The three faces of CSRF is a great presentation by Martin Johns as featured in DeepSec2007 in Vienna. I liked the real-life examples and it was really easy to read and follow :) The links are here:
http://www.databasement.net/csrf.html
Thanks for sharing Martin :)
United Arab Emirate's site for security news, latest security blog posts, security podcasts, hardware hacks and security related links.
Thursday, November 29, 2007
Tuesday, November 27, 2007
Al Gore's "An Inconvenient Truth Website" Hacked
Buy Viagra: Hackers Fox Al Gore by Hacking into An Inconvenient Truth Website. The hack is only visible in the source code though. So, no defacement this time... A very convenient hack :P But the site did contain links to a Viagra selling website as a part of the hack.
Saturday, November 24, 2007
aeCERT launches National Security Awareness Campaign in November
Read more about the campain at:
http://www.aecert.ae/securityawareness.html
Also, read the UAE Cyber Laws from aeCERT's website:
http://www.aecert.ae/preventionoftechcrimes.html
Wednesday, November 21, 2007
Tuesday, November 20, 2007
Arabic Version of Zone-h
Zone-h is starting a new mirror for its popular site that will cover the whole Arab world. Those who are interested in collaborating with Zone-H editorial staff can write to the worldwide mirror manager minor (minor@zone-h.org) , Arabic mirror managers Bassel Hamideh and Iyadh Houshi or Halfmoon (halfmoon@zone-h.org) , the coordinator of Zone-H international programs and business opportunities.
Link:
http://arab.zone-h.org/
Link:
http://arab.zone-h.org/
Monday, November 19, 2007
Mash RSS Feeds with Yahoo Pipes and more RSS Hacks video
To watch the video go here:
http://blip.tv/file/478814
http://blip.tv/file/478814
What's Next? Peer to Peer Botnets?
Darknet has a story about the World’s Biggest botnets. Apperently, there is already a P2P botnet that is starting to spread around.
OWASP Live CD V 2.1 and How to Run .iso in VMWare
Download and test the OWASP Live CD and burn the ISO image to CD. Alternatively, you can just run it in VMWare :) Here is how.
If you want to use it right away, I suggest this very basic XXS video if you haven't done this sort of stuff before.
If you want to use it right away, I suggest this very basic XXS video if you haven't done this sort of stuff before.
Saturday, November 17, 2007
SlingBox Hunting Script :)
Click Here for a short and sweet way to look for SlingBox streaming boxes. Great idea. I don't know anyone that's running a SlingBox without a password though :P but, hey... it is worth a try :) good effort!
Monday, November 12, 2007
Volunteer Lecturers Wanted
The Emirates Internet Group in cooperation and coordination with a number of local and national government agencies and private businesses will provide technical lectures in the field of Internet communications.
The lectures will address needs of the UAE labor market when it comes to computer skills and will cover ways to upgrade the employee's performance to meet the needs.
Volunteer and participate with the Emirates Internet Group by allocating 2-3 hours of your time per month to provide a lecture or Seminar and make a difference.
For more information, please visit:
http://www.isoc.ae/pages.php?pages=1&id=38
The lectures will address needs of the UAE labor market when it comes to computer skills and will cover ways to upgrade the employee's performance to meet the needs.
Volunteer and participate with the Emirates Internet Group by allocating 2-3 hours of your time per month to provide a lecture or Seminar and make a difference.
For more information, please visit:
http://www.isoc.ae/pages.php?pages=1&id=38
Sunday, November 11, 2007
Cutting Edge Hacking and Defense Workshop and ISO 27001 Certification Workshop in Dubai
For dates, times and availability information on the workshops in Dubai and Qatar visit link below:
http://www.oissg.org/certification-training-new-/index.php
Download the official brochure for the Dubai workshops here:
http://www.oissg.org/certification-training-new-/index.php
Download the official brochure for the Dubai workshops here:
- Cutting Edge Hacking and Defense: http://www.oissg.org/certification/penetration-testing-dubai-december-2007
- Achieving ISO 27001 Certification: http://www.oissg.org/fist-dubai/achieving-iso-27001-dubai-december-2007/download.html
These certification workshops fund the Open Information Systems Security Group (OISSG) research and development of the ISSAF.
