Offensive Security Blog

  • Free Online Information Security Training By Offensive Security

    We are finally ready to present the free information security training – Metasploit Unleashed – Mastering the Framework. This resource will be a living, breathing Metasploit documentation entity. We will keep on updating and adding new modules and chapters as the MSF evolves. For a …

    Read More →
  • Sniffing DECT Phones – The Details

    5M7X has completed his DECT write-up, and it rocks. As DECT phone manufacturers rarely give any indication about their phone encryption capabilities, the only reliable way to check the security of your phone is to test it yourself. The paper goes into detail about the …

    Read More →
  • Social Engineering at its best

    In conjunction with a team of social engineers, penetration testers and information security experts, www.social-engineer.org is opening its “virtual” doors today. The team at Offensive Security has been working with many contributors and specialists to put together the Webs Official Framework for Social Engineering. www.social-engineer.org …

    Read More →
  • Sniffing DECT Phones with BackTrack

    BIG FAT HAIRY NOTE: IT IS ILLEGAL TO RECORD PHONE CONVERSATIONS IN MANY COUNTRIES. For a list of state privacy laws in the US, click here and here. Thanks to 5m7x, dedected is soon to be added to the BackTrack repositories. In our internal tests, …

    Read More →
  • Metasploit Unleashed – Information Security Training at its best.

    The “Metasploit Unleashed” online courseware is almost ready! We had several technical issues which delayed the release of the course by a couple of weeks. Here’s a quick teaser, showing some of the TOC. We expect the online version to be released in a week …

    Read More →
  • Microsoft IIS FTP 5.0 Remote SYSTEM Exploit

    A remote Microsoft FTP server exploit was released today by Kingcope, and can be found at http://milw0rm.com/exploits/9541, A quick examination of the exploit showed some fancy manipulations in a highly restrictive environment that lead to a”useradd” type payload. The main issue was the relatively small …

    Read More →
  • BackTrack 4 Pre Final Kernel Update

    We have pushed a new kernel to the repository and updated several drivers. The upgrade process is a bit convoluted, but has been streamlined for the future. For now, run these commands from your backtrack box to update to the latest kernel and drivers: apt-get …

    Read More →
  • Kernel whoops in BackTrack 4

    The latest Linux Kernel ‘sock_sendpage()’ NULL Pointer Dereference Vulnerability did not spare BackTrack 4 either.  We’ve taken this opportunity to upgrade the BackTrack 4 kernel and include the required security patch. The patched kernel source and image can be downloaded here : BackTrack 4 Kernel …

    Read More →
  • Metasploit Unleashed – Mastering the Framework

    The Offensive Security Team along with several active community members, have been working diligently to bring you an in depth course on the Metasploit Framework – “Mastering the Framework” . This course will take you on a journey through the  Metasploit Framework in full detail, …

    Read More →
  • Social Engineering Contest – Defcon 2009

    Social Engineer your way to a free course! DC718 and Telephreak are bringing Social Engineering back to Defcon. Offensive Security has linked together with DC718, Telephreak, the contest/event Goons Pyr0 and Russr and www.social-engineer.org to have the best of the best to judge and help …

    Read More →
Page 12 of 15« First...«1011121314»...Last »