Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: SANS Daily Network Security Podcast (Stormcast) for Thursday, March 2nd 2017

SANS Site Network

Current Site

Internet Storm Center

Other SANS Sites Help

Graduate Degree Programs

Security Training

Security Certification

Security Awareness Training

Penetration Testing

Industrial Control Systems

Cyber Defense Foundations

DFIR

Software Security

Government OnSite Training

SANS Daily Network Security Podcast (Stormcast) for Thursday, March 2nd 2017

Log In or Sign Up for Free!

#LDAP and #STARTTLS; NextGen Gallery #SQLi; Breaking CAPTCHAS

SANS Daily Network Security Podcast (Stormcast) for Thursday, March 2nd 2017

00:00

My Next Class

Defending Web Applications Security Essentials	San Francisco	Dec 2nd - Dec 7th 2019
Defending Web Applications Security Essentials	San Francisco	Mar 16th - Mar 21st 2020

… more classes

Help us make this podcast better by participating in a simple two question survey

LDAP and STARTTLS
https://isc.sans.edu/forums/diary/SSLTLS+on+port+389+Say+what/22135/

Wordpress NextGen Gallery Plugin SQL Injection Vulnerability
https://blog.sucuri.net/2017/02/sql-injection-vulnerability-nextgen-gallery-wordpress.html

Password Manager Insecurities
https://team-sik.org/trent_portfolio/password-manager-apps/

Slack Insecure Cross Window Messaging
https://labs.detectify.com/2017/02/28/hacking-slack-using-postmessage-and-websocket-reconnect-to-steal-your-precious-token/

Google Voice Recognition Used to Break Google ReCaptcha Audio Challenge
https://east-ee.com/2017/02/28/rebreakcaptcha-breaking-googles-recaptcha-v2-using-google/
Get a free ISC sticker (login required):
https://isc.sans.edu/sticker.html

iTunes

MP3 Download

RSS Feed

Google Play

Listen on Google Play Music

Stitcher

Podbean

Amazon Echo

YouTube

Spreaker

iOS App

Spotify

Discussion

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Defending Web Applications Security Essentials	San Francisco	Dec 2nd - Dec 7th 2019
Defending Web Applications Security Essentials	San Francisco	Mar 16th - Mar 21st 2020
Defending Web Applications Security Essentials	Amsterdam	May 11th - May 16th 2020
IPv6 Essentials	Amsterdam	May 17th - May 18th 2020
Intrusion Detection In-Depth	Las Vegas	Jun 8th - Jun 13th 2020
Defending Web Applications Security Essentials	Cupertino	Jun 22nd - Jun 27th 2020