Websec Cybersecurity Blog
Expert insights, trends, research findings, and best practices from our security team to help you strengthen your organization's security posture.
Ncrack and Nmap NSE development for offense and defense - DEFCON CHINA
Paulino Calderon (@calderpwn) represented Websec in the first edition in China of the world-renowned DEFCON event. Here we share all the material of your workshop.
Belkin Wemo Switch NMap Scripts
Belkin Wemo Switch Smart Plug is a network controlled power outlet. The current firmware version does not requiere authentication to switch the power ON or OFF or to gather information such as nearby wireless networks. Two NMap scripts have been published
New publication: Mastering the Nmap Scripting Engine
Our team's latest book, Mastering the Nmap Scripting Engine, has been published. Across ten chapters it walks readers from Lua fundamentals and the NSE API through writing advanced brute-force, parallelism, and vulnerability-detection scripts.
Special discount code for "Nmap 6: Network Exploration and Security Auditing Cookbook"
PacktPub has shared a limited-time discount code for our friends attending Hacker Halted USA 2012. Use code APMK1F for 20 percent off the print edition and 25 percent off the electronic edition of Nmap 6: Network Exploration and Security Auditing Cookbook.
Remote credential and configuration disclosure of Huawei HG5XX devices using Nmap.
A new NSE script called "http-huawei-hg5xx-vuln" has been added to Nmap which exploits a couple of vulnerabilities found in Huawei HG5XX modems.
Detecting and exploiting vulnerable PHP-CGI applications
A critical vulnerability affecting PHP applications which use the CGI interprerter was published which allows attackers to view the source code and execute code remotely.