Welcome to KnowledgeCave - Network Security News
Search
_TOPICS
Home Your Account FAQ Topics Content Submit News Top 10
  Login/Create an Account    

KC Menu
· Home
· Downloads
· Forums
· KC Archive
· KC Disclaimer
· KC Members List
· KC Search
· KC Sorted Articles
· KC Staff
· KC Surveys
· KC Top 10
· KC Video archive
· KC Web Links
· Your Account
· Your Private Messages

KC OnLine Tools
· KCPenTrix 1.0
· KCPenTrix 2.0
· Speed test
· Whois
· Network Utils
· Ports List

Google Search
Google

Related links

..-=[KnowledgeCave]=-..

Welcome to Knowledgecave Security News

Official home of KCPentrix PenTest live DVD

A free site dedicated to penetration testing methods and tools ...

Your new portal to deep sec news !


Download KCpentrix 2.0 ISO : kcpentrix.com SecurityDistro.com Sourceforge.net


HIGH SPEED FREE ONLINE: 118 Security video tutorials





AdSense


FreeLancer It Jobs

Currently there is a problem with headlines from this site

Security Tools: Cain & Abel v4.9.6 released
Microsoft Windows Related
"New features:

- Added Windows Vista support in LSA Secrets Dumper for external registry files.
- Fixed a bug in LSA Secrets Dumper causing application crashes.
- Fixed a bug in NT Hashes dumper for hive files when only NT hashes are present.
- Winpcap library upgrade to version 4.0.1.
- Added Windows Vista support for Active Wireless Scanner.
- Off-line capture file processing now compatible with 802.1Q Vlan encapsulation.
- Sniffer filter for LDAP passwords.
- Automatic Certificate Collector for LDAPS protocol.
- LDAPS Man-in-the-Middle Sniffer and password collector (TCP port 636)."


Homepage : Here

Posted by traxx on Thursday, August 02 @ 20:20:35 MST (5435 reads)
(Read More... | 801 comments | Security Tools | Score: 0)

Security Tutorials: 2 Java Web Security WhitePapers
Security Tutorials
SecNiche Security released two whitepapers regarding Java Web Security Technologies

JNLP Security Convergence : Here

Hack Annotations in JWIG : Here

Posted by traxx on Thursday, July 26 @ 18:52:05 MST (3572 reads)
(Read More... | 772 comments | Security Tutorials | Score: 0)

Security Tutorials: BIND 9 DNS Cache Poisoning paper
Security Tutorials
New Amit Klein paper:

"The paper shows that BIND 9 DNS queries are predictable
A predictability algorithm is described that, in optimal conditions,
provides very few guesses for the "next" query (10 in the basic attack,
and 1 in the advanced attack), thereby overcoming whatever protection
offered by the transaction ID mechanism. This enables a much more
effective DNS cache poisoning than the currently known attacks against BIND 9..."

Read: Here

Posted by traxx on Thursday, July 26 @ 18:47:14 MST (1443 reads)
(Read More... | 128 comments | Security Tutorials | Score: 0)

Security Tools: Cain & Abel v4.9.5 released
Microsoft Windows Related
"New features:

- Added Windows Vista support for Active Wireless Scanner.
- Off-line capture file processing now compatible with 802.1Q Vlan encapsulation.
- Sniffer filter for LDAP passwords.
- Automatic Certificate Collector for LDAPS protocol.
- LDAPS Man-in-the-Middle Sniffer and password collector (TCP port 636)."

Homepage: Here

Posted by traxx on Thursday, July 26 @ 18:44:52 MST (3544 reads)
(Read More... | 739 comments | Security Tools | Score: 0)

Security Tutorials: XSS Tunneling White Paper and Tool
Security Tutorials
"XSS Tunneling is the tunneling of HTTP traffic through an opened XSS
Channel. Thus any application with HTTP proxy support can tunnel its
traffic through an XSS Channel (a channel opened by a tool like XSS
Shell).
White paper is explaining XSS Tunneling, benefits, real worlds examples
and basic usage of XSS Tunnel (a local HTTP proxy for tunneling) tool."

Homepage: Here

Posted by traxx on Wednesday, July 11 @ 16:34:09 MST (3675 reads)
(Read More... | 788 comments | Security Tutorials | Score: 5)

Old Articles

Wednesday, July 11
· DNS pinning and web proxies paper
Thursday, June 28
· AirCrack-ng 0.9.1 released
Tuesday, June 26
· ISR-sqlget v1.0.0 released
Monday, June 25
· Pixy - An Open-Source Vulnerability Scanner for PHP Applications
Wednesday, June 20
· Sqlninja 0.1.2 released
· Cain & Abel v4.9.4 released
Tuesday, June 19
· Honeywall version 1.2 released
Wednesday, June 13
· BlueDiving v0.8 released
· FireCAT 1.1 Firefox Catalog of Auditing exTensions available
· w3af - Web Application Attack and Audit Framework

