Whitepaper discussing the OWASP top ten and security of APIs. Written in Spanish.
5d6c059cffab55d95f06d12ecf6b042c525b6ac3c50432367d0c388815310a67Whitepaper on hacking smart switches to capture credentials for a network.
f8f67bb8bd3d07c337c5634f1d46b38d4f4c0584c9fdd46ad313d8f83fd77937This whitepaper is a detailed study of social engineering. Written in Spanish.
c9a4ab55a4fe280401423634db648f2ba46834faec23f18e384c23d5b80c5916EuskalHack Security Congress Fifth Edition is a new proposal from the EuskalHack Computer Security Association, with the aim to promote the community growth and the culture in the digital security field. As usual, in this new edition proximity to our public and technical quality will be our hallmarks. This exclusive conference is shaping up as the most relevant in Basque Country, with an estimated 180 attendees for this fifth edition. The participants include specialized companies, public organisms, state security organizations, professionals, hobbyists and students in the area of security and Information Technology. The date for the conference is the 24th and 25th of June 2022 in the lovely city of Donostia San Sebastian.
3afb79f9c5c2ee498a58a508b7a49f8cd57ff1c62f0a23ed7a3954d643223070Whitepaper called Analyzing Java Heap Dumps.
54d081d0cf45414725ec543774d445e3b65c9e6d220fd49ee159cc2f879bce53Whitepaper that gives an overview on brute-forcing login and bypassing account lockout on elabFTW version 1.8.5.
094a251f151a7eb62b59cfd2e713ac0c84510e643ec38087d3cafab6380e06e8Whitepaper that discusses the functionality of EDR (Endpoing Protection and Response), how it compares to antivirus, and how it can be manipulated.
ece8d73b3f5b494064886d578b32c0f9fcd8723057d66ff7d4e4b551ab1d242dWhitepaper that discusses deserialization of untrusted data in jsoniter.
0ca417e1ce7adae9c50ca05cb6775b57ac7716c04884972cfd2a9cbbb6b0a4a4This is the OWASP TimeGap Theory handbook that discusses TOC/TOU vulnerabilities.
3fa653fadddee02d336d318a62bba714ded87e3ad0707724dc715175cf443fc2This is a brief whitepaper discussing the securing of authentication and authorization.
ec474e596a9d9ba2ab9781f4af02b1dee9f12e35a15b86af9d6a4566b3045d04BSides SF is soliciting papers and presentations for the 2022 annual BSidesSF conference. It will be located at City View at the Metreon in downtown San Francisco February 5th through the 6th, 2022.
116913a94e74b59af467e5522f2a4c08f2434469de79a58f7d2653633b1bb6cbThis paper demonstrates how to insert a backdoor in WordPress to get cleartext passwords anytime that a user logs in.
86a58a7a0e7f76d5a10b4c0f076df6f7acd2ba7b44bb9ce85aa4c428f169ff91This whitepaper discusses BRAKTOOTH, a family of new security vulnerabilities in commercial BT stacks that range from denial of service (DoS) via firmware crashes and deadlocks in commodity hardware to arbitrary code execution (ACE) in certain IoTs.
ec29de4f145eee5ced7ab6a0c5389c72ee16a987352a4373d9ef5da684cef2acWhitepaper called Cracking WiFi WPA2 Handshake. Written in Turkish.
c6cc513244a2fff1794b3639ad360894a6c93b9dabc29cbf0e9739ed4e9ff7a9Whitepaper called HiveNightmare AKA SeriousSAM. It details an overview of CVE-2021-36934 and provides exploitation details.
6b2f808ea234ce7630f8d7f1e9174e0e3c62ad056188b18315bbf76d42c8c731This is a whitepaper that discusses additional vectors of attack that can be used against Razer products.
d896ee68726d14957e7b9ef3ead4ea6080977a3951b1f9246dab51ea5e04be7cWhitepaper discussing JavaScript static analysis. Written in Arabic.
0c4b9e81a57d57072c3bbf3c49892a9de6b7ea347238264d3d6ce9e7068c1996Dancho Danchev wrote a personal 100 page memoir.
8768965b892b82131fe72867147c1aa8f5bde8ae1c52f43f5116c6cb6e7afd3fThis is a whitepaper that gives an overview of the PIP vulnerability in Android 11.
de30f374a906fe8d9c0d8bb8b7dfebcf0db353f3671a5b1d8f515460f9e6c36dWhitepaper called Attacking Optical Character Recognition System.
27d4178ceb7a28e6651e0994b57cf6748e06a11feff3bb4601978c419df69e91This article focuses on using the NT hash to execute commands successfully on the target server which includes ESET Server Security and File Security even if the packet inspection settings restrict communication with a few services.
73f932909f758032767a6c41c634328ff69c7b2451dec44e6313edfddc0e6afaThis paper contains a step by step detailed walk-through of different nmap scanning techniques and how the nmap traffic looks like in wireshark for each scan. The objective of documenting the paper is to get a better understanding of packets while initiating any nmap scan so that it can help in bypassing firewalls or debugging what went wrong between the source and destination. It can also help in writing basic firewall rules.
e98eb4f64e115f6a22e5fb658a650a8f88305b65ab9f8584011c81fe80099560This whitepaper discusses chain session upload progress to remote code execution when taking advantage of local file inclusion.
3c9df4f24a784d6c632f742ca3902c18462336b6f1ee4031041e932d800f8a5dThe call for papers for hardwear.io 2021 in the Netherlands is now open. It will take place October 28th through the 29th, 2021 at NH Hotel Den Haag, The Netherlands.
68c8cf7a45d193d9d0d1360a6d987ce1ee4b0018bcef8b1a265a29c1fb7d7a14Whitepaper called Smart Contract Automated Testing Guidelines that provides guidance on automation.
2637d58d1c7c59b0e8b57db8f391f84b9a001dcc6d498f48455236de4f4f2d0a
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed