Browsing tag
Security vulnerabilities are inevitable but one can avoid them by securing applications. In this article, we are listing 5 popular WordPress security solution providers who also offer free SSL certificates. Security plays a vital role in software application development. Today, we have many open source/proprietary software available on the internet to develop an application. Open-source […]
Along with a patch for a zero-day bug in the Chrome browser, Google has addressed seven other flaws in its recent update. Google has announced to release of a security update to addresses inherent flaws in its Chrome browser. The patches will be released for the Chrome version for Windows, Mac, and Linux. Part of the […]
Experts from multiple digital forensics firms report that the Kazakhstan government has begun intercepting all HTTPS traffic detected within its territory. Internet service providers companies operating in the country have already been warned by the government; from now on, they will have to force their respective customers to install certificates released by the Kazakh authorities […]
Netflix took the video streaming industry by storm when it debuted Black Mirror: Bandersnatch last year. The “choose your own adventure” themed movie puts viewers in charge of the story and flow of the movie. The success of Bandersnatch even led to the creation of a second interactive show ‘You vs. Wild’ featuring Bear Grylls. However, […]
The purpose of security apps is to protect devices and user data. However, Xiaomi’s pre-installed security app did just the opposite and made its smartphones more vulnerable to attacks. The app in question is Xiaomi’s security app, Guard Provider, which uses anti-virus scanners from popular developers like Avast, AVL, and Tencent to scan for the presence of malware. […]
Google Chrome’s Data Saver feature helps load pages faster when there is low network connectivity on Android devices. In addition to this, the Chrome Lite Pages now work with secure websites apart from the regular ones. Chrome now optimizes HTTPS pages by showing a ‘Lite’ indicator in the URL bar, much like it does with […]
testssl.sh is a free command line tool which checks a server’s service on any port for the support of TLS/SSL ciphers, protocols as well as some cryptographic flaws. Key features Clear output: you can tell easily whether anything is good or bad Ease of installation: It works for Linux, OSX/Darwin, FreeBSD, NetBSD, OpenBSD (needs bash) […]
Just a simple (poorly written) Python script that aimlessly “browses” the internet by starting at pre-defined rootURLs and randomly “clicking” links on pages until the pre-defined clickDepth is met. I created this as a noise generator to use for an Incident Response / Network Defense simulation. The only issue is that my simulation environment uses […]
Google’s Chrome Browser is now labeling all non-https website as explicitly “not secure.” With the release of Chrome 68 yesterday, all http websites will now display the tag “not secure” in the address bar. Those sites with the proper http measurements in place will be unaffected by this move. For those who still don’t know, https is […]
Google is taking the privacy quite seriously, and the new Chrome security update will undoubtedly put a significant toll on all your favorite websites. Google Chrome just launched a security feature with the release of Chrome 68. From now on, Chrome web browser will label all HTTP sites as “not secure.” All the HTTPS websites […]
As we hit the browser day in and day out we have seen how the web security has taken to new heights. Today HTTPS encryption means the website is secure, and any website that runs on HTTP is not secure, and this is gradually marking its signature across the security forums. As reported in 9to5google, […]
Google in 2016 won the desktop browser war, toppling the erstwhile king Microsoft’s Internet Explorer and as of this writing, its minimalist Chrome browser commands over 60% of the desktop space. As it grew in market share, it is paired by the spread of Google’s influence in the web. The company pushed innovative technologies like […]
Android P will prevent apps from using unencrypted connections by default while establishing connections over the internet, according to a blog post on Wednesday. Recently, with the release of Android P’s first developer preview, the Network Security Configuration feature was updated to block all cleartext traffic (unencrypted HTTP) on an Android P device. The focus […]
In the coming July 2018, Chrome will come down heavily on websites that have not implemented Secure-socket Layer/Transport Security, which will be marked as insecure with a red triangle. So website owners need to put their act together. Looking to the security breach in the recent times, it was already foreseen that one-day websites will […]
DBC2 (DropboxC2) is a modular post-exploitation tool, composed of an agent running on the victim’s machine, a controler, running on any machine, powershell modules, and Dropbox servers as a means of communication. This project was initially inspired by the fantastic Empire framework, but also as an objective to learn Python. Features DBC2 main features: Various […]
Essentially it’s a WiFi hotspot that is continually collecting all the packets transmitted across it. All connected clients’ HTTPS communications are subjected to a “Man-in-the-middle” attack, whereby they can later be decrypted for analysis What is SNIFFLab MITM Test Environment In our environment, dubbed Snifflab, a researcher simply connects to the Snifflab WiFi network, is […]
CrunchRAT currently supports the following features: File upload File download Command execution It is currently single-threaded (only one task at a time), but multi-threading (or multi-tasking) is currently in the works. Additional features will be included at a later date. Server The server-side of the RAT uses PHP and MySQL. The server-side of the RAT […]
Passive web scanner. EllaScanner is a simple passive web scanner. Using this tool you can simply check your site’s security state. Usage: ./Start.py https:// or http:// Scanning of the site consists several phases: At the first phase, you can get recommendations related to http/https headers. The Second phase depends on information gather in the first […]
People regularly anticipate that in case you’re strolling OSX, you’re highly secure from malware. But that is turning into much less and less real, as evidenced via brand new strain of malware encountered with the aid of the Check Point research team. Checkpoint said This new malware – dubbed OSX/Dok — influences all versions of OSX, […]
Short Bytes: Pornhub, a talked about name in the adult entertainment industry has rolled HTTPS encryption across the whole website. This is soon to be replicated by its sister website on April 4. The announcement was made by MindGeek which is the parent of the two pornography websites. More than half of the internet has […]
BinProxy is a proxy tool for arbitrary TCP connections. It gives you a TCP proxy and an interface to write protocol-specific parsers in Ruby using the BinData library This tool understands and manipulates binary network traffic. BinProxy can operate as a simple transparent proxy with a static upstream or a socks/https proxy. The tool has the desire to leverage the […]