Re: [Full-disclosure] Unauthorized Digital Certificates Could Allow Spoofing

.com/microsoft-unauthorized-certificate-was-used-sign-flame-malware Shreyas Zare Sr. Information Security Researcher Secfence Technologies www.secfence.com ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Host

Re: [Full-disclosure] Google Accounts Security Vulnerability

enabled. Regards, (If debugging is the process of removing bugs, then programming must be the process of putting them in --Edsger Dijkstra) Shreyas Zare Sr. Information Security Researcher Secfence Technologies http://www.secfence.com Follow me on twitter @shreyasonline <https://twitter.c

[Full-disclosure] [TOOL RELEASE] Technitium MAC Address Changer v6 (FREEWARE)

, then programming must be the process of putting them in --Edsger Dijkstra) Shreyas Zare Co-Founder, Technitium eMail: shre...@technitium.com Follow @shreyasonline on twitter Check out Technitium | Blog [http://blog.technitium.com] Follow @Technitium on twitter

Re: [Full-disclosure] Privat24 (Facebook version) bypass of static password for accounts of PrivatBank (Ukraine, Russia and CIS)

://www.forbes.ru/karera/rynok-truda/57722-zaprogrammirovat-kareru > > -- > TAG > Interesting. Providing the same level of security to financial details and FarmVille is really bad idea. Many banks are providing two factor authentication, different password for transactions etc to provide be

Re: [Full-disclosure] Privat24 (Facebook version) bypass of static password for accounts of PrivatBank (Ukraine, Russia and CIS)

LOL. It must be quite convenient to use banking alongside FarmVille. Shreyas Zare Sr. Information Security Researcher Secfence Technologies www.secfence.com On Mon, Oct 11, 2010 at 3:57 AM, Andriy Tereshchenko wrote: > 1) Affected Service > > * Privat24 application in Facebook c

Re: [Full-disclosure] Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability

showing a small arrow in the icon, user dont see any extension and LNK file size is just few bytes! Shreyas Zare Sr. Information Security Researcher Secfence Technologies www.secfence.com On Fri, Sep 10, 2010 at 11:38 PM, Dan Kaminsky wrote: > On Fri, Sep 10, 2010 at 11:46 AM, Nikhil Mit

Re: [Full-disclosure] [GOATSE SECURITY] Clench: Goatse's way to say "screw you" to certificate authorities

Hi, I totally agree with Tim. SSL is fragile but the mentioned protocol basically creates the same problems which is why PKI was created to solve. Regards, Shreyas Zare Sr. Information Security Researcher Secfence Technologies www.secfence.com On Thu, Sep 9, 2010 at 1:00 AM, Tim wrote

Re: [Full-disclosure] Virus submission site

Hi, Thats cool, but it looks like the site is DDoSed. Will check it out again later. Regards, Shreyas Zare Sr. Information Security Researcher Secfence Technologies www.secfence.com On Sat, Sep 4, 2010 at 8:34 AM, Hacxx 20 wrote: > It's done, added a upload method and all the f

Re: [Full-disclosure] Virus submission site

Hi, If http://virus-submission.tk could archive all submits and provide a weekly download for all samples, that would be a cool service! Regards, Shreyas Zare Sr. Information Security Researcher Secfence Technologies www.secfence.com On Fri, Sep 3, 2010 at 8:28 PM, Christian Sciberras wrote

Re: [Full-disclosure] Two biggest Indian University Websites are vulnerable

cool. [1] IT Act 2000, Chapter 9, 43 (G) ( http://www.cybercellmumbai.com/cyber-laws/chapter-9 ) Regards Shreyas Zare Sr. Information Security Researcher Secfence Technologies www.secfence.com On Sat, Jul 17, 2010 at 3:01 PM, Sandeep Sengupta wrote: > Topic: > > a) Sikkim Manipal Uni

Re: [Full-disclosure] Real Player 0day for WinXP

Hi, And how is this real player 0day when you are exploiting windows hcp vulnerability? Regards, Shreyas Zare Sr. Information Security Researcher Secfence Technologies www.secfence.com On Thu, Jul 8, 2010 at 12:13 PM, webDEViL wrote: > > http://krash.in/real-exp/exploit.ram > Use