Sat, 21 Apr 2018 15:29:26 GMT
Building A Simple Proxy Fuzzer For THe MQTT Protocol Using The Polymorph Framework
Whitepaper that shows how easy you can build a fuzzer for the MQTT protocol by using the Polymorph framework.
Wed, 18 Apr 2018 10:11:11 GMT
The Origin And Impact Of Security Vulnerabilities In ST Chipsets
This whitepaper explores the origin and impact of the vulnerabilities discovered in ST chipsets.
Mon, 16 Apr 2018 10:22:22 GMT
Diamorphine LKM Analysis
This whitepaper provides diamorphine linux kernel rootkit analysis. Written in Korean.
Fri, 13 Apr 2018 22:22:22 GMT
Polymorph: A Real-Time Network Packet Manipulation Framework
Whitepaper called Polymorph: A Real-Time Network Packet Manipulation Framework.
Wed, 11 Apr 2018 16:12:07 GMT
Smashing Smart Contracts
This pop-scientific conference paper introduces Mythril, a security analysis tool for Ethereum smart contracts, and its symbolic execution backend LASER-Ethereum. The first part of the paper explains symbolic execution of Ethereum bytecode in a largely formal manner. The second part showcases the vulnerability detection modules already implemented in Mythril. The modules use a pragmatic mix of static analysis, symbolic analysis and control flow checking.
Sun, 08 Apr 2018 13:02:22 GMT
WOOT 12 Call For Papers
WOOT '12 Call For Papers - This will be held August 13th through the 14th, 2018, in Baltimore, MD, USA. WOOT '12 is co-located with the USENIX Security Symposium.
Wed, 28 Mar 2018 16:55:55 GMT
The Grey Matter Of Securing Android Applications
Whitepaper called The Grey Matter of Securing Android Applications. It starts with the introduction of the Android platform and fundamentals of the Android applications. It later talks about the in-built security features of the Android platform and the additional features that are provided by Google to build a secure ecosystem. It also includes how and why these features can be leveraged to build secure Android applications.
Mon, 26 Mar 2018 10:11:11 GMT
Exploring The Depths Of CMD.exe Obfuscation And Detection Techniques
Whitepaper called DOSfuscation: Exploring the Depths of CMD.exe Obfuscation and Detection Techniques.
Mon, 26 Mar 2018 02:33:33 GMT
Cross Site Scripting In A Nutshell
Whitepaper called Cross Site Scripting 'XSS' In A Nutshell.
Thu, 22 Mar 2018 04:44:44 GMT
MSSQL Error-Based SQL Injection
Whitepaper that discusses error-based SQL injection in "Order By" clause in MSSQL.
Thu, 22 Mar 2018 01:11:11 GMT
Windows Kernel Exploitation Tutorial Part 7: Uninitialized Heap Variable
Whitepaper called Windows Kernel Exploitation Tutorial Part 7: Uninitialized Heap Variable.
Tue, 20 Mar 2018 14:44:44 GMT
Linux Kernel Vulnerability Exploitation
This is a whitepaper providing a Linux kernel hacking introduction. Written in Korean.
Mon, 19 Mar 2018 10:11:11 GMT
Web Application Penetration Testing
This is a whitepaper that goes over methodologies for web application penetration testing. It is very thorough with examples and overviews.
Fri, 16 Mar 2018 14:44:44 GMT
c0c0n 2018 Call For Papers
The c0c0n 2018 call for papers has been announced. It will take place October 3rd through the 6th, 2018 at the Grand Hyatt, Kochi (Cochin), Kerala, India.
Tue, 13 Mar 2018 23:51:40 GMT
Analyze And Attack SSH Protocol
This is a whitepaper discussing analyzing and attacking the SSH protocol. Written in Vietnamese.
Fri, 02 Mar 2018 04:44:44 GMT
hardwear.io 2018 Call For Papers
hardwear is seeking innovative research on hardware security. If you have done interesting research on attacks or mitigation on any Hardware and want to showcase it to the security community, just submit your research paper. It will take place September 13th through the 14th, in The Hague, Netherlands.
Wed, 28 Feb 2018 03:11:11 GMT
Sony Playstation 4 (PS4) WebKit setAttributeNodeNS Use-After-Free
This is a whitepaper describing the Sony Playstation 4 (PS4) webkit setAttributeNodeNS use-after-free vulnerability.
Sat, 24 Feb 2018 09:22:22 GMT
Parasiting Web Server Process With Webshells In Permissive Environments
Whitepaper called Paraisiting web server process with webshells in permissive environments.
Mon, 19 Feb 2018 02:22:22 GMT
BSides Denver 2018 Call For Papers
BSides Denver 2018 has announced its Call For Papers.
Sat, 17 Feb 2018 03:36:19 GMT
Mobile Application Hacking Diary Episode 2
Whitepaper called Mobile Application Hacking Diary Episode 2.
Fri, 16 Feb 2018 10:33:33 GMT
MySQL UDF Exploitation
Whitepaper called MySQL UDF Exploitation.
Thu, 15 Feb 2018 12:12:12 GMT
Zero Day Zen Garden: Windows Exploits Development - Part 5
Whitepaper called Zero Day Zen Garden: Windows Exploit Development Part 5 [Return Oriented Programming Chains].
Tue, 13 Feb 2018 13:02:22 GMT
The Easiest Metasploit Guide You'll Ever Read
Whitepaper called The Easiest Metasploit Guide You'll Ever Read.
Mon, 12 Feb 2018 17:15:39 GMT
From APK To Golden Ticket
Whitepaper called From APK to Golden Ticket.
Whitepaper called TCP Starvation. It discusses a new variant of a denial of service attack.
view page: 143