Hello, In this small post, I will explain how to install and setup OpenVAS on a Kali Linux. First, be sure to have your system up to date.
# sudo apt-get update && sudo apt-get upgrade --yes
After that, you can install openVAS.
# sudo apt-get install openvas
Once done, just run the setup to perform an initial configuration
This step takes a lot of time […]
NTP (Network Time Protocol) is the widely used protocol used by computers to ensure that their internal clocks are accurate. Surprisingly, connections between computers and NTP servers are rarely encrypted, making it possible for hackers to perform man-in-the-middle attacks that reset clocks to times that are months or even years in the past. Recently, in a paper […]
Hi everybody. Today I will explain you how to use LUKS to encrypt a disk partition. LUKS stands for Linux Unified Key Setup that means that you can forget to mount as such LUKS partition on a Windows operating system. LUKS uses cryptsetup user-space tool to configure dmcrypt, a kernel-space module that made all cryptography stuffs. Because LUKS is the standard for Linux […]
Hello everybody, In this post I will explain the simplest method to disable global anonymous binding using cn=config. This method can be easily adapted for a static configuration using slapd.conf. I am not an OpenLDAP expert but in my previous [HowTo] about OpenLDAP 2.4+, the default configuration allow anonymous binding and everybody can read the […]
Hello, everybody ! Hacker’s world starts new year with a cool gift from an hacker named “Pr0x13″ with the tool iDict which permits to bruteforce iCloud account. This tool is available to download on GitHub. This tool uses an exploit a security flaw of Apple iCloud security infrastructure to bypass restrictions and two-factor authentication security that […]
A newly discovered security issue in the widely used Linux software, Bash. Some cyber experts have said that this vulnerability may be a bigger threat than famous Heartbleed flaw surfaced in April 14. For those who don’t know, Bash is the software used to control the command prompt on many *nix computer. With this new […]
Speaking at the Black Hat cyber security conference, the analyst Ruben Santamarta of IOActive presented a paper showing that communications devices from Harris, Hughes, Cobham, Thuraya, JRC, and Iridium are all highly vulnerable to attack. Soldiers on the front lines use satellite communications systems, called SATCOMS to call in back up, lead their comrades away from […]
There’s no doubt that cyber security is center stage in the world today, thanks to almost continuous revelations about incidents, breaches and vulnerabilities. IBM has recently released a new 80-page practical guide “Staying ahead in the Cyber Security game: What Matters Now” that aims to inspire and provoke new thoughts and insights even if you […]
Norse’s ability to track and analyze vast amounts of live Web traffic, providing the first truly effective protection from all threat vectors. Amazing web site !!! http://map.ipviking.com/
After my previous post about the overview of OpenSSL Heartbleed flaw, I will now explain how to fix the vulnerability with the simple way that I have found. Please note that this post is only applicable for Debian based system but it can be adapted for other distributions. Before trying to fix your openSSL package, you […]