Security Information Vulnerability Research Security Blog

Fuzzing anything that moves

November 16th, 2009 by Aviram, Filed under: Web, Culture, Fuzzing

<meta content="OpenOffice.org 3.0 (Linux)" name="GENERATOR" /> <style type="text/css"> <!-- @page { margin: 0.79in } P { margin-bottom: 0.08in } A:link { so-language: zxx } --></style></p> <p style="margin-bottom: 0in">I’m in New Delhi, for the local <a href="(http://www.owasp.org/index.php/SecurityByte_and_OWASP_Asia_AppSec_Conference_2009">OWASP Conference</a>. There’s a <a href="http://www.owasp.org/index.php/SecurityByte_and_OWASP_Asia_AppSec_Conference_2009#tab=Conference">really nice lineup</a> and if you’re in the New Delhi area I highly recommend attending.</p> <p style="margin-bottom: 0in"> <p style="margin-bottom: 0in">I’ll be speaking twice. On Tuesday about blackbox testing. The abstract can be paraphrased from the immortal words of the great fuzzing master Ice-T:</p> <blockquote> <p style="margin-bottom: 0in">If you’re from Mars, and you have inputs, we will fuzz you.</p> </blockquote> <p style="margin-bottom: 0in">(Look up the <a href="http://www.rhapsody.com/body-count/body-count/kkk-bitch/lyrics.html">original text</a>, I guarantee it’s worth it)</p> <p style="margin-bottom: 0in"> <p style="margin-bottom: 0in">On Wednesday I’ll be talking a bit about breaking JSON applications, relying on the great research done by Amit Klein, Blueinfy, Jeremiah Grossman, Fortify, and many others.</p> <p style="margin-bottom: 0in"> <p style="margin-bottom: 0in">If you spot any errors in either of my presentations let me know and I will buy you a beer. This offer does not include anything stupid I say while on a discussion panel…</p> <p style="margin-bottom: 0in"> <p style="margin-bottom: 0in"> <div><a href="http://digg.com/submit?phase=2&url=http%3A%2F%2Fblogs.securiteam.com%2Findex.php%2Farchives%2F1332&title=Fuzzing+anything+that+moves"rel="nofollow" title="Digg"><img src="http://blogs.securiteam.com/wp-content/socializer-images/digg.png" title="Digg" alt="Digg" style="margin:5px; border:0px; opacity: .4; -moz-opacity: .4; filter: alpha(opacity=40);" /></a><a href="http://reddit.com/submit?url=http%3A%2F%2Fblogs.securiteam.com%2Findex.php%2Farchives%2F1332&title=Fuzzing+anything+that+moves"rel="nofollow" title="Reddit"><img src="http://blogs.securiteam.com/wp-content/socializer-images/reddit.png" title="Reddit" alt="Reddit" style="margin:5px; border:0px; opacity: .4; -moz-opacity: .4; filter: alpha(opacity=40);" /></a><a href="http://slashdot.org/bookmark.pl?title=Fuzzing+anything+that+moves&url=http%3A%2F%2Fblogs.securiteam.com%2Findex.php%2Farchives%2F1332"rel="nofollow" title="Slashdot"><img src="http://blogs.securiteam.com/wp-content/socializer-images/slashdot.png" title="Slashdot" alt="Slashdot" style="margin:5px; border:0px; opacity: .4; -moz-opacity: .4; filter: alpha(opacity=40);" /></a><a href="http://twitthis.com/twit?url=http%3A%2F%2Fblogs.securiteam.com%2Findex.php%2Farchives%2F1332"rel="nofollow" title="TwitThis"><img src="http://blogs.securiteam.com/wp-content/socializer-images/twitter.png" title="TwitThis" alt="TwitThis" style="margin:5px; border:0px; opacity: .4; -moz-opacity: .4; filter: alpha(opacity=40);" /></a><a href="http://sphinn.com/submit.php?url=http%3A%2F%2Fblogs.securiteam.com%2Findex.php%2Farchives%2F1332&title=Fuzzing+anything+that+moves"rel="nofollow" title="Sphinn"><img src="http://blogs.securiteam.com/wp-content/socializer-images/sphinn.png" title="Sphinn" alt="Sphinn" style="margin:5px; border:0px; opacity: .4; -moz-opacity: .4; filter: alpha(opacity=40);" /></a><a href="http://www.stumbleupon.com/submit?url=http%3A%2F%2Fblogs.securiteam.com%2Findex.php%2Farchives%2F1332&title=Fuzzing+anything+that+moves"rel="nofollow" title="StumbleUpon"><img