laramies.blogspot.com
Laramies Corner: OWASP VI Spain Meeting -2010: And still bruteforcing
http://laramies.blogspot.com/2010/07/owasp-vi-spain-meeting-2010-and-still.html
Information Security and Penetration testing from Edge-Security team. OWASP VI Spain Meeting -2010: And still bruteforcing. Publicado por Christian Martorella. You can find the presentation here:. Http:/ www.owasp.org/images/2/2a/Bruteforce2010.key.pdf. And also the video of the talk (spanish) here. Here is a picture of the conference showing the Webslayer results interface:. Next version will add some requested features like multiple proxies support, delay between request, and many more. By Blog and Web.
laramies.blogspot.com
Laramies Corner: Security Ezines 2010
http://laramies.blogspot.com/2010/01/security-ezines-2010.html
Information Security and Penetration testing from Edge-Security team. Publicado por Christian Martorella. Hi all, in this brief post i will like to share some new ezines about security that were relased this year, the first one is called Into the Boxes. And it's centered in Forensics and Incident response, it's a join effort from Harlan Carvey. Securityripcord), this ezine looks promising. You can download the first issue here. The other ezine is the one launched by Hack In the Box. By Blog and Web.
laramies.blogspot.com
Laramies Corner: October 2008
http://laramies.blogspot.com/2008_10_01_archive.html
Information Security and Penetration testing from Edge-Security team. OWASP European Summit 2008. Publicado por Christian Martorella. With the theme ‘Setting the AppSec agenda for 2009′, the OWASP Summit will be a worldwide gathering of OWASP leaders and key industry players to present and discuss the latest OWASP tools, documentation projects, and web application security trends. I will be participating in the summit. Will be held at Algarve. Portugal, i never been there but it seems a beautiful place.
laramies.blogspot.com
Laramies Corner: January 2010
http://laramies.blogspot.com/2010_01_01_archive.html
Information Security and Penetration testing from Edge-Security team. Publicado por Christian Martorella. Hi all, in this brief post i will like to share some new ezines about security that were relased this year, the first one is called Into the Boxes. And it's centered in Forensics and Incident response, it's a join effort from Harlan Carvey. Securityripcord), this ezine looks promising. You can download the first issue here. The other ezine is the one launched by Hack In the Box. By Blog and Web.
laramies.blogspot.com
Laramies Corner: September 2008
http://laramies.blogspot.com/2008_09_01_archive.html
Information Security and Penetration testing from Edge-Security team. Metagoofil - Metadata Extractor Update. Publicado por Christian Martorella. Hi all, long time from the last post. This time is a short post about a new updated version of the Metagoofil. Recently Roelof talked about the problems he had in Maltego using google as an input and core part of a tool, i want to confirm what he said, it's really a mess to maintain a tool that uses google as input :(. Monday, September 15, 2008. By Blog and Web.
laramies.blogspot.com
Laramies Corner: July 2010
http://laramies.blogspot.com/2010_07_01_archive.html
Information Security and Penetration testing from Edge-Security team. OWASP VI Spain Meeting -2010: And still bruteforcing. Publicado por Christian Martorella. You can find the presentation here:. Http:/ www.owasp.org/images/2/2a/Bruteforce2010.key.pdf. And also the video of the talk (spanish) here. Here is a picture of the conference showing the Webslayer results interface:. Next version will add some requested features like multiple proxies support, delay between request, and many more. By Blog and Web.
laramies.blogspot.com
Laramies Corner: May 2009
http://laramies.blogspot.com/2009_05_01_archive.html
Information Security and Penetration testing from Edge-Security team. Pangolin and your data. Publicado por Christian Martorella. This will be a brief entry about a dubious behavior of Pangolin (SQL Injection Tool). Today we were checking some of the features of Pangolin, and i had special interest on the ORACLE UTL HTPP injection, i checked the options and there wasn't a configuration for the local HTTP server, so i was wondering how the hell they got the results back. Friday, May 08, 2009.
laramies.blogspot.com
Laramies Corner: November 2009
http://laramies.blogspot.com/2009_11_01_archive.html
Information Security and Penetration testing from Edge-Security team. Owning Windows 7 - Double hack (physical access required). Publicado por Christian Martorella. Hi all, i finished my Windows 7 upgrade and i decided to check and old trick that worked on XP and Vista. No foo required, it's an easy one:. If you have access to a Windows 7 Box, you can still replace the binary c: windows system32 sethc.exe. By your favourite backdoor (you can insert the same binary with the meterpreter embedded.
laramies.blogspot.com
Laramies Corner: March 2009
http://laramies.blogspot.com/2009_03_01_archive.html
Information Security and Penetration testing from Edge-Security team. ProxyStrike v2.0 released! Publicado por Christian Martorella. I'm pleased to announce a new version of ProxyStrike, an active Web Application Proxy, a tool designed to find vulnerabilities while browsing an application. It was created because the problems we faced in the pentests of web applications that heavily depends on Javascript, not many web scanners did it good at this stage, so we came with this proxy. 8226; Request interceptor.
SOCIAL ENGAGEMENT