Web-backdoors – Attacks, Evasion, Detection
// December 13th, 2011 // No Comments » // Atheneum, White papers
Whitepaper by : Rahul Sasi a.k.a f1bh2s
White papers
An-Analysis-of-a-Facebook-Spam-exploited-through-Browser-Add-ons
// December 13th, 2011 // No Comments » // Atheneum, White papers
Whitepaper by: Prajwal Panchmahalkar
Security Issues in Android Custom Rom – Whitepaper
// October 18th, 2011 // No Comments » // Atheneum, White papers
Author: Anant Shrivastava
Android is a software stack for mobile devices such as mobile telephones and tablet computers
developed by Google Inc and the Open Handset Alliance. Android consists of a mobile operating system
based on the Linux kernel, with middleware, libraries and APIs written in C and application software
running on an application framework which includes Java-compatible libraries based on Apache
Harmony. Android uses the Dalvik virtual machine with just-in-time compilation to run compiled Java
code. – WIKIPEDIA
In Simple terms Android is the operating system behind +40% smart phones and 10-20% tablet market.
There are various manufacturers backing this OS including the likes of Samsung, Motorola, Sony
Ericsson, LG, HTC and many more.
Based on Linux kernel large part of the android source code is available in public space (except few
google specific products and honeycomb or 3.X series ). This provides the unique opportunity for one
and all to have a custom phone for him.
Web Application Finger Printing – Methods/Techniques and Prevention
// July 17th, 2011 // No Comments » // Atheneum, White papers
Author: Anant Shrivastava
Web Application Finger Printing – Methods/Techniques and Prevention
This Paper discusses about a relatively nascent field of Web Application finger printing, how it is
performed in the current scenarios, what are the visible shortcomings in the approach and then
discussing about ways and means to avoid Web Application Finger Printing
Project Jugaad
// July 3rd, 2011 // 1 Comment » // White papers
Author: Aseem Jakhar
Project Jugaad
View more documents from n|u – The Open Security Community.
Cracking Salted Hashes
// August 25th, 2010 // 1 Comment » // White papers
Author: Rahul Sasi (fb1h2s)
Web Application Security: – The Do’s and Don’ts of “Salt Cryptography”
Data Base security has become more critical as Databases have become more open. And Encryption which is one among the five basic factors of data base security.
It’s an insecure practice to keep your sensitive data like Password, Credit Card no etc unencrypted in you database. And this paper will cover the various Cryptography options available and do and don’t them.
Even if you have encrypted your data that doesn’t mean that your data’s are fully secured, and this paper will be covered in an Attacker perspective.
Cracking Salted Hashes
View more documents from n|u – The Open Security Community.
Phishing and being phished!
// July 27th, 2010 // No Comments » // White papers
Author: webDEViL
Phishing and being phished!
View more documents from n|u – The Open Security Community.
Reverse Honey Traps – Beating Online Anti-virus Engine in its Own Game
// June 7th, 2010 // No Comments » // White papers
Author: Rohit Bansal (RB1337) / Aditya K Sood (0kn0ck)
Web based online anti viruses are used heavily for scanning malware files and providing the resultant output. There are number of online service providers which perform inline scanning of uploaded malware executables by the normal user or the victims. This process is based on the hierarchical functions and different steps opted to analyze the viruses and other worm activities. The infections occur dynamically when the executable becomes active in the environment. Everything is automated in this process as servers residing at the backend scan the executable and sent the information to other third party servers for secondary analysis or updating their record directly. That’s how the normal functioning of free online malware scanner works.
Penetration Testing versus Source Code Review
// April 4th, 2010 // No Comments » // White papers
Author: Nikhil Wagholikar
Within the domain of application security assessments, there are multiple approaches that can be considered. The most common ones are black-box penetration testing, application design review and source code reviews……
Spam – The Evolution
// May 8th, 2009 // No Comments » // White papers
This paper discusses the evolution of spam and how spammers operate in the wild. It also talks about the details of various AntiSpam techniques used to stop spam and how spammers target each technique for bypassing the AntiSpam servers.
Author: Aseem Jakhar
Spam – The Evolution
View more documents from n|u – The Open Security Community.
n|u Security Jobs – 5 recent posts
- [Full-time] Senior Consultant - Information Risk Advisory Services--- ISMS,ISO27001,GapAnalysis,RiskAssessment at Aujas Networks Pvt. LTD
- [Full-time] Consultant / Senior Consultant --- VAPT,Code Review at Aujas Networks Pvt. LTD
- [Full-time] Risk Analyst at EMC Corporation
- [Full-time] Consultant/Assistant Manager-KPMG New Zealand-NZ Residence Visa/Work Visa holders only at KPMG NZ
- [Freelance] ECCouncil Security Certified Consultants Required at Growmind Solutions
My photos. Now you know me.
- Praveen said: This is the first session i attended after getting...
- Nikhhil Anand said: I am new to the community,can I attend the worksho...
- Prabhakar Prasad said: Hi want to join Null team bangalore location ,plea...
- Sandesh said: Hi - I am a software security consultant and a for...
- Yogesh said: Hi, I have been told that there is a meet on sa...
- Nitesh said: Hey Chandan, Sorry for delay in replying. You a...
- [null][Meet][Mumbai] 26th January @ Directi
- [null][Meet][Chennai] 21st April 2012 @ Tidel Park
- [null][Meet][Banglore] 19th May, 2012 @ Kieon, Prestige Sigma
- null Pune Meet on 9th July, 2011
- [null][Mumbai][Meet] 29th December @ Directi
About
antispam
awareness
bruteforce
camp
challenge
chapter
code
Contact
contest
contribute
email
evade
evasion
event
firewall
group
hdfc
idea
IDS
IPS
iptables
join
kosmix
list
malware
meet
null
nullcon
packet
PPPoE
publish
rediff
research
seminar
session
smtp
spam
spf
spyware
sql
talk
vulnerability
wildhack
xss
