Firefox Master Password System Has Been Poorly Secured for the Past 9 Years Security News & Discussion

---

• Firefox Master Password System Has Been Poorly Secured for the Past 9 Years
• Writing an Exploit in Golang - From A to Z
• StaCoAn: a Cross-platform tool for static code analysis on mobile applications [Full sources, Compiled and Blog Post - See Comment]
• A Deep Dive into Database Attacks [Part III]: Why Scarlett Johansson’s Picture Got My Postgre Database to Start Mining Monero
• Recovering plaintext passwords from Azure VMs like it's the 1990s
• OffensiveCon 2018 Videos
• Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS
• Session side jacking | sniffing unencrypted traffic
• The Complete Beginner Guide to Learn Ethical Hacking
• Stored XSS on Facebook via Open Graph
• Ending DNS Hijacking with DNSCrypt
• Reversing iBank Trojan [Injection Phase]
• c0c0n XI | The cy0ps c0n - Call For Papers & Call For Workshops 2018
• Leaking Facebook Internal Ip Infrastructure - no bounty payment from facebook

Firefox Master Password System Has Been Poorly Secured for the Past 9 Years Posted: 19 Mar 2018 03:32 AM PDT submitted by /u/__Joker [link] [comments]

Writing an Exploit in Golang - From A to Z Posted: 19 Mar 2018 10:28 AM PDT submitted by /u/secdevops [link] [comments]

StaCoAn: a Cross-platform tool for static code analysis on mobile applications [Full sources, Compiled and Blog Post - See Comment] Posted: 18 Mar 2018 06:15 PM PDT submitted by /u/TechLord2 [link] [comments]

A Deep Dive into Database Attacks [Part III]: Why Scarlett Johansson’s Picture Got My Postgre Database to Start Mining Monero Posted: 19 Mar 2018 05:38 AM PDT submitted by /u/QuirkySpiceBush [link] [comments]

Recovering plaintext passwords from Azure VMs like it's the 1990s Posted: 19 Mar 2018 08:47 AM PDT submitted by /u/yoniyoniyoni [link] [comments]

OffensiveCon 2018 Videos Posted: 19 Mar 2018 06:43 AM PDT submitted by /u/juken [link] [comments]

Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS Posted: 19 Mar 2018 02:57 AM PDT submitted by /u/jurkov [link] [comments]

Session side jacking | sniffing unencrypted traffic Posted: 19 Mar 2018 04:42 AM PDT submitted by /u/Hardbeattt [link] [comments]

The Complete Beginner Guide to Learn Ethical Hacking Posted: 19 Mar 2018 11:43 AM PDT submitted by /u/basikthngs [link] [comments]

Stored XSS on Facebook via Open Graph Posted: 19 Mar 2018 02:21 AM PDT submitted by /u/albinowax [link] [comments]

Ending DNS Hijacking with DNSCrypt Posted: 19 Mar 2018 10:35 AM PDT submitted by /u/nykzhang [link] [comments]

Reversing iBank Trojan [Injection Phase] Posted: 19 Mar 2018 10:13 AM PDT submitted by /u/khasaia [link] [comments]

