Blogspot - security-sh3ll.blogspot.com - Security-Shell
General Information:
Latest News:
CookieCatcher - Session Hijacking Tool 27 Aug 2013 | 11:25 am
CookieCatcher is an open source application which was created to assist in the exploitation of XSS (Cross Site Scripting) vulnerabilities within web applications to steal user session IDs (aka Session...
GoLismero - The Web Knife Version 2.0 beta Released 22 Aug 2013 | 12:15 pm
GoLismero is an open source framework for security testing. It's currently geared towards web security, but it can easily be expanded to other kinds of scans. The most interesting features of the fr....
ZMap Internet Scanner v1.0.3 Released 20 Aug 2013 | 11:26 am
ZMap is a fast network scanner designed for Internet-wide network surveys. On a typical desktop computer with a gigabit Ethernet connection, ZMap is capable scanning the entire public IPv4 address spa...
WATOBO 0.9.13 Released 10 Aug 2013 | 02:18 am
WATOBO is intended to enable security professionals to perform highly efficient (semi-automated ) web application security audits. WATOBO works like a local proxy, similar to Webscarab, Paros or BurpS...
Browser Timing Attacks 8 Aug 2013 | 04:02 pm
Pixel Perfect Timing Attacks with HTML5 Abstract This paper describes a number of timi ng attack techniques that can be used by a malicious web page to steal sensitive data from a browser, break...
Zarp - Network Attack Framework 3 Jul 2013 | 08:55 pm
Zarp is a network attack tool centered around the exploitation of local networks. This does not include system exploitation, but rather abusing networking protocols and stacks to take over, infiltrate...
Released the new version of OWASP Top 10 - 2013 13 Jun 2013 | 10:54 am
This version was updated based on numerous comments received during the comment period after the release candidate was released in Feb. 2013. A1 Injection A2 Broken Authentication and Session Manage...
Released the new version of OWASP Top 10 - 2013 13 Jun 2013 | 10:54 am
This version was updated based on numerous comments received during the comment period after the release candidate was released in Feb. 2013. A1 Injection A2 Broken Authentication and Session Manage...
Me on PayPal Wall of Fame 13 Jun 2013 | 10:45 am
I don't want to disclose everything I reported but I would like to say that I'm very happy to have my name listed there,along many of my friends :) https://www.paypal.com/webapps/mpp/s...
Nishang v.0.2.7 Released 10 Jun 2013 | 04:23 pm
PowerShell for Penetration Testing Nishang is a framework and collection of scripts and payloads which enables usage of PowerShell for offensive security and post exploitation during Penetraion Tests...