Internet Storm Center
Sign In
Sign Up
Handler on Duty:
Didier Stevens
Threat Level:
green
Date
Author
Title
PENETRATION TESTING
2020-08-10
Bojan Zdrnja
Scoping web application and web service penetration tests
2016-09-04
Russ McRee
Kali Linux 2016.2 Release: https://www.kali.org/news/kali-linux-20162-release/
2014-08-09
Adrien de Beaupre
Complete application ownage via Multi-POST XSRF
2011-10-26
Rick Wanner
Critical Control 17:Penetration Tests and Red Team Exercises
2010-08-23
Manuel Humberto Santander Pelaez
Firefox plugins to perform penetration testing activities
2010-08-16
Raul Siles
Blind Elephant: A New Web Application Fingerprinting Tool
2010-06-06
Manuel Humberto Santander Pelaez
Nice OS X exploit tutorial
2010-04-13
Adrien de Beaupre
Web App Testing Tools
2009-07-27
Raul Siles
New Hacker Challenge: Prison Break - Breaking, Entering & Decoding
2009-04-21
Bojan Zdrnja
Web application vulnerabilities
2008-09-20
Rick Wanner
New (to me) nmap Features
PENETRATION
2020-08-10/a>
Bojan Zdrnja
Scoping web application and web service penetration tests
2019-04-26/a>
Rob VandenBrink
Pillaging Passwords from Service Accounts
2016-09-04/a>
Russ McRee
Kali Linux 2016.2 Release: https://www.kali.org/news/kali-linux-20162-release/
2014-08-09/a>
Adrien de Beaupre
Complete application ownage via Multi-POST XSRF
2011-10-26/a>
Rick Wanner
Critical Control 17:Penetration Tests and Red Team Exercises
2010-08-23/a>
Manuel Humberto Santander Pelaez
Firefox plugins to perform penetration testing activities
2010-08-16/a>
Raul Siles
Blind Elephant: A New Web Application Fingerprinting Tool
2010-06-06/a>
Manuel Humberto Santander Pelaez
Nice OS X exploit tutorial
2010-04-13/a>
Adrien de Beaupre
Web App Testing Tools
2010-02-22/a>
Rob VandenBrink
New Risks in Penetration Testing
2009-07-27/a>
Raul Siles
New Hacker Challenge: Prison Break - Breaking, Entering & Decoding
2009-04-21/a>
Bojan Zdrnja
Web application vulnerabilities
2008-09-20/a>
Rick Wanner
New (to me) nmap Features
TESTING
2020-08-10/a>
Bojan Zdrnja
Scoping web application and web service penetration tests
2018-12-16/a>
Guy Bruneau
Random Port Scan for Open RDP Backdoor
2018-07-02/a>
Guy Bruneau
Hello Peppa! - PHP Scans
2017-09-06/a>
Adrien de Beaupre
Modern Web Application Penetration Testing , Hash Length Extension Attacks
2017-05-13/a>
Guy Bruneau
Has anyone Tested WannaCry Killswitch? - https://blog.didierstevens.com/2017/05/13/quickpost-wcry-killswitch-check-is-not-proxy-aware/
2016-09-04/a>
Russ McRee
Kali Linux 2016.2 Release: https://www.kali.org/news/kali-linux-20162-release/
2016-01-20/a>
Xavier Mertens
/tmp, %TEMP%, ~/Desktop, T:\, ... A goldmine for pentesters!
2015-11-09/a>
John Bambenek
ICYMI: Widespread Unserialize Vulnerability in Java
2014-08-09/a>
Adrien de Beaupre
Complete application ownage via Multi-POST XSRF
2011-10-26/a>
Rick Wanner
Critical Control 17:Penetration Tests and Red Team Exercises
2011-08-26/a>
Daniel Wesemann
User Agent 007
2011-01-24/a>
Rob VandenBrink
Where have all the COM Ports Gone? - How enumerating COM ports led to me finding a “misplaced” Microsoft tool
2010-08-23/a>
Manuel Humberto Santander Pelaez
Firefox plugins to perform penetration testing activities
2010-08-16/a>
Raul Siles
Blind Elephant: A New Web Application Fingerprinting Tool
2010-06-06/a>
Manuel Humberto Santander Pelaez
Nice OS X exploit tutorial
2010-04-13/a>
Adrien de Beaupre
Web App Testing Tools
2009-07-27/a>
Raul Siles
New Hacker Challenge: Prison Break - Breaking, Entering & Decoding
2009-04-21/a>
Bojan Zdrnja
Web application vulnerabilities
2008-09-20/a>
Rick Wanner
New (to me) nmap Features
Homepage
Diaries
Podcasts
Jobs
Data
TCP/UDP Port Activity
Port Trends
SSH/Telnet Scanning Activity
Weblogs
Threat Feeds Activity
Threat Feeds Map
Useful InfoSec Links
Presentations & Papers
Research Papers
API
Tools
DShield Sensor
DNS Looking Glass
Honeypot (RPi/AWS)
InfoSec Glossary
Contact Us
Contact Us
About Us
Handlers
About Us
Slack Channel
Mastodon
Bluesky
X
Make the web a better place by
sharing the SANS Internet Storm Center
with others