HackDig : Dig high-quality web security articles for hacker

KNXmap: A KNXnet/IP Scanning and Auditing Tool

Users of the KNX, a standard for home automation bus systems, may already have come across KNXnet/IP (also known as EIBnet/IP): It is an extension for KNX that defines Ethernet as a communication medium for KNX which allows communication with KNX buses over IP driven networks. Additionally, it enables one to couple multiple bus installations over IP gateways
Publish At:2016-09-05 10:50 | Read:4417 | Comments:0 | Tags:Announcements Tools Uncategorized IoT KNX python

Visualizing 2014 Attack Data

Leveraging the data and threat intelligence derived from our massively distributed and global DNS infrastructure, OpenDNS saw more than 2% of the world’s Internet connections, blocked more than 80,000,000 malicious requests per day, and ensured quick and reliable DNS resolution for more than 50 million active users daily in 196 countries. As a result we at O
Publish At:2015-02-20 11:30 | Read:3162 | Comments:0 | Tags:Announcements News OpenDNS OpenGraphiti Security Graph Secur

Disinformation of Charlie Hebdo: Analyzing a Fake BBC News Site

You may have noticed that a few media outlets have been reporting that a fake BBC website was setup to spread disinformation regarding the recent Charlie Hebdo attacks in Paris, France.On January 12, 2015 our advanced threat protection flagged the bbc-news[.]co[.]uk domain as a suspicious site. While we can’t say definitively what the motives are of the oper
Publish At:2015-01-14 05:25 | Read:6234 | Comments:0 | Tags:Announcements Threat Discovery charlie hebdo disinformation

Internet of Things (IoT) meets the Internet of Holidays (IoH)

As the OpenDNS Security Labs team took some much needed time off, we found ourselves wondering what “toys” would be connected to the Internet throughout the holiday season, and what traffic patterns would emerge as a result. This blog post will detail some of our findings through the lens of the Internet of Things (IoT) connected devices, home au
Publish At:2014-12-29 23:35 | Read:3020 | Comments:0 | Tags:Announcements News OpenDNS Security Research

OpenDNS to Host the No Big Thing (NBT) Conference

With BayThreat 2014 being cancelled, OpenDNS has offered to host the first day of the two day No Big Thing (NBT) conference. In a short time, the organizers of the event have had an amazing group of speakers, sponsors, and volunteers help organize a great hacker conference. The event is currently at capacity but there is a waitlist that anyone can add themse
Publish At:2014-12-02 17:30 | Read:3990 | Comments:0 | Tags:Announcements Events News OpenDNS Security Community Securit

IRISSCon 2014 Recap

Last week we had the pleasure of speaking at the 6th Irish Reporting and Information Security Service Computer Emergency Response Team (IRISSCERT) Cyber Crime Conference (IRISSCon) in Dublin, Ireland. IRISSCERT is an independent, not-for-profit company, limited by guarantee, and  founded in 2008 to provide a range of free services to Irish businesses and con
Publish At:2014-11-25 23:15 | Read:6092 | Comments:0 | Tags:Announcements Events News OpenDNS Security Community Securit

Disclosed: XSS Vulnerability in IBM WebSphere Application Server Integrated Solutions Console

An old (but still used) version of the IBM WebSphere Application Server (WAS) Integrated Solutions Console administrative application–used as the administrative console to configure and administer the WebSphere Application Server–contains a reflected cross-site scripting vulnerability.The full details are released over at OSVDB. The affected vers
Publish At:2014-09-05 13:40 | Read:4926 | Comments:0 | Tags:Announcements Security Technology Web cross-site scripting I

You Can’t Log Out of Pinterest or Instagram – Django Web Framework Security Weakness

The Django Web application framework made to help you build websites fast offers a session storage mechanism that does not allow a visitor to fully terminate their session when they log out. Though not the default storage mechanism — as is the case with Ruby on Rails — it is an option. I found that at least Pinterest and Instagram use this vulner
Publish At:2014-08-13 07:53 | Read:3463 | Comments:0 | Tags:Announcements Do-it-yourself DIY Education Security Technolo

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud