Collaborate Disseminate
Today is March’s Patch Tuesday with 13 bulletins and 39 unique CVEs, which is about the same level of release as we received in February. This includes five bulletins rated Critical and the remaining eight rated Important. As always, both…
Continue reading Microsoft Patch Tuesday, March 2016
A few weeks ago while performing a web application test for $CLIENT, I happened to run into search functionality. As one of the very first standard tests I inserted a single quote ‘ into the search field and clicked the search button. The SQL error mes… Continue reading Data Extraction via String Concatenation in a Blind SQL Injection Vulnerability
They say that with great power comes great responsibility. In the world of websites the more popular your website is the greater your responsibility, and being responsible means, amongst other things, keeping your systems up-to-date. We’ve recently com… Continue reading Angler Exploit Kit – Gunning For the Top Spot
Summary The latest update to the TrustKeeper scan engine that powers our Trustwave Vulnerability Management product (including both internal and external vulnerability scanning) is now available. Enjoy! New Vulnerability Test Highlights Some of the mor… Continue reading TrustKeeper Scan Engine Update for February 17, 2016
February Patch Tuesday is here with double the number of vulnerabilities that were patched in January. In all there are thirteen bulletins issued this month patching 36 unique CVEs. Four of the bulletins are rated Critical. This includes 14 vulnerabili… Continue reading Microsoft Patch Tuesday, February 2016
This month’s update for our AppDetectivePRO and DbProtect Knowledgebase is now available. Knowledgebase version 4.58 includes new checks for MySQL and Oracle, new policies for DISA-STIG Oracle 11G V8R1-15 -Audit, and updated checks for IBM DB2 LUW. New… Continue reading AppDetectivePRO and DbProtect Knowledgebase Update 4.58
Recently we have been working on the libmodsecurity project. As part of the project we no longer use the Apache Portable Runtime (APR) as part of the core ModSecurity. While this change has allowed us to increase performance, portability, and…
Continue reading Base64 versus Plaintext Observations
A couple of weeks ago we were looking at some exploit kits in one of our lab environments and noticed a decline in the number of Neutrino instances we’re seeing. This sent us on yet another journey to investigate Neutrino…
Continue reading Neutrino Exploit Kit Not Responding – Bug or Feature?
Summary The latest update to the TrustKeeper scan engine that powers our Trustwave Vulnerability Management product (including both internal and external vulnerability scanning) is now available. Enjoy! New Vulnerability Test Highlights Some of the mor… Continue reading TrustKeeper Scan Engine Update for February 03, 2016
Previous Work As part of our positions at SpiderLabs Research we each get time to undertake various research tasks. Typically on the Web Server Security team we spend this time improving ModSecurity and Trustwave WAF, analyzing the latest web threats,…
Continue reading Sending ModSecurity Logs to MySQL