Some more info
https://www.us-cert.gov/ncas/current-activity/2015/08/12/Lenovo-Service-Engine-LSE-BIOS-Vulnerability
2015-08-12 14:44 GMT+03:00 Kevin Beaumont :
> PRECURSOR
>
> There will be debate about if this is a vulnerability. It affects a
> majority of user PCs -- including all Enterprise
New CC number, have to update account information, blablabla...
SORRY
Here it is for now:
https://free-security.org/frhack/frhack01_dvd01.iso
https://free-security.org/frhack/frhack01_stallman.avi
/JA
C0m3 b...@ck s00n mi1 ;p
Hi list,
FRHACK01, International IT Security Conference, was held in Besancon,
France - http://www.frhack.org
FRHACK was not commercial, but technical.
We decided to sell DVDs of the conference to cover our expenses.
If anyone has a problem with this, with FRHACK or with me => he's
invited to con
Permissions have been fixed, you should be able to access to all the
papers now.
Sorry
/JA
Le mardi 06 octobre 2009 à 10:35 +0200, Jerome Athias a écrit :
> Hi there,
>
> FRHACK01 (www.frhack.org) is over and we want to thanks everyone for
> participation, and really hope that you
Hi there,
FRHACK01 (www.frhack.org) is over and we want to thanks everyone for
participation, and really hope that you appreciated this 1st edition and
had some fun in Besancon, France. [1]
You can find the slides of the speakers here:
http://www.frhack.org/slides/FRHACK2009_Advanced-Payloads_BSD
Author: Francis Provencher (Protek Research Lab's)
#
Application: Adobe ShockWave Player (11.5.1.601)
Platforms:Windows XP Professional French SP2 and SP3
crash:IE 6.0.2900.2180
I just would like to clarify that, unfortunately, I (again) did a mistake.
Please forget the name "FRHACK OS" forever, and call it, if you want,
"Back Track FRHACK Edition".
I apologize for this (too fast, too bad).
All credits for Back Track are (and must to be) due to the
remote-exploit.org guys
Hi list,
That's the final countdown for FRHACK 01, IT Security Conference, by
hackers - for hackers, France, September 7th-8th 2009.
http://www.frhack.org
Due to demand, the FRHACK staff decided to provide DVDs and a limited
amount of accounts to assist FRHACK via live streams.
So, if you can't t
Hi list,
We're looking for betatesters for FRHACK OS.
"yes another pentesting live dvd"
== Overview ==
FRHACK OS is an updated/modified version of the latest BackTrack 4 iso
available for download ( http://www.remote-exploit.org/backtrack.html )
We have updated and added tons of tools.
== Quick
ac81=&inblocksrcmac81=1&id=104
Adding an IP address allowed by the firewall:
http://192.168.1.1/Action?ip_1=192&ip_2=168&ip_3=1&ip_4=2&mask_1=255&mask_2=255&mask_3=255&mask_4=255&gateway_1=192&gateway_2=168&gateway_3=1&gateway_4=1
ontact us at: frhack-spon...@frhack.org
Thanks and see you soon at FHRACK!
Jerome Athias, Founder, Chairman, Program Coordinator
/JA
Registration for Trainings/Workshops and the Conference is open
http://frhack.org/register.php
LinkedIn group: http://www.linkedin.com/groups?gid=1613377
See you soon for FRHACK!
Jerome Athias
Main organizer
Do you like good wine, french bread & food, strikes and the french kiss?
If so, you will
additional material, or have
problems, feel free to contact us at: frh...@frhack.org
Thanks and see you soon at FHRACK!
Jerome Athias, Founder, Chairman, Program Coordinator
/JA
Hi,
I still not have read all your paper, but my first word is congratulations!
That's an hard job.
Since a quick search didn't give a result for it, and maybe others could
be interested:
The AVISPA (Automated Validation of Internet Security Protocols and
Applications) project aims at developing
Hi there,
MSFXDC (MetaSploit Framework eXploits Development Contest) is a
challenge where the main goal is to code the largest number of new
Metasploit Framework exploits modules.
https://www.securinfos.info/metasploit/msfxdc.php
Your mission, if you choose to accept it, is to code new exploits
m
s and Hacky New Year!
Jerome Athias
FRHACK Founder and Main organizer
http://www.frhack.org
FreeRainbowTables.com has recently moved to the BOINC platform for generation
of rainbow tables.
We are happy to share the news with our users, and we hope you will continue to
help us generate more rainbow tables.
It is easy to htlp us in the generation of high quality rainbow tables. Simply
g (and nowhere else)
It will be updated with everything regarding the conference.
- If you have questions, want to send us additional material, or have
problems, feel free to contact us at: [EMAIL PROTECTED]
Thanks and see you soon at FHRACK!
Jerome Athias, Founder, Chairman, Program Coordinator
/JA
Hi folks,
Today /your mission/, /if you/ choose to /accept it/, is to download the
following sources and help me to code this sh*t!
