blog.nibblesec.org
Nibble SecurityNibbleSecurity Blog
http://blog.nibblesec.org/
NibbleSecurity Blog
http://blog.nibblesec.org/
TODAY'S RATING
>1,000,000
Date Range
HIGHEST TRAFFIC ON
Saturday
LOAD TIME
2.7 seconds
16x16
32x32
PAGES IN
THIS WEBSITE
19
SSL
EXTERNAL LINKS
54
SITE IP
172.217.6.83
LOAD TIME
2.662 sec
SCORE
6.2
Nibble Security | blog.nibblesec.org Reviews
https://blog.nibblesec.org
NibbleSecurity Blog
blog.nibblesec.org
Nibble Security: June 2014
http://blog.nibblesec.org/2014_06_01_archive.html
I've forgotten your password, could you please remind me? An Overview of The Browser Hacker's Handbook. Only after you write a book you can understand two things:. Why your partner always deserves the first big THANKS. Why you will not write another book for at least the next 5 years. From Michał Zalewski and Web Application Obfuscation. From Mario Heiderich (friend and BHH technical editor, kudos! Something worth noting is that this is not a book about BeEF, which is mentioned multiple times but it's no...
Nibble Security: May 2014
http://blog.nibblesec.org/2014_05_01_archive.html
I've forgotten your password, could you please remind me? Nodejs Connect CSRF bypass abusing methodOverride middleware. In the previous post. I discussed the importance of well-written documentation and uncomplicated APIs suggesting that poor documentation and negligence should be considered as silent threats. Is now called csurf. Different names, same API. On 09/07/2013, this advisory was also published by the NodeSecurity. Post parameter or with the x-http-method-override. Appuse express.csrf() ...
Nibble Security: January 2013
http://blog.nibblesec.org/2013_01_01_archive.html
I've forgotten your password, could you please remind me? How to patch your Barracuda virtual appliance. It's today's "news" about backdoors found in multiple Barracuda gears. Basically, Barracuda appliances have multiple hardcoded system accounts and firewall rules specifically designed to allow remote assistance. If you want more gossip, you can read about it on KrebsOnSecurity. Or The H Online. A new old story. According to the original advisory,. The bug was discovered on 2012-11-20 by Stefan Viehböck.
Nibble Security: April 2014
http://blog.nibblesec.org/2014_04_01_archive.html
I've forgotten your password, could you please remind me? On web frameworks, built-in security mechanisms and common pitfalls. Modern web application frameworks are expected to provide built-in security mechanisms against common flaws, such as Cross-Site Request Forgery and injection attacks. Developers can benefit from these protections as they don't need to create ad-hoc defense mechanisms and they can rather focus on building features. Citing the OWASP Framework Security project. High impact security ...
Nibble Security: February 2013
http://blog.nibblesec.org/2013_02_01_archive.html
I've forgotten your password, could you please remind me? Effective AMF Remoting Message fuzzing with Blazer v0.3. After several weeks of extensive testing and debugging, Blazer v0.3. It's been a long ride since the first lines of code, back in 2011. In this post, I am going to present all new features and describe Tips&Tricks to make your AMF security testing even more effective. If you are not familiar with Blazer, have a look at the project page: http:/ code.google.com/p/blazer/. New to Burp Suite?
TOTAL PAGES IN THIS WEBSITE
19
128nops - life of a pentester: Migrating repository
http://128nops.blogspot.com/2015/07/migrating-repository.html
128nops - life of a pentester. Writing about pentesting and other security stuff. Because code.google.com will be finally deprecated really soon I've moved all my projects to github. Subscribe to: Post Comments (Atom). Carstein - currently working as a pentester/security analyst in some small company in Zurich. Sometimes writing code if forced. No free time, so 'hobby' section is empty. Google Online Security Blog. Gynvael.coldwind/ vx.log (pl). How I see the beauty around me. J00ru/ vx tech blog.
slightlyrandombrokenthoughts.blogspot.com
(Slightly) Random Broken Thoughts: Oracle Java Applet Clipboard Injection Remote Code Execution Vulnerability
http://slightlyrandombrokenthoughts.blogspot.com/2011/03/oracle-java-applet-clipboard-injection.html
Slightly) Random Broken Thoughts. The views expressed on this blog are my own and do not necessarily reflect the views of Oracle. Thursday, March 10, 2011. Oracle Java Applet Clipboard Injection Remote Code Execution Vulnerability. Multiple Java Clipboard Vulnerabilities for Applets. Java 6u23 and older. Additionally, with the TransferableProxy class, the clipboard can be used for privileged deserialization. Hijacking system clipboard upon user action. Should the user press CTRL C. This is achieved by ad...
