Websec Cybersecurity Blog
Expert insights, trends, research findings, and best practices from our security team to help you strengthen your organization's security posture.
Panoptic - A tool to exploit path traversal vulnerabilities
An overview of Panoptic, an open source penetration testing tool that automates the process of search and retrieval of common log and config files through path traversal vulnerabilities.
Special discount code for "Nmap 6: Network Exploration and Security Auditing Cookbook"
PacktPub has shared a limited-time discount code for our friends attending Hacker Halted USA 2012. Use code APMK1F for 20 percent off the print edition and 25 percent off the electronic edition of Nmap 6: Network Exploration and Security Auditing Cookbook.
Backdoor In Optical Fiber Device Alcatel-Lucent
The newest optical fiber devices offered by the ISP Infinitum have a backdoor which allow for full administration of these devices. This backdoor account is hidden by nature and does not allow for the password to be changed.
Mac2WepKey HHG5xx for iPhone
The popular Android tool for recovering default WiFi passwords on vulnerable Huawei HHG5xx routers is now available on iOS 5, letting jailbroken iPhone and iPad users scan for and connect to weak networks directly from the device.
Solutions for challenge 2B
A walkthrough of Challenge 2B from our SQL Injection series, including why a temporary table that stays out of information_schema forced participants to find creative ways to enumerate table and column names.
Solutions for challenge 2A
A walkthrough of the different approaches submitted for Challenge 2A in our SQL Injection challenge series, focusing on how the guest login and the user_id cookie open the door to privilege escalation.