Collaborate Disseminate
I’m designing an app that receives sensitive data input from a user and that data needs to be saved securely in a database.
As far as I understand it needs asymmetric encryption but since this app has a login to authenticate. I need this p… Continue reading store strings in db with asymmetric encryption for a python app keeping the data secure
In a Python Metasploit module that I’m developing, I am trying to use CMD as one of the options:
‘options’: {
‘RHOST’: {‘type’: ‘address’, ‘description’: ‘Target address’, ‘required’: True, ‘default’: None},
‘RPORT’: {‘type’: ‘port… Continue reading Metasploit Python module: "Unknown datastore option: CMD."
[Roman Parise] and [Georgios Is. Detorakis] have created OpenSPICE a fork of the PySpice project, adding a new simulation engine written entirely in Python. This enables the same PySpice simulations …read more Continue reading OpenSPICE: A Portable Python Circuit Simulator
By Deeba Ahmed
Aabquerys use the typosquatting technique to encourage downloading malicious components, as it has been cleverly named to make it sound like the legitimate NPM module Abquery.
This is a post from HackRead.com Read the original post: Typ… Continue reading Typosquatting: Legit Abquery Package Duped with Malicious Aabquerys
I am getting the occasional message from our Fortigate Fortinet firewall, indicating that there is a yaSSL.Buffer.Overflow attack. The log from the Fortinet is:
Description: Subject: attack:MySQL.yaSSL.Buffer.Overflow
Device: cid7543-chi-… Continue reading Need help deciphering these logs regarding YASSL attack on MySQL
I published the following diary on isc.sans.edu: “A Backdoor with Smart Screenshot Capability“: Today, everything is “smart” or “intelligent”. We have smartphones, smart cars, smart doorbells, etc. Being “smart” means performing actions depending on the context, the environment, or user actions. For a while, backdoors and trojans have implemented screenshot
The post [SANS ISC] A Backdoor with Smart Screenshot Capability appeared first on /dev/random.
Continue reading [SANS ISC] A Backdoor with Smart Screenshot Capability
I have just begun my bachelor’s in IT security and we have been presented with a list of exercises. I have completed all, but one of them. (Note: this is to be done in Python).
In this exercise we are given a SHA256 hash, which is a user’s… Continue reading Need help cracking a SHA256 hash, based on a list of hint strings [closed]
In the early days of C, you’d occasionally see someone — probably a former Pascal programmer — write something like this: #define BEGIN { #define END } This would usually …read more Continue reading Hacking the Python For Loop
I am working on the following war game from Defend The Web, which requires me to do a source code review to login as the user memtash. The code is on GitLab here.
Having inspected the source code during this code review, I find this line i… Continue reading How long would this take to bruteforce?
I have a python script on a webserver. The user data are stored in a database. The python script receives the user data as parameters, e.g.:
python3 script.py –name "Andy Wright"
In the script.py, I will write the value of the … Continue reading Securing user input used as parameter for python script?