Re: [Full-disclosure] The World's Largest Hacker Database

I wasted 2 minutes of my life glancing at that and I won't get it back. Lame. But if the Jester approves, that's something. On 1/8/13 4:19 AM, Sanguinarious Rose wrote: > I rather like my honorable mention https://www.soldierx.com/hdb/th3j35t3r > > I approve > > On Mon, Jan 7, 2013 at 10:36 AM,

[Full-disclosure] New vulnerabilities in MODx Revolution

Hello list! I want to warn you about two new vulnerabilities in MODx Revolution. This is addition to previous publication about vulnerabilities in MODx Revolution (http://securityvulns.ru/docs28923.html). These are Abuse of Functionality vulnerabilities in MODx related to earlier mentioned Bru

Re: [Full-disclosure] The World's Largest Hacker Database

I agree. I'll admit that its pretty interesting but I highly doubt that it even remotely compares with FBI databases and similar organizations. After all its little secret that they keep their eyes on certain communities and ergo it makes sense that they will take the time to build up information o

[Full-disclosure] [SECURITY] [DSA 2602-1] zendframework security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2602-1 secur...@debian.org http://www.debian.org/security/Florian Weimer January 08, 2013

Re: [Full-disclosure] The World's Largest Hacker Database

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I'm pretty sure that the FBI has details on a few more than the < 700 records in this database. Good job finding college professor Matt Blaze, but you couldn't find Hack in the Box founder l33tdawg?!? I'm sure I could find a few more "hackers" that w

Re: [Full-disclosure] File Disclosure in SimpleMachines Forum <= 2.0.3

On 07/01/13 15:54, WHK Yan wrote: > *Summary:* > -- > A security flaw allows an attacker to know the full source file of the web > system. > > *Details: > --- > Sources/ManageErrors.php Line 340: > // Make sure the file we are looking for is one they are allowed to look at > if

[Full-disclosure] Cisco RVxxxW wireless routers weak RSA key generation

During the 83/8 subnet x509 research I've noticed that some of Cisco RVxxxW devices share same primes in RSA modules. It is possible to regenerate private key with ease using fast GCD (euklid based) operations on public key pairs. Issuer field contains information about device type: Cisco RV120W &

Re: [Full-disclosure] The World's Largest Hacker Database

I rather like my honorable mention https://www.soldierx.com/hdb/th3j35t3r I approve On Mon, Jan 7, 2013 at 10:36 AM, scryptz0 SOLDIERX wrote: > Infosec Institute made a write up on the largest public hacker database on > the net that is rumored to be rivaled by the FBI. Check it out at > http://

[Full-disclosure] The World's Largest Hacker Database

Infosec Institute made a write up on the largest public hacker database on the net that is rumored to be rivaled by the FBI. Check it out at http://resources.infosecinstitute.com/worlds-largest-public-hacker-database/ The SOLDIERX HDB is the world’s largest public hacker database on the net > and

[Full-disclosure] File Disclosure in SimpleMachines Forum <= 2.0.3

*Summary:* -- A security flaw allows an attacker to know the full source file of the web system. *Details: --- Sources/ManageErrors.php Line 340: // Make sure the file we are looking for is one they are allowed to look at if (!is_readable($file) || (strpos($file, '../') !== fal