Milw0rm site was dead and were no activity/posts for almost a month.

Some days later there was a roumer that “Str0ke is dead”

After the rumor he himself relieved that he is alive..   lol

An unknown site inj3ct0r.com came suddenly telling that all the archive is moved to this site and are accepting exploits from public.

Now Offensive Security together with Gerix is picking up from the place Milw0rm left, and will be maintaining a new exploit archive collection which will be open to the public.  Offensive security will be taking all the  submissions from the public in the future as per their post in the blog.

Read more »

Open Source Pen-testing tool gets commercial backing

Vulnerability management firm Rapid7 has acquired Metasploit, the popular open source penetration testing tool. Read more »

Hi guys,
I’m proud to release the 3rd version of crack.pl. The biggest of the added features is
Almost instant rainbow table lookup(sample tables ziped with the 3rd version) and support for lm windows hash.I will continue working with the svn. A planned feature is to make an online script that will interact with my(or any other pc) to crack the hash from anywhere. I’ve come to this idea as i had obtained a hash but didn’t have access to my pc but only to my mobile that has internet. I’ll see what i can do. You can download the 3rd version from code.google.com/p/kalgecin

Well this is not much of a off-topic post. We all are aware that challenging mental activities such as puzzles can help preserve brain function, but now a recent study showed that even searching on Internet can help keeping brain active. ”

Small, whose research appears in the American Journal of Geriatric Psychiatry says
Read more »

Well we discussed an overview about click-jacking previously. This time on same lines, a researcher has given a PoC about how can clickjacking be used to hack into victim’s audio and video device (webcam). Well this time GuyA.Net’s PoC preys on Adobe’s Flash Player Setting Manager.

He blogged:that “I’ve written a quick and dirty Javascript game that exploit[s] just that, and demonstrate[s] how an attacker can get… hold of the user’s camera and microphone. This can be used, for example, with platforms like ustream, justin and alike, or to stream to a private server to create a malicious surveillance platform”. The exploit essentially turns the browser into a “surveillance zombie,” he added.

nice piece of cartoon…

Came across this funny cartoon … his mom must be proud of him.