You can also download ISSAF - The Open Source IT Security Framework for free! (9.59MB, 1264 pages):
http://www.oissg.org/component/option,com_docman/task,doc_download/gid,7/Itemid,134/
Friday, November 9, 2007
For Shame!....F3 Hacked!
http://www.f3.org.uk/ was hacked and defaced! Here is the mirror:
http://regmedia.co.uk/2007/11/08/f3_defacement.jpg
At the time of this post, it just says: "Site is currently down. Sorry for inconvenience. Ted". FYI F3 is the site for the First Forensic Forum.
For more information on this, visit the Register:
http://www.theregister.co.uk/2007/11/08/forensic_forum_hack/
http://regmedia.co.uk/2007/11/08/f3_defacement.jpg
At the time of this post, it just says: "Site is currently down. Sorry for inconvenience. Ted". FYI F3 is the site for the First Forensic Forum.
For more information on this, visit the Register:
http://www.theregister.co.uk/2007/11/08/forensic_forum_hack/
UAE's PRIDC Program wins 'Information Security Award'
The UAE has won the Information Security Award for the Population Registry and Identity Card Programme (PRIDC) which has been implemented and developed under the supervision of Emirates Identity Authority since 2005.
Darwish Al Zarouni, General Director of the Emirates Identity Authority, said the award should be the joy and pride of all UAE people and was a result of huge efforts made by the UAE to adopt state of the art information technology systems.
More news links on the award can be found here:
HITB Dubai 2008 - Call for Papers Now Open!
The Call for Papers is now open for HITBSecConf2008 - Dubai is now open. Hack in The Box Security Conference - Dubai is the premier network security event for the Middle East region. The 2008 event is expected to attract over 300 attendees from around the EMEA region and will see 2 keynote speakers in addition to 20 deep-knowledge technical presentations over two-days.
Talks should discuss new and never before seen attack methods. Summaries should not exceed 250 words in plain text format and should be sent to cfp -at- hackinthebox.org for review and possible inclusion in the programme.
Early bird registration for attendees closes 1st January 2008. For more information, please visit the official website at:
http://conference.hackinthebox.org/hitbsecconf2008dubai/
Talks should discuss new and never before seen attack methods. Summaries should not exceed 250 words in plain text format and should be sent to cfp -at- hackinthebox.org for review and possible inclusion in the programme.
Early bird registration for attendees closes 1st January 2008. For more information, please visit the official website at:
http://conference.hackinthebox.org/hitbsecconf2008dubai/
Saturday, November 3, 2007
Botmaster! The Video
Kids, don't let the Botmasters BotPlug your PCs! Fancy more on Botmasters? Check out Botmaster News on Google.
Thursday, November 1, 2007
Gulfnews: UAE tops Gulf states in internet security threats!
I feel like I reported this 10 days ago didn't I? Maybe it's Deja Vu ;) Link here:
http://archive.gulfnews.com/technology/internet/10164185.html
http://archive.gulfnews.com/technology/internet/10164185.html
Subscribe to:
Posts (Atom)
SecurityStreet:
PandaLabs Blog
Webroot Threat Blog
Daily Infosec News
HITBSecNews
Naked Security - Sophos
Taddong
Zone-H.org News
CGISecurity
ArsTechnica:
HACK A DAY
Help Net Sec
The Spanner
Middle East Technology News
CRIME
Selil Blog
HACKING IN THE NEWS
Special Defacements
The Certified Geek
DoS Files ≈ Packet Storm
E Hacking News
Banned in UAE:
The following websites are blocked by ISPs in UAE.
News ≈ Packet Storm
DARKNET
MySecured.com
All rights reserved.