Older Articles

DShield Status / Nosiest IP


ISC/SANS Status

Internet Storm Center Infocon Status


Vulnerability Database

·Vuln: KSP '.m3u' File Buffer Overflow Vulnerability
·Vuln: Icarus 'PGN' File Remote Stack Buffer Overflow Vulnerability
·Vuln: HP-UX Software Distributor Unspecified Local Privilege Escalation Vulnerability
·Vuln: Trend Micro Internet Security Pro ActiveX Control Remote Code Execution Vulnerability
·Bugtraq: Re: Re: IIS5.1 Directory Authentication Bypass by using ?:$I30:$Index_Allocation?
·Bugtraq: VUPEN Security Research - Google Chrome Focus Processing Memory Corruption Vulnerability (VUPEN-SR-2010-249)
·Bugtraq: [SECURITY] [DSA-2102-1] New barnowl packages fix arbitrary code execution
·Bugtraq: [ MDVSA-2010:170 ] wget
·More rss feeds from SecurityFocus

read more...

KC Categories
· All Categories
· Other
· Security News
· Security Tools
· Security Tutorials
· Weblinks

KC Video Archive
DNS Spoofing

By: traxx
On: 08th May 2007
Views: 1095
Rating: 0.00 Votes: 0

XP SP2 Buffer overflows exploitation

By: traxx
On: 08th May 2007
Views: 944
Rating: 0.00 Votes: 0

PHP backdoor + local root exploit

By: traxx
On: 08th May 2007
Views: 902
Rating: 0.00 Votes: 0

ActiveX bug in IE

By: traxx
On: 08th May 2007
Views: 766
Rating: 0.00 Votes: 0

MSF exploit builder

By: traxx
On: 08th May 2007
Views: 819
Rating: 0.00 Votes: 0

JPortal SQL injection

By: traxx
On: 08th May 2007
Views: 753
Rating: 0.00 Votes: 0

JSP Injection fast demo

By: traxx
On: 17th Jan 2007
Views: 870
Rating: 0.00 Votes: 0

Bluetooth Hack

By: traxx
On: 17th Jan 2007
Views: 979
Rating: 0.00 Votes: 0

PHP remote file inclusion

By: traxx
On: 17th Jan 2007
Views: 838
Rating: 0.00 Votes: 0

CRLF Injection

By: traxx
On: 17th Jan 2007
Views: 825
Rating: 0.00 Votes: 0

Privilege escalation with metasploit

By: traxx
On: 10th Nov 2006
Views: 809
Rating: 0.00 Votes: 0

Another MSF usage of RPC_DCOM

By: traxx
On: 10th Nov 2006
Views: 734
Rating: 0.00 Votes: 0

DeAUTH all WIFI station

By: traxx
On: 10th Nov 2006
Views: 750
Rating: 0.00 Votes: 0

Cracking WEP in 10 minutes

By: traxx
On: 10th Nov 2006
Views: 825
Rating: 0.00 Votes: 0

Tunelling Exploit thru ssh-dcom

By: traxx
On: 10th Nov 2006
Views: 666
Rating: 0.00 Votes: 0


KC Total Hits
We received
1313685
page views since February 2005

Security News
·News: Change in Focus
·News: Twitter attacker had proper credentials
·News: PhotoDNA scans images for child abuse
·News: Conficker data highlights infected networks
·Brief: Google offers bounty on browser bugs
·Brief: Cyberattacks from U.S. "greatest concern"
·Brief: Microsoft patches as fraudsters target IE flaw
·Brief: Attack on IE 0-day refined by researchers
·News: Monster botnet held 800,000 people's details
·News: Google: 'no timetable' on China talks

read more...

TheRegister Security Headlines
·Nigerian man gets 12 years for $1.3m 419 scam
·Spammers latch onto Ping to pump iPhone survey scams
·Symantec Snoop Dogg rap contest site rickrolled
·Phone bugging scandal reignited as <em>NotW</em> suspends reporter
·Microsoft freshens retro code lock-down tool
·iTunes update plugs WebKit flaw
·Symantec and Snoop Dogg launch cybercrime rap contest
·Cyber-jihadists deface home of teddy bears' picnic
·Feds crack phone clone scam that cost Sprint $15m
·Microsoft releases FixIt for critical flaw in 100 apps

read more...

Tech News
·addict3d.org

read more...

Latest Downloads
1:Kcpentrix 2.0 submitted by fred
2:Wi-Fi Security: What Hackers Know That You Don't submitted by air defense
3:The whitepaper gives a detailed view of the current wireless threats and the working countermeasures submitted by Uniskill
4:One-way Web Hacking submitted by iNPUt-
5:wnikto submitted by iNPUt-

Donations

Support knowledgecave & KCPentrix Via Paypal



All logos and trademarks in this site are property of their respective owner. The comments are property of their posters, all the rest © 2005 by KnowledgeCave Crew.
Creation and development by Fredericofrazao.com
PHP-Nuke Copyright © 2004 by Francisco Burzi. This is free software, and you may redistribute it under the GPL. PHP-Nuke comes with absolutely no warranty, for details, see the license.
Page Generation: 1.04 Seconds