What is the "MSF eXploit Builder"?
MSF eXploit Builder (aka MSF-XB) is an UNofficial tool to use with the
Metasploit Framework ( http://www.metasploit.com ).
MSF-eXp
illegal use of this
software.
The user is the only responsible from their use. The author would not be
liable for any kind of damages, direct or indirect, resulting from a bad
use of this software.
Have a nice week-end.
Best regards
/JA
HTTPBruteForcer is coded by Jerome Athias, webmaster of
https://www
"How I was busted. Story of a poor lonesome hacker"
Hi there,
First I would like to say that this post is not technical, and so most
of you should save time by not reading it. (I apologize for this.)
Then, sorry for my bad english.
My name is Jerome Athias, some could know me, som
description, delete and move
+ New comment system, it is now the most opulent gallery
+ New Front page
+ Added BBcode and a button
Vulnerability:
Jerome Athias has discovered a vulnerability in My_Gallery plugin for
e107, which can be exploited by malicious people to disclose sensitive
information.
The
Hi,
it is important to notice this.
The mentioned german law comes after the similar french law called lcLEN
(aka Fontaines's law).
In 2003-2004, a petition was done against this law, with around 15,000
signatories...
http://www.iris.sgdg.org/actions/len/petition.html
for nothing...
"A new a
Hi ladies and gentlemen,
I'm happy to announce the availability of my materials for my talk at
VNSECON07 ( http://conf.vnsecurity.net/ ), Ho Chi Minh, Vietnam.
You can find the intro and slides + the full-text paper at:
https://www.securinfos.info/VNSECON2007
Covered topics:
* usage, enhanceme
WebDEV)
Description :
Jerome Athias has reported a vulnerability in PCSoft WinDEV, which can
be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to a boundary error within the handling
of a ".wdp" project file that contains an overly
*Posted By:* donho
*Date:* 2007-05-22 00:45
*
*3. Fix Ruby source file buffer overflow bug.
For further information about this project, see :
http://sourceforge.net/forum/forum.php?forum_id=698183
[EMAIL PROTECTED] a écrit :
Is there a fix?
Gadi Evron a écrit :
On Tue, 12 Dec 2006, Joxean Koret wrote:
Wow! That's fun! The so called "Word 0 day" flaw also affects
OpenOffice.org! At least, 1.1.3. And, oh! Abiword does something cool
with the file:
This is NOT a 0day. It is a disclosed vulnerability in full-disclosure
mode,
3APA3A a écrit :
Dear [EMAIL PROTECTED],
NULL pointer dereference is not exploitable to code execution by itself.
Hi,
you should be interested by this
http://metasploit.blogspot.com/2006/08/putting-fun-in-browser-fun.html
+ a little tool https://www.securinfos.info/outils-securite-hacking
Hi,
some free LM Rainbow Tables are now ready for your wget
http://www.freerainbowtables.com/index-rainbowtables-tables.html
Enjoy!
/JA
https://www.securinfos.info/english
Jerome Athias a écrit :
Hi there,
we're proud to announce the official birth of
http://www.freerainbowtable
Hi there,
we're proud to announce the official birth of
http://www.freerainbowtables.com
this website is dedicated to offer free rainbow tables (based on
rainbowcrack)
a complete set of MD5 tables alpha-numeric - lowercase - up to 8
characters is available for free download
it's just the f
Hi,
this was also nicely described for ASP by Brett Moore
http://www.security-assessment.com/Whitepapers/0x00_vs_ASP_File_Uploads.pdf
(French translation :
https://www.securinfos.info/jerome/DOC/0x00_vs_ASP_File_Uploads_FR.pdf )
Best regards
/JA
3APA3A a écrit :
Author: ShAnKaR
Title: multi
Hi,
it's often difficult to find old versions of vulnerable softwares
it's usefull to have these old versions to test an exploit, study a
vulnerability or doing a patch analysis...
it's also usefull to test a fuzzer, a scanner... for a course or a
challenge...
so i think about to build a litt
Hi,
as i replied privately to you, yes i think we can say that. You could
consider it as an update...
Note that the vendor was contacted without response.
Regards
/JA
Steven M. Christey a écrit :
> A buffer overflow in DELE was originally reported to Bugtraq by CorryL
> in March 2005, for ArGoSo
-- Title:
ArGoSoft FTP server remote heap overflow
-- Affected Products:
ArGoSoft FTP server 1.4.3.5 (current) and prior
-- Affected Vendor:
ArGoSoft - http://www.argosoft.com
-- Impact:
DoS, Arbitrary Code Execution
-- Where:
>From remote
-- Type:
Heap Overflow
-- Vulnerability Details:
A re
Fast translation of benji's advisory
***
Author : benjilenoob
WebSite : http://benji.redkod.org/ and http://www.redkod.org/
Audit in pdf : http://benji.redkod.org/audits/ipb.2.1.pdf
Product : Invision power board
Version
35 matches
Mail list logo