src="http://blogs.securiteam.com/wp-content/socializer-images/stumbleupon.png" title="StumbleUpon" alt="StumbleUpon" style="margin:5px; border:0px; opacity: .4; -moz-opacity: .4; filter: alpha(opacity=40);" /></a><a href="http://del.icio.us/post?url=http%3A%2F%2Fblogs.securiteam.com%2Findex.php%2Farchives%2F1332&title=Fuzzing+anything+that+moves"rel="nofollow" title="del.icio.us"><img src="http://blogs.securiteam.com/wp-content/socializer-images/delicious.png" title="del.icio.us" alt="del.icio.us" style="margin:5px; border:0px; opacity: .4; -moz-opacity: .4; filter: alpha(opacity=40);" /></a><a href="http://www.facebook.com/sharer.php?u=http%3A%2F%2Fblogs.securiteam.com%2Findex.php%2Farchives%2F1332&t=Fuzzing+anything+that+moves"rel="nofollow" title="Facebook"><img src="http://blogs.securiteam.com/wp-content/socializer-images/facebook.png" title="Facebook" alt="Facebook" style="margin:5px; border:0px; opacity: .4; -moz-opacity: .4; filter: alpha(opacity=40);" /></a><a href="http://www.google.com/bookmarks/mark?op=edit&bkmk=http%3A%2F%2Fblogs.securiteam.com%2Findex.php%2Farchives%2F1332&title=Fuzzing+anything+that+moves"rel="nofollow" title="Google"><img src="http://blogs.securiteam.com/wp-content/socializer-images/googlebookmark.png" title="Google" alt="Google" style="margin:5px; border:0px; opacity: .4; -moz-opacity: .4; filter: alpha(opacity=40);" /></a><a href="http://technorati.com/faves?add=http%3A%2F%2Fblogs.securiteam.com%2Findex.php%2Farchives%2F1332"rel="nofollow" title="Technorati"><img src="http://blogs.securiteam.com/wp-content/socializer-images/technorati.png" title="Technorati" alt="Technorati" style="margin:5px; border:0px; opacity: .4; -moz-opacity: .4; filter: alpha(opacity=40);" /></a><a href="mailto:?subject=Fuzzing+anything+that+moves&body=http%3A%2F%2Fblogs.securiteam.com%2Findex.php%2Farchives%2F1332" title="E-mail this story to a friend!"><img src="http://blogs.securiteam.com/wp-content/socializer-images/email_link.png"rel="nofollow" title="E-mail this story to a friend!" alt="E-mail this story to a friend!" style="margin:5px; border:0px; opacity: .4; -moz-opacity: .4; filter: alpha(opacity=40);" /></a></div> <p>-</p> <p>Is your site safe from SQL Injection? <a href="http://www.beyondsecurity.com/vulnerability-scanner.html">Website Security Audit</a> is the way to protect your network!</p> <!-- <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:trackback="http://madskills.com/public/xml/rss/module/trackback/"> <rdf:Description rdf:about="http://blogs.securiteam.com/index.php/archives/1332" dc:identifier="http://blogs.securiteam.com/index.php/archives/1332" dc:title="Fuzzing anything that moves" trackback:ping="http://blogs.securiteam.com/index.php/archives/1332/trackback/" /> </rdf:RDF> --> <div class="comments-template"> <!-- You can start editing here. --> <!-- If comments are open, but there are no comments. --> <h3 id="respond">Leave a Comment</h3> <form action="http://blogs.securiteam.com/wp-comments-post.php" method="post" id="commentform"> <p><input type="text" name="author" id="author" value="" size="40" tabindex="1" /> <label for="author"><small>Name (required)</small></label></p> <p><input type="text" name="email" id="email" value="" size="40" tabindex="2" /> <label for="email"><small>Mail (will not be published) (required)</small></label></p> <p><input type="text" name="url" id="url" value="" size="40" tabindex="3" /> <label for="url"><small>Website</small></label></p> <!