY scanner but an EXPLOIT scanner limited to Metasploit exploits.
Feel free to download it and a user guide from :
http://kalgecin.110mb.com

Read more »

Recent outbreak of MS08-67 worm, Downadup/Conflicker has already infected more than 9 million PCs. A special thing about this Microsoft Security Bulletin MS08-67 was that it was released out-of-band, it was given an “Exploitability Index Assessment” of “1 – Consistent exploit code likely” and it allows for Remote Code Execution, in numerous versions of Windows (particularly critical for 2000, XP, and Server 2003).

Read more »

Today, Wikipedia turns 8. Happy Birthday Wiki!!

I assume everyone must be aware what Wikipedia is? For those who are not aware, Wikipedia is a free encyclopedia with millions of articles contributed collaboratively using Wiki software, in dozens of languages. It also contains hundreds of Wikibooks , Wiktionary, Wikisource, Wikiversity, Wikispecies and lot more . Wow!! That’s really a big contribution to the open knowledge base.

Read more »

Microsoft has released its MS09 series by patching a highly critical SMB vulnerability affecting Win2k, Win2k3, Winxp and even Vista and Win2k8.

Microsoft ratings are as mentioned below:

Read more »

Hey there guys… !!!

I’m back after a long long time….. Those who know me, know the reason for this outage….. And for those who are new to this site… well.. this is Ne0.

So let me now start with my today’s post… As you all might have already read the title…. Malicious Cryptography… or Cryptovirology. Ever heard this word before ??? Those who are aware of this term, must be aware of its concept and working. And those who are unaware, read on…………..

Read more »

In an interview with GMZ, the 18 year old confessed that he had access to Twitter’s admin console. He also helped himself gain access to few high profile requests.

Check this out.

Read more »

Similar to  last year, FBI has arranged second round of Cryptanalysis contest.

Hope someone would find this interesting!!

Recently researches were able to find a loop hole in SSL certificate implementation which could could make any secure website (relying on md5 hashing of CA certificates) vulnerable to nearly undetectable phishing attack.

To brief the attack:

Read more »