c0c0n XI | The cy0ps c0n - Call For Papers & Call For Workshops 2018 Posted: 18 Mar 2018 08:21 PM PDT c0c0n XI | The cy0ps c0n - Call For Papers & Call For Workshops Oct 03-06, 2018 - Grand Hyatt, Kochi (Cochin), Kerala, India Buenos Dias from the God's Own Country! We are extremely delighted to announce the Call for Papers and Call for Workshops for c0c0n 2018 , a 4-day Security and Hacking Conference (2 day conference and 2 day pre-conference workshop), full of interesting presentations, talks and of course filled with fun! The conference tracks / themes are divided as follows: Critical Infrastructure & SCADA networks Security IoT WoT Telecom ICS SCADA Smart City Mobile and Web Security Dark-Web and Open Source Intelligence Social Media Intelligence Artificial Intelligence Cryptography Offensive Security and Information Warfare Malware Ransomware Advanced Persistence Threats (APT) Banking, Financial and Economic Warfare E-Banking Fraud Risk Management BlockChain and Bitcoin Governance Risks and Compliance (GRC) Digital Forensics We are expecting conference and workshop submissions on the following topics, (but not limited to): Smart Cities Cloud Security Browser Security Honeypots/Honeynets Offensive forensics Software Testing/Fuzzing Network and Router Hacking WLAN and Bluetooth Security Hacking virtualized environment Lockpicking & physical security National Security & Cyber Warfare Open Source Security&Hacking Tools Web Application Security & Hacking Exploiting Layer 8/Social Engineering Malware analysis & Reverse Engineering New Vulnerabilities and Exploits/0-days Advanced Penetration testing techniques Antivirus/Firewall/UTM Evasion Techniques IT Auditing/Risk management and IS Management Cyber Forensics, Cyber Crime & Law Enforcement Mobile Application Security-Threats and Exploits Critical Infrastructure & SCADA networks Security Presentations/topics that haven't been presented before will be preferred. Submission Guidelines for CFP Email your submission to: cfp [at] is-ra [dot]org Email subject should be: CFP c0c0n XI - <Paper Title> Email Body: Personal Information: Speaker Name: Job Role/Handle: Company/Organization: Country: Email ID: Contact Number: Speaker Profile: (max 1000 words) If there is additional speaker please mention it here following the above format. Presentation Details: Name/Title of the presentation: Paper Abstract: (max 3000 words) Presentation Time Required (20, 30, 50, 90, 120 Minutes) Category (New Research / Current Research or Open Source Project) Is there any demonstration? Yes or No Are you releasing any new tool? Yes or No Are you releasing any new exploit? Yes or No Have you presented the paper before on any other security / technology conference(s)? Yes or No Other Needs & Requirements: Do you need any special equipment? We will be providing 1 LCD projector feed, 2 screens, microphones, wired and/or wireless Internet. If you have any other requirement, Please mention it here and the reason. Submission Guidelines for CFW Email your submission to: cfw [at] is-ra [dot]org Email subject should be: CFW c0c0n X - <Workshop Title> Email Body: Personal Information: Speaker Name: Job Role/Handle: Company/Organization: Country: Email ID: Contact Number: Speaker Profile: (max 1000 words) *If there is additional speaker please mention it here following the above format. Workshop Details: Name/Title of the Workshop: Workshop Objective (max 3000 words): Course Content (ToC): Pre-requisite: Participants Requirements: Duration (1/2 day): Who should attend: What to expect: What not to expect: Have you conducted the workshop before on any other security / technology conference(s)? Yes or No Other Needs & Requirements: Do you need any special equipment? We will be providing 1 LCD projector feed, 1 screens Do you (Trainer) need Internet access during the workshop? Do the participants need Internet access during the workshop? If you have any other requirement, Please mention it here and the reason. Remember these Dates! CFP/CFW Opens: 18 Mar 2018 CFP/CFW Closing Date: 20 May 2018 Conference Dates: 05 - 06 Oct 2018 Workshop Dates: 03 - 04 Oct 2018 NOTE: We do not promote vendor/product oriented submissions hence it will be rejected. Speaker Benefits: For New and Innovative Research: Complimentary Conference registration. Complementary Accommodation for 3 nights. Invitation to Day 1 Networking Dinner / Party. Travel Reimbursement (maximum upto below mentioned amount) International Speaker (outside India) (USD $1000) Speakers from India (INR Rs.6000) Only one speaker will be eligible for the benefits in case there are two or more speakers for a talk. For Current Research, Open Source Projects, etc Complimentary Conference registration. Complementary Accommodation for 3 nights. Invitation to Day 1 Networking Dinner / Party. Thanks and Regards, c0c0n XI Team - submitted by /u/pr4jwal [link] [comments]

Leaking Facebook Internal Ip Infrastructure - no bounty payment from facebook Posted: 17 Mar 2018 06:23 PM PDT submitted by /u/capitan_alfa [link] [comments]

You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States