slightlyrandombrokenthoughts.blogspot.com
(Slightly) Random Broken Thoughts: Java 6 update 26 is out
http://slightlyrandombrokenthoughts.blogspot.com/2011/06/java-6-update-26-is-out.html
Slightly) Random Broken Thoughts. The views expressed on this blog are my own and do not necessarily reflect the views of Oracle. Tuesday, June 07, 2011. Java 6 update 26 is out. I mapped some of the CVEs to these results. Oracle has released a security. Update for Java. If you have Java installed and haven't updated your Java yet, do it now. No, really. I'm not going on until you do. For the comparison, I'll be using my rather stale open source project reJ/rejava. The runtime - heart and soul of Java):.
128nops - life of a pentester: MutProxy
http://128nops.blogspot.com/2013/08/mutproxy.html
128nops - life of a pentester. Writing about pentesting and other security stuff. Recently I had very little time to write anything meaningful. New post are coming, slowly but steady. In the meantime I've stumbled upon short code at Gynvael page. It reminded me of a project I wrote some years ago for one assessment. So, what MutProxy does? 14 November 2013 at 11:54. Waiting for the list of wins with it;-). Subscribe to: Post Comments (Atom). Carstein - currently working as a pentester/security analyst in...
128nops - life of a pentester: August 2013
http://128nops.blogspot.com/2013_08_01_archive.html
128nops - life of a pentester. Writing about pentesting and other security stuff. Recently I had very little time to write anything meaningful. New post are coming, slowly but steady. In the meantime I've stumbled upon short code at Gynvael page. It reminded me of a project I wrote some years ago for one assessment. So, what MutProxy does? Subscribe to: Posts (Atom). Carstein - currently working as a pentester/security analyst in some small company in Zurich. Sometimes writing code if forced. No ...PortS...
slightlyrandombrokenthoughts.blogspot.com
(Slightly) Random Broken Thoughts: Java JFileChooser Programmatic Manipulation Vulnerability
http://slightlyrandombrokenthoughts.blogspot.com/2011/02/java-jfilechooser-programmatic.html
Slightly) Random Broken Thoughts. The views expressed on this blog are my own and do not necessarily reflect the views of Oracle. Sunday, February 06, 2011. Java JFileChooser Programmatic Manipulation Vulnerability. Java GUI Manipulation Vulnerability. JFileChooser and FormView allow unsigned applets to read file-system structure (file/folder names), renaming files and moving files. Affected Operating Systems (at least). Windows XP, Windows 7. Affected Java Versions (at least). Java 6 update 23. This is ...
slightlyrandombrokenthoughts.blogspot.com
(Slightly) Random Broken Thoughts: Trusted Method Chaining to a System.exit
http://slightlyrandombrokenthoughts.blogspot.com/2011/01/trusted-method-chaining-to-systemexit.html
Slightly) Random Broken Thoughts. The views expressed on this blog are my own and do not necessarily reflect the views of Oracle. Sunday, January 30, 2011. Trusted Method Chaining to a System.exit. More details on the chaining. The idea is to create a chain from an object's toString() method to com.sun.org.apache.bcel.internal.classfile.Utility.codeToString(), which has this confusing switch statement:. The toString() method calls Utility.codeToString(). The code to do that:. Code(1, 1, 0, 0, codebytes,.
slightlyrandombrokenthoughts.blogspot.com
(Slightly) Random Broken Thoughts: 06/01/2011 - 07/01/2011
http://slightlyrandombrokenthoughts.blogspot.com/2011_06_01_archive.html
Slightly) Random Broken Thoughts. The views expressed on this blog are my own and do not necessarily reflect the views of Oracle. Tuesday, June 07, 2011. Java 6 update 26 is out. I mapped some of the CVEs to these results. Oracle has released a security. Update for Java. If you have Java installed and haven't updated your Java yet, do it now. No, really. I'm not going on until you do. For the comparison, I'll be using my rather stale open source project reJ/rejava. The runtime - heart and soul of Java):.
slightlyrandombrokenthoughts.blogspot.com
(Slightly) Random Broken Thoughts: 01/01/2011 - 02/01/2011
http://slightlyrandombrokenthoughts.blogspot.com/2011_01_01_archive.html
Slightly) Random Broken Thoughts. The views expressed on this blog are my own and do not necessarily reflect the views of Oracle. Sunday, January 30, 2011. Trusted Method Chaining to a System.exit. More details on the chaining. The idea is to create a chain from an object's toString() method to com.sun.org.apache.bcel.internal.classfile.Utility.codeToString(), which has this confusing switch statement:. The toString() method calls Utility.codeToString(). The code to do that:. Code(1, 1, 0, 0, codebytes,.
