anon – Page 3 – WindowsTechs.com

Locking the user account or returning the "Invalid username or password"

Posted on April 25, 2019 by anon

We have an application where we are using OS users for authentication and using native OS libraries for authentication of that user credential. We have implemented an account lockout functionality where we can lock the user a… Continue reading Locking the user account or returning the "Invalid username or password"→

How to defeat confirmation-of-a-file attack? [duplicate]

Posted on April 18, 2019 by anon

This question already has an answer here:

Will encrypting the same file with GnuPG and the same key produce the same ciphertext?

2 answers

… Continue reading How to defeat confirmation-of-a-file attack? [duplicate]→

My boss installs software using domain admin. Should I show that this is bad?

Posted on January 8, 2019 by anon

At my workplace, users on most workstations (Win7 and 10 blend) do not have local admin rights. As a technical team we often need this for software installs, and so the director gets called around to enter credentials. Not on… Continue reading My boss installs software using domain admin. Should I show that this is bad?→

Can a VPN server be traced through Tor?

Posted on December 14, 2018 by anon

I was wondering that if my data was intercepted by Tor by an exit node, would they be able to see which VPN server is being used to encrypt the data.
I am asking because I planned on making an OpenVPN Server and using it with… Continue reading Can a VPN server be traced through Tor?→

How to identify a Ping of Death attack by analyzing its packet in Wireshark? [on hold]

Posted on November 15, 2018 by anon

I’ve tried researching it for a long while, but came out dry.

Continue reading How to identify a Ping of Death attack by analyzing its packet in Wireshark? [on hold]→

How to find the address of interrupt vector table?

Posted on September 8, 2017 by anon

I was reading this Phrack article. And he just gives that 0xffff0000 is the location of the interrupt vector table location in 32 bit ARM running linux kernel 2.6.32.9
I wanted to know how can you find that address for other … Continue reading How to find the address of interrupt vector table?→

Chromium Malware (possible) on my Linux Machine

Posted on September 5, 2017 by anon

Running Chromium 60.0.3112.11 on Linux Ubuntu 16.04

Chromium attempts to access my Linux machine’s media upon autocompleting bankofamerica.com, wellsfargo.com, americanexpress.com, or discover.com.
Chromium also attempts to… Continue reading Chromium Malware (possible) on my Linux Machine→

What makes me vulnerable to CVE-2017-7494?

Posted on May 26, 2017 by anon

I do understand that basically all Versions of Samba from 3.5.0 onwards are vulnerable to a remote code execution vulnerability.
And there is even PoC Code to check if a specific server is vulnerable by myself.
But I do not u… Continue reading What makes me vulnerable to CVE-2017-7494?→

What skills would a good candidate for "Incident Response" Job role have? [on hold]

Posted on January 25, 2017 by anon

I work as a Jr. sysadmin (Linux/Unix and some Windows server) and have an associate degree in computer networking. I’m looking to get over the next year or two and I feel that working as an incident response analyst would giv… Continue reading What skills would a good candidate for "Incident Response" Job role have? [on hold]→

Is it legal/ethical to release commercial software with known security flaws

Posted on January 10, 2017 by anon

I am not a security professional. About 2.5 months ago I discovered systemic vulnerabilities in my employer’s software with the potential for financial damage to customers if exploited.

A logged in user’s ability to access … Continue reading Is it legal/ethical to release commercial software with known security flaws→