attack-vector – Page 5 – WindowsTechs.com

Identification in a user-to-mass phishing attack

Posted on March 19, 2020 by cupofrum

I created a sort of theoretical attack but I’ve a question about identification.

Requirements:

Site that requires logged-in user + phone verify to reset the password.
Site that sends SMS fast, less than 2 minutes.

and on the Attacker’… Continue reading Identification in a user-to-mass phishing attack→

Does removing features from a library increase or reduce security risks?

Posted on March 3, 2020 by Tomas Zubiri

Software libraries targetting resource constrained environments like embedded systems use conditional compilation to allow consumers to shave space and thus increase performance by removing unused features from the final binaries distribut… Continue reading Does removing features from a library increase or reduce security risks?→

Bypassing Secure Boot in System on Chip

Posted on February 3, 2020 by Lavender

To bypass a secure boot for System on Chip (SoC), some attacks target the phase of copying the bootloader from where it is stored to the main memory. Instead, a malicious code will be copied to the main memory. In that case, the bootloader… Continue reading Bypassing Secure Boot in System on Chip→

APK Signature Scheme v1 vs APK Signature Scheme v2/v3

Posted on January 29, 2020 by D.O.

What are the security implications of using the APK Signature Scheme v1 instead of the APK Signature Scheme v2/v3? Are there any additional attack vectors for v1 except for direct attack vectors in an APK verifier? With direct attack vecto… Continue reading APK Signature Scheme v1 vs APK Signature Scheme v2/v3→

Attack Vectors When Explicitly Targetted

Posted on December 15, 2019 by DreamConspiracy

I have read quite a bit of advice on this site (and the internet more generally) on protecting oneself and online accounts from being hacked. I follow this advice quite diligently, including using a password manager, using 2F… Continue reading Attack Vectors When Explicitly Targetted→

How can I verify that my laptop does not have malware in the firmware?

Posted on October 30, 2019 by SGSK

I purchased a used laptop on eBay.
I scrubbed the hard disk to make sure there were no lingering or unknown viruses left on the disk and then installed fresh Windows 10.

But, what about the firmware?

Does Windows Update ma… Continue reading How can I verify that my laptop does not have malware in the firmware?→

Does a searchable public database exist of (hostname; ip) mappings?

Posted on October 13, 2019 by peterh

This question is not about the trivial usage of the forward/reverse DNS.

Getting the IP of a hostname is trivial (DNS), and using reverse DNS, also we can get (typically) a single hostname of an IP.

However, particularly for massive http… Continue reading Does a searchable public database exist of (hostname; ip) mappings?→

WordPress site request to /wp-includes/Text/Diff/ yields open directory listing

Posted on October 3, 2019 by zedmelon

Someone requested my site’s (Wordpress/Apache) ‘includes’ directory:

122.51.0.219 – – [03/Oct/2019:18:36:15] “GET /wp-includes/Text/Diff/ HTTP/1.1” 200 736 “-” “-”

Noticing the 200 response, I hit the URL myself and found … Continue reading WordPress site request to /wp-includes/Text/Diff/ yields open directory listing→

Website based Attack [on hold]

Posted on August 8, 2019 by Arsh Sidhu

You are a Security Engineer at an e-commerce company. The company is running a public facing marketing website.
The following is the website’s technology stack:
HTML/CSS and JavaScript
PHP
MySQL
Linux with Apache

Scenario
Th… Continue reading Website based Attack [on hold]→

Website based Attack [on hold]

Posted on August 8, 2019 by Arsh Sidhu

Scenario
Th… Continue reading Website based Attack [on hold]→