Security
Articles tagged "security"
2019-02-13
The new version of yourlabs/python docker image, which bundles npm and pip3 on alpine and a bunch of testing tools, was released with bandit and safety baked in.
You can benefit from it in your Open Source software by adding .gitlab-ci.yml: …
2018-04-28
https://media.ccc.de/v/33c3-8044-what_could_possibly_go_wrong_with_insert_x86_instruction_here
Long live Chaos Communication Congress
2016-08-17
This post announces the creation of a mailing list for security issues concerning yourlabs.
Members can read messages, but external users may only post to it: yourlabs-security@googlegroups.com
Thanks Clayton Delay for the suggestion.
You may request …
2016-05-24
An interresting series about reverse engineering has been posted by Juan Carlos Jiménez.
2016-05-21
ZNet explains Invisible Programming Language and Invisible Data Theft , the new threat on the internet.
2015-04-21
The last article demonstrated how we could simply make any https flow going out a virtual bridge network interface through mitmproxy to cache anything.
In this article, we’ll focus on the logic to “cache anything” from within our …
2015-04-13
This article describes how to get a working transparent HTTP/HTTPS proxy which you can script in Python. I intend to use it to have custom caching and be able to abstract away all HTTP/HTTPS connections made in my LXC containers which are spawned by …
2014-04-15
This article follows up with Basics of GDB debugging, focus on symbols.
List symbols with nm Use the nm command to list symbols in a binary:
$ nm main 0000000000600920 B __bss_start 0000000000600920 b completed.6330 0000000000600910 D __data_start …
2014-04-13
Introduction GDB is a debugger for executables “objects” on Linux. It will use source code and “debug symbols” if available:
source code to display the code ie. corresponding to a specific frame at runtime, debug symbols to …
2014-04-08
This is the first of a series of articles on security and exploiting. For starters we’ll cover basic debugging tools before we get into actual exploiting because the first step to exploiting is reverse-engineering most of the time.
The series …
2013-01-11
Ruby on rails websites are highly vulnerable.
Exploiting a rails site looks like this:
$ msfconsole msf> use exploit/linux/misc/drb_remote_codeexec msf exploit(drb_remote_codeexec) > set URI druby://localhost:45074 msf …
Found 11 articles.
