Posts in category Security Vulnerability

SEH Exploitation to Get Shell Access

SEH Exploitation to Get Shell Access
  Structured Exception Handling is a mechanism for handling both hardware and software exceptions in Windows OS. Structured exception handling enables us to have complete control over the handling of exceptions and it also provides support for debuggers as well. SEH exploitation is based on stack buffer overflow technique. It becomes eas [...]

Reversing Training Session Part 11 &#...

Reversing Training Session Part 11 – Exploit Development [Advanced]
Here is the quick update on this month’s Local Security meet (SX/Null/G4H/owasp) where Amit has delivered one of his best session on ‘Practical Reversing VI – Exploit Development Advanced’. This is part of our ongoing FREE ‘Reversing & Malware Analysis Training’ started since our Jan 2012 meet. T [...]

SX Impact – Developer Fixes Vul...

SX Impact – Developer Fixes Vulnerability in Facebook Application
Few days back, we have published research article on “Vulnerable Facebook Applications” by Abhinav Singh, one of our active contributor. In this article, he has exposed how vulnerable Facebook Applications are and how they can breach the user’s credentials by citing the example of XSS vulnerability in “Name MeaningR [...]

Facebook Chief Security Officer to Ke...

Facebook Chief Security Officer to Keynote 2nd Annual HITB Security Conference in Europe
After the success of last year’s inaugural event, Hack In The Box Security Conference is taking over the Krasnapolsky once again from the 17th till the 20th of May. This deep knowledge security conference brings a unique mix of security professionals, researchers, law enforcement and members of the hacker underground under one roof, wit [...]

Book of the Month – A Guide to ...

Book of the Month – A Guide to Kernel Exploitation
Anyone into Vulnerability Research and Exploitation knows how hard it is to discover a Security Vulnerability and then develop a reliable exploit for it. Now consider taking it from user land to kernel, the near impossible thing to get your shoes in for the show. . In that context, ‘A Guide to Kernel Exploitation’ new & unique [...]

Book of the Month – Mobile Malw...

Book of the Month – Mobile Malware Attacks and Defense
As mobile devices becoming more and more sophisticated with their computing power and memory, the attackers are slowing shifting their focus from PC to these Mobile devices. Unlike earlier generation of mobile devices, current mobile devices are as powerful as our computer systems with increased memory and performance along with built-in inte [...]

Detecting ‘Slow Dll Hijacking&#...

Detecting ‘Slow Dll Hijacking’ Vulnerability using DllHijackAuditor
‘Dll Hijack’ vulnerability is one of the recently highlighted critical security issue affecting most of the popular Windows applications. Every day researchers are discovering more and more applications which are vulnerable to various forms of ‘Dll Hijacking’ and at the same time attackers have started exploiting [...]

Released DllHijackAuditor v2 with New...

Released DllHijackAuditor v2 with New & Smart Interception Engine
DllHijackAuditor is the FREE tool to Audit against the  DLL Hijacking Vulnerability for any Windows application. This is recently discovered critical security vulnerability affecting most of Windows systems. Currently large number of applications are currently susceptible to this vulnerability which can allow any attacker to completely take o [...]

Presenting DllHijackAuditor – S...

Presenting DllHijackAuditor – Smart Tool to Audit Dll Hijack Vulnerability
DllHijackAuditor is the FREE tool to Audit against the  DLL Hijacking Vulnerability for any Windows application. This is recently discovered critical security issue affecting almost all Windows systems on the planet. It appears that large amount of Windows applications are currently susceptible to this vulnerability which can allow any attack [...]

Book of the Month – Cyber Fraud...

Book of the Month – Cyber Fraud: Tactics, Techniques and Procedures
Gone are the days when those BlackHat Hackers would tickle you for fun, Now they will poke you & take your diamonds without you even knowing anything about it until it’s too late. Landscape in the Cyber underground has completely changed since then, making it more like well organized business controlled by global entities around th [...]

Our Company

Follow us on Facebook


Join Mailing List

Get direct access to our expert trainers or mingle with like minded security folks in our mailing list