Hashcat is an advanced GPU hash cracking utility that includes the World's fastest md5crypt, phpass, mscash2 and WPA / WPA2 cracker. It also has the first and only GPGPU-based rule engine, focuses on highly iterated modern hashes, single dictionary-based attacks, and more. This is the source code release.
3acd1d783f13183c57383069403de0554534ac2b06a30e7e078544e524f940d2
Hashcat is an advanced GPU hash cracking utility that includes the World's fastest md5crypt, phpass, mscash2 and WPA / WPA2 cracker. It also has the first and only GPGPU-based rule engine, focuses on highly iterated modern hashes, single dictionary-based attacks, and more. This is the binary release.
c47c72bcbc4c5e75bca343e7a232d28d673c23ac832868c5d73514ff083466d5
CarolinaCon is now accepting speaker/paper/demo submissions for its 13th annual conference. This event will be held May 19th through the 21st, 2017 in Raleigh, NC, USA.
71eda521f0ba78ef14b3745098e24adabdcefe7d37b4dabba624ac7877e23e40
This is a custom firmware written for the proxmark3. It extends the currently available firmware (revision 2.3.0) to support brute force attacks against proximity card access control systems.
ddda40373acc564ac58e12f08d9b1b9916d5229b18dc4d48f39fc4883bd8a64f
The intent of this document is to help penetration testers and students identify and test LFI vulnerabilities on future penetration testing engagements by consolidating research for local file inclusion LFI penetration testing techniques. LFI vulnerabilities are typically discovered during web app penetration testing using the techniques contained within this document. Additionally, some of the techniques mentioned in this paper are also commonly used in CTF style competitions.
5e0f59932f1a0e50ca16efbe5fc14be1920860feb00a8731ba38a2383ae6c8bf
Intuit QuickBooks Desktop 2017 suffers from an administrative credential disclosure vulnerability.
10252ec45ea7af9a32451f5b92db73a9c34ddb1e8c3a393dc51be79be63e55cb
Proof of concept exploit for Microsoft Edge bugs that allow for remote code execution.
f2d4f1a9012f8e20eb5fd805d9286e3ffc7dd340986f32bc6918556e5807cb8e
The openscap project is a set of open source libraries that support the SCAP (Security Content Automation Protocol) set of standards from NIST. It supports CPE, CCE, CVE, CVSS, OVAL, and XCCDF.
eeaa37a48b71b0cd455a94f40f01aea0572a846a9ea2722f7f5d2fbbc949ec5c
Red Hat Security Advisory 2017-0025-01 - puppet-tripleo is a key component of the Red Hat OpenStack Platform director, which is a toolset for installing and managing a complete OpenStack environment. Security Fix: An access-control flaw was discovered in puppet-tripleo's IPtables rules management, which allowed the creation of TCP/UDP rules with empty port values. Some API services in Red Hat OpenStack Platform director are not exposed to public networks, which meant their $public_ssl_port value was set to empty. If SSL was enabled, a malicious user could use these open ports to gain access to unauthorized resources.
a48f9fb7ad9d056d3ec0c156296cccf20c24bff95d6d79a2420eb5be23242710