cyrilleb CB's Public Library

PuTTY Private-Key cracker

www.neophob.com/...index.php - Preview

password bruteforce ssh

Log analysis ressources

www.loganalysis.org - Preview

log forensic

Analyzing Malicious Documents Cheat Sheet

zeltser.com/...yzing-malicious-documents.html - Preview

malware forensic CERT office

HTML 5 XSS new vectors

www.thespanner.co.uk/...html5-new-xss-vectors - Preview

XSS HTML5

SHODAN lets you find servers/ routers/ etc. by using the simple search bar up above.

shodan.surtri.com - Preview

search engine black box boîte noire

Each of the following pages lists 10 or so freely-available on-line tools for helping to perform the tasks outlined above:
* On-Line Tools for Malicious Website Lookups
* Blocklists of Suspected Malicious IPs and URLs
* Automated Malware Analysis Services

blogs.sans.org/...nvestigating-malware-incidents - Preview

forensic CERT malware analysis

Truman - The Reusable Unknown Malware Analysis Net
Truman can be used to build a "sandnet", a tool for analyzing malware in an environment that is isolated, yet provides a virtual Internet for the malware to interact with.

www.secureworks.com/...truman.html - Preview

sanbox forensic

command-line WebDAV client

www.webdav.org/cadaver - Preview

unix client webdav

Who’s Being Promiscuous in Your Active Directory?

praetorianprefect.com/...cuous-in-your-active-directory - Preview

sniffer detection AD powershell

SMBv2 Code execution

www.immunityinc.com/...smb2.html - Preview

exploit

Fake advertiser inserted on the NY Times web site

www.nytimes.com/...15adco.html - Preview

attacks ads web

Vulnerabilites dans Log Me In

securethoughts.com/...puter-and-steal-arbitary-files - Preview

LogMeIn XSS

Infiltrating a botnet - discussion between Cisco security researcher and botmaster

www.cisco.com/...bots.html - Preview

botnet forensic

local linux root - sendpage vulnerabilty - exploit dispo - not tested

archives.neohapsis.com/...0174.html - Preview

linux local privileges escalation kernel

Framework ala Firepack etc.

cert.lexsi.com/...es-d-exploitation-automatiques - Preview

client-side pack

Agence nationale de la sécurité des systèmes d'information

www.anssi.gouv.fr - Preview

DCSSI ANSSI

Detection de firewall applicatif

code.google.com/waffit - Preview

WAF firewall detection

www.mindmeister.com/...hacking - Preview

pentest mindmap

Identity Theft Resource Center® (ITRC) is a nonprofit, nationally respected organization dedicated exclusively to the understanding and prevention of identity theft.

www.idtheftcenter.org - Preview

identity theft loss data leakage

DataLossDB is a research project aimed at documenting known and reported data loss incidents world-wide.

datalossdb.org - Preview

data leakage loss incident