Hello, In this small post, I will explain how to install and setup OpenVAS on a Kali Linux. First, be sure to have your system up to date.
# sudo apt-get update && sudo apt-get upgrade --yes
After that, you can install openVAS.
# sudo apt-get install openvas
Once done, just run the setup to perform an initial configuration
This step takes a lot of time […]
NTP (Network Time Protocol) is the widely used protocol used by computers to ensure that their internal clocks are accurate. Surprisingly, connections between computers and NTP servers are rarely encrypted, making it possible for hackers to perform man-in-the-middle attacks that reset clocks to times that are months or even years in the past. Recently, in a paper […]
Hello, everybody ! Hacker’s world starts new year with a cool gift from an hacker named “Pr0x13″ with the tool iDict which permits to bruteforce iCloud account. This tool is available to download on GitHub. This tool uses an exploit a security flaw of Apple iCloud security infrastructure to bypass restrictions and two-factor authentication security that […]
Hello ! In this new post, I will explain how to retrieve current pattern of an Android device. For you information, this problem has been proposed on a web-based CTF (Capture the Flag) in a computer security competition. I always tried on a rooted device but if someone can try this trick on a non-rooted […]
A newly discovered security issue in the widely used Linux software, Bash. Some cyber experts have said that this vulnerability may be a bigger threat than famous Heartbleed flaw surfaced in April 14. For those who don’t know, Bash is the software used to control the command prompt on many *nix computer. With this new […]
Speaking at the Black Hat cyber security conference, the analyst Ruben Santamarta of IOActive presented a paper showing that communications devices from Harris, Hughes, Cobham, Thuraya, JRC, and Iridium are all highly vulnerable to attack. Soldiers on the front lines use satellite communications systems, called SATCOMS to call in back up, lead their comrades away from […]
After my previous post about the overview of OpenSSL Heartbleed flaw, I will now explain how to fix the vulnerability with the simple way that I have found. Please note that this post is only applicable for Debian based system but it can be adapted for other distributions. Before trying to fix your openSSL package, you […]
Heartbleed flaw is a serious vulnerability in OpenSSL library. This problem has been found by Neel Mehta of Google Security and the fix has been developed by Adam Langley and Bodo Moeller. This big bug allows anyone who is connected to Internet the read the server or client memory if they run a vulnerable version […]