NZ InfoSec http://www.nzinfosec.com New Zealand Information Security Sun, 20 May 2012 20:00:14 +0000 en hourly 1 http://wordpress.org/?v=3.3.2 VPN proxy + nmap = ? http://www.nzinfosec.com/vpn-proxy-nmap/ http://www.nzinfosec.com/vpn-proxy-nmap/#comments Sun, 20 May 2012 20:00:14 +0000 Admin http://www.nzinfosec.com/vpn-proxy-nmap/

As the title suggests, I am wondering, if it would be possible to nmap through a vpn tunnel and what possible conflicts could occur…

]]> http://www.nzinfosec.com/vpn-proxy-nmap/feed/ 0 Advanced SQL Injection with SQLol: The Configurable SQLi Testbed [video] – YouTube http://www.nzinfosec.com/advanced-sql-injection-with-sqlol-the-configurable-sqli-testbed-video-youtube/ http://www.nzinfosec.com/advanced-sql-injection-with-sqlol-the-configurable-sqli-testbed-video-youtube/#comments Sun, 20 May 2012 18:00:11 +0000 Admin http://www.nzinfosec.com/advanced-sql-injection-with-sqlol-the-configurable-sqli-testbed-video-youtube/ http://www.youtube.com/watch?v=8eKa11NsIV0

]]> http://www.nzinfosec.com/advanced-sql-injection-with-sqlol-the-configurable-sqli-testbed-video-youtube/feed/ 1 Quick introduction to some Web App backdoors in PHP. http://www.nzinfosec.com/quick-introduction-to-some-web-app-backdoors-in-php/ http://www.nzinfosec.com/quick-introduction-to-some-web-app-backdoors-in-php/#comments Sun, 20 May 2012 15:00:09 +0000 Admin http://www.nzinfosec.com/quick-introduction-to-some-web-app-backdoors-in-php/ http://gatetomi.tumblr.com/post/23412022814/infodox-video-quick-introduction-to-some-web

]]> http://www.nzinfosec.com/quick-introduction-to-some-web-app-backdoors-in-php/feed/ 1 ISC Diary | PHP 5.4 Remote Exploit PoC in the wild http://www.nzinfosec.com/isc-diary-php-5-4-remote-exploit-poc-in-the-wild/ http://www.nzinfosec.com/isc-diary-php-5-4-remote-exploit-poc-in-the-wild/#comments Sat, 19 May 2012 22:00:23 +0000 Admin http://www.nzinfosec.com/isc-diary-php-5-4-remote-exploit-poc-in-the-wild/ https://isc.sans.edu/diary/PHP+5+4+Remote+Exploit+PoC+in+the+wild/13255

]]> http://www.nzinfosec.com/isc-diary-php-5-4-remote-exploit-poc-in-the-wild/feed/ 27 Personal Android security survey http://www.nzinfosec.com/personal-android-security-survey/ http://www.nzinfosec.com/personal-android-security-survey/#comments Sat, 19 May 2012 18:01:37 +0000 Admin http://www.nzinfosec.com/personal-android-security-survey/

Survey here. – 7 questions, pretty simple, anonymous.

Hey guys. I'm looking to get some stats for an upcoming presentation I'm giving in a few months.

The questions pertain to the security of your Android device. I'm interested in knowing what, security precautions you take with your phone.

I'll be spreading the survey around for probably about a week, and after that week, I'll provide the stats for anyone who is interested.

Thanks guys!

Note: To clarify, I'm looking specifically for the device that you consider your "primary" phone or tablet. The one device that you carry with you 24/7.

]]> http://www.nzinfosec.com/personal-android-security-survey/feed/ 10 Do It Yourself Software Framework http://www.nzinfosec.com/do-it-yourself-software-framework/ http://www.nzinfosec.com/do-it-yourself-software-framework/#comments Sat, 19 May 2012 15:00:30 +0000 Admin http://www.nzinfosec.com/do-it-yourself-software-framework/ http://syprog.blogspot.com/2012/05/simple-runtime-framework-by-example.html

]]> http://www.nzinfosec.com/do-it-yourself-software-framework/feed/ 0 OTR Format String Bug http://www.nzinfosec.com/otr-format-string-bug/ http://www.nzinfosec.com/otr-format-string-bug/#comments Sat, 19 May 2012 08:00:23 +0000 Admin http://www.nzinfosec.com/otr-format-string-bug/ http://lists.cypherpunks.ca/pipermail/otr-announce/2012-May/000026.html

]]> http://www.nzinfosec.com/otr-format-string-bug/feed/ 0 Frogger – The VLAN Hopper script. Auto enumerates and assists with VLAN hopping. http://www.nzinfosec.com/frogger-the-vlan-hopper-script-auto-enumerates-and-assists-with-vlan-hopping/ http://www.nzinfosec.com/frogger-the-vlan-hopper-script-auto-enumerates-and-assists-with-vlan-hopping/#comments Sat, 19 May 2012 07:00:25 +0000 Admin http://www.nzinfosec.com/frogger-the-vlan-hopper-script-auto-enumerates-and-assists-with-vlan-hopping/ http://www.commonexploits.com/?p=444

]]> http://www.nzinfosec.com/frogger-the-vlan-hopper-script-auto-enumerates-and-assists-with-vlan-hopping/feed/ 4 Recovering Remote Windows Passwords in Plain Text with WCE http://www.nzinfosec.com/recovering-remote-windows-passwords-in-plain-text-with-wce/ http://www.nzinfosec.com/recovering-remote-windows-passwords-in-plain-text-with-wce/#comments Sat, 19 May 2012 07:00:24 +0000 Admin http://www.nzinfosec.com/recovering-remote-windows-passwords-in-plain-text-with-wce/ https://cyberarms.wordpress.com/2012/05/16/recovering-remote-windows-passwords-in-plain-text-with-wce/

]]> http://www.nzinfosec.com/recovering-remote-windows-passwords-in-plain-text-with-wce/feed/ 1 A closer look into the RSA SecureID software token http://www.nzinfosec.com/a-closer-look-into-the-rsa-secureid-software-token/ http://www.nzinfosec.com/a-closer-look-into-the-rsa-secureid-software-token/#comments Sat, 19 May 2012 07:00:23 +0000 Admin http://www.nzinfosec.com/a-closer-look-into-the-rsa-secureid-software-token/ http://www.sensepost.com/blog/7045.html

]]> http://www.nzinfosec.com/a-closer-look-into-the-rsa-secureid-software-token/feed/ 18