We know that when the operating system loads the executable, it will scan through its IAT table to locate the DLLs and functions the executable
If you’ve been paying attention to vulnerabilities in web applications, you’ve certainly heard of attacks involving SQL injections, cross-site scripting, and poor session management. Thanks
Background: Metasploitable is a Linux-based vulnerable virtual machine. It is designed especially for people interested in learning system exploitation. Rapid7 maintains Metasploitable and this virtual
In the first part of this of this mini-series on the botnet cyber threat, we have shown the current scenario and the technological evolution in
Welcome back to my continuing series of articles on Snort rule writing. My first couple of installments in this series addressed some very simple rules
1. Introduction A patent is defined as an exclusive right or rights provided by a government to an inventor for a certain period of time
The recent major vulnerability CVE-2013-0027 flooded almost all versions of Microsoft Internet Explorer and affected operating systems like Windows XP, Vista, 7, and 8, including
Simple Example of Export Directory Let’s take a look at a simple example to understand how the export directory is used by the executables/libraries. Let’s
Internet usage is growing dramatically, but the vast majority of internet users don’t have any security backgrounds. Neither do a large majority of companies care
The article tries to cover various Android forensic techniques that can be helpful in a variety of situations. The techniques or discussions below can be
Introduction The point of this article is to lay down the conceptual groundwork of numerous .NET related topics such as CLR, CTS, CLS, Managed Code,
PREFACE In this article, I would like to present the risks associated with hosting your site on a shared hosting server. I often correlate it
Most of the programs that we use every day contain bugs; a bug is a malfunction in a program, which can make the program take
INTRODUCTION: In 1988, the first buffer overflow was exploited to compromise many systems. After 20 years, applications are still vulnerable, despite the efforts made in
Background: In the previous article, we’ve covered how to implement security in procurement process and vendor contracts. There are 3 different aspects to managing vendors:
Spamhaus recently witnessed one of the biggest Distributed Denial of Service attacks on its infrastructure. The Spamhaus Project is an international non-profit organization that has
Abstract Security is an essential part of .NET applications and should be taken into consideration from the grass root level. Security is all about protecting
What is the cloud, anyways? The term is new, but concept is not. Throughout the history of computing, IT organizations have been using their own
Introduction A Demilitarized Zone (DMZ) is a computer host or small network between a company private network and the outside public network. It was born
In the previous part of the article, we’ve explained how to compile the Windows kernel driver. Now that we know how to compile the driver,