TOTAL LINKS TO THIS WEBSITE
54
بلاگ پنل اس ام اس نیازپرداز
فواید برتر استفاده از تکنولوژی اس ام اس درصنعت مراقبتهای پزشکی. چرا باید تبلیغات کسب و کار خود را به سیستم پیام رسانی متنی مجهز کنیم؟ سه دلیل برای اینکه چرا سیستم پیامکی، فروش بیشتری برای شما فراهم می کند؟ پیامک انبوه به 5 دلیل می تواند روابط شما با مشتریان را تقویت کند. با توجه به فراگیر بودن استفاده از پیامک در هر نوع گوشی و در هر نقطه ازجهان، ارسال پیامک انبوه روشی بسیار کاربردی برای جذب مشتریان می باشد. در این مطلب به 5 دلیل برای استفاده از پیامک انبوه در ارتباط با مشتریان اشاره می کنیم. با توجه به ا...
Nibakure News
North Idaho Bed & Breakfast Association Blog
Tuesday, April 5, 2016. What goes on at an Idaho guest ranch in the spring? Western Pleasure Guest Ranch. Is open year round, with activities changing to reflect the seasons here in North Idaho. So what does happen around here in the spring? Here on the ranch. Retreats are also a popular event here with quilters, basket weavers and personal growth gatherings. Although there may still be some snow (or mud) on the ground, the barn is busy with activity. Our saddle horses. Means preparing the horses both ph...
Nibbleblog blog
Powerful engine for creating blogs, all you need is PHP to work. Very simple to install and configure (only 1 step). Buy me a beer. Is completely free and open source. If you use it and like it, you're very welcome to buy me a beer. Making a donation will motivate me to keep this project going and allow for further development. Thanks! Bludit - My new project. 13 June, 2015. I am working a new project called Bludit similar to Nibbleblog, has a lot of changes on the code and new ideas. 01 April, 2014.
NibbleIT | Blog
Official Blog of NibbleIT. Catholic Hymnal - Absent! Thursday, March 17, 2016. Tuesday, November 03, 2015. The wind of change is upon us. We at NibbleIT consult, always poised to take advantage of the changing technologies and the changing times have simply redesigned our website to reflect our current offerings. Always ready to bring you long lasting solutions, we have streamlined our service offerings to really…. Catholic Hymnal 2.0.1. Monday, August 03, 2015. Wednesday, July 22, 2015. Page 1 of 1.
Nibble Security
I've forgotten your password, could you please remind me? Defending against Java Deserialization Vulnerabilities. During a recent OWASP Meetup in San Francisco. I gave a presentation on Java Deserialization vulnerabilities focused on defense techniques for identifying and fixing this class of bugs. Download the slides deck: "Defending against Java Deserialization Vulnerabilities". While most of the content is based on the work of several Java Security aficionados ( @cschneider4711. XSS and other UI redre...
nibblestutorials.net
The Sponsored Listings displayed above are served automatically by a third party. Neither the service provider nor the domain owner maintain any relationship with the advertisers. In case of trademark issues please contact the domain owner directly (contact information can be found in whois).
Nibblish blog
This website uses cookies to ensure you get the best experience on our website. Top Tips for the Festive Season. Our top tips for the festive season. It’s that time of year when you are bombarded with sooo many sweet treats and rich foods, it is hard to escape it! From office treats to supermarkets to social gatherings. Well here are some top tips for a healthier Festive Season:. If you don’t do the buying online then definitely write a list and stick to it! Just remember make most things rather than buy...
Blog - Nibellion
Wednesday, January 28, 2015. So, this is happening. But before we come to that: Hello! Hope you are fine wherever you are right now. My name is Nasir - or as some know me on the internet, Nibel - and I am 24 years old, living in Germany - you know, always trying to push that Sauerkraut lifestyle to the next level and stuff, keeping it real - and currently developing this game. RAMMHEART. At least that’s what they say. But man, I fucking love creating stuff. I mean, I probably seem like a Neandertal when ...
NIBGeek
The Blog Of Nawfil Afif Nibir | The World, As I See It
The Blog Of Nawfil Afif Nibir. The World, As I See It. By Nawfil Afif Nibir. April 14, 2015. I know I am supposed to continue my story from the previous post, and that has been long overdue now. But me being me, I just can’t seem to get…. The Way It Was: Road To NDC. By Nawfil Afif Nibir. November 18, 2014. The post was originally written as a single post, then I decided to divide it into two parts and modify the titles, so I apologise for any discrepancy that you…. Blogging From Class, Using My Phone.
SOCIAL ENGAGEMENT