Simple Local File Inclusion Vulnerability Scanner version 1.0 released

Today I am releasing my Simple Local File Inclusion Vulnerability Scanner 1.0 (29th December 2010). [Download] Description The Simple Local File Inclusion Vulnerability Scanner helps you to find LFI vulnerabilities. Usage ./lfi_scanner.py –url= Usage example ./lfi_scanner.py –url=”http://www.example.com/page.php?file=main” Usage notes - Always use http://…. - This tool does not work with SEO URLs, such as http://www.example.com/news-about-the-internet/. […]... Read More

The Joomla Hacking Compendium

Download The Joomla Hacking Compendium here. With great pleasure I hereby announce the availability of the new “The Joomla Hacking Compendium”. It contains almost 1000 lines of pure knowledge and shows you the way to hack and protect Joomla. It contains the following chapters: Please find an excerpt below:... Read More

Not yet another Full Disclosure vs Responsible Disclosure debate

I have been interested in IT-Security since I was 16 or 17. Back then I was fascinated by basic concepts and the idea of exploiting weaknesses within a network, piece of software or simply human stupidity. It was exciting to see that the Internet is full of amazing websites, providing security enthusiasts with tools, source […]... Read More

17 Milw0rm alternatives – or: 17 ways to obtain your latest Vulnerabilities/Advisories/Exploits elsewhere.

Since 2009, Milw0rm seems to be “dead” and no longer up2date. But there is hope During the last months other websites have emerged and other ones have attracted more attention than before. I want to show you 17 ways to obtain your latest Vulnerabilities && Exploits && Advisories elsewhere: http://nvd.nist.gov http://secunia.com http://inj3ct0r.com http://www.expbase.com http://www.exploit-db.com http://www.sebug.net […]... Read More