--<p><small><strong>XHTML:</strong> You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong> </small></p>--> <p><textarea name="comment" id="comment" cols="60" rows="10" tabindex="4"></textarea></p> <p><input name="submit" type="submit" id="submit" tabindex="5" value="Submit Comment" /> <input type="hidden" name="comment_post_ID" value="1332" /> </p> <input type="hidden" id="sk2_my_js_check1" name="sk2_my_js_check1" value="td436xvwd9" /> <input type="hidden" id="sk2_my_js_check2" name="sk2_my_js_check2" value="f074267d1bdc3560821e34e8735410c5" /> <script type="text/javascript"> <!-- document.write('<input type="hidden" id="sk2_my_js_payload" name="sk2_my_js_payload" value="'); document.write(Math.round ( Math.abs(Math.max(((Math.round ( Math.abs((1 + 4) % 31)) + Math.round( Math.abs(100*Math.sin(1)) ) ) + 11), 6)))); document.write('" />'); --> </script> <input type="hidden" id="sk2_time" name="sk2_time" value="1328897003" /><input type="hidden" id="sk2_ip" name="sk2_ip" value="38.107.179.244" /><input type="hidden" id="sk2_payload" name="sk2_payload" value="3f22caad75259dd4dbc261af703dd148" /><script type="text/javascript"> var submit = document.getElementById('submit'); var spell_btn = document.createElement('input'); spell_btn.type = 'button'; spell_btn.id = 'comment_spellcheck'; spell_btn.accesskey = 's'; spell_btn.value = 'Check spelling'; spell_btn.title = 'Check Spelling'; spell_btn.alt = 'Check Spelling'; spell_btn.style.margin = '0 0.5em'; spell_btn.onclick = function() { var height = 400; var width = 500; var x = parseInt(screen.width / 2.0) - (width / 2.0); var y = parseInt(screen.height / 2.0) - (height / 2.0); var win = window.open('http://blogs.securiteam.com/wp-content/plugins/ajax_spellchecker/comment/spell-checker.php', 'spellPopup' + new Date().getTime(), 'top=' + y + ',left=' + x + ',scrollbars=no,dialog=yes,minimizable=yes,modal=yes,width=' + width + ',height=' + height + ',resizable=yes'); } submit.parentNode.appendChild(spell_btn); </script> </form> </div> </div> </div> <div class="browse prev"> <div class="prev"> <a href="http://blogs.securiteam.com/index.php/archives/1331">Is this the laziest 419 of all time?</a> </div> <div class="next"> <a href="http://blogs.securiteam.com/index.php/archives/1333">Heathrow calling</a> </div> </div> <div class="clear"></div> </div> <div class="sidebar sidebar2"> <ul> <li><h3>More <span>SecuriTeam...</span></h3> <!-- inlineRSS - beginning of securiteam feed --> <ul><li><a href="http://www.securiteam.com/securitynews/5EP2Y0U6AG.html">RealNetworks RealPlayer RV10 Sample Height Parsing Code Execution Vulnerability</a></li><li><a href="http://www.securiteam.com/securitynews/5DP2X0U6AA.html">RealNetworks RealPlayer IVR MLTI Chunk Length Parsing Code Execution Vulnerability</a></li><li><a href="http://www.securiteam.com/securitynews/5CP2W0U6AG.html">RealNetworks RealPlayer RV30 Uninitialized Index Value Code Execution Vulnerability</a></li><li><a href="http://www.securiteam.com/securitynews/5BP2V0U6AM.html">RealNetworks RealPlayer Invalid Codec Name Code Execution Vulnerability</a></li><li><a href="http://www.securiteam.com/securitynews/5KP2Y0A6AK.html">RealNetwork RealPlayer MPG Width Integer Underflow Code Execution Vulnerability</a></li><li><a href="http://www.securiteam.com/tools/6N03G002UM.html">Apache mod_rewrite Vulnerability PoC</a></li><li><a href="http://www.securiteam.com/tools/5SP3D0U4KY.html">netsniff-ng - A Linux Network Analyzer and Networking Toolkit</a></li><li><a href="http://www.securiteam.com/tools/6T03H0K0AQ.html">Simple Local File Inclusion Exploiter</a></li><li><a href="http://www.securiteam.com/tools/6S03G0K0AW.html">NiX A Linux Brute Forcer</a></li><li><a href="http://www.securiteam.com/tools/6D0362K0AI.html">Nchop - A TCP Session Splicing Tool Used to Rvade Intrusion Detection Systems</a></li><li><a href="http://www.securiteam.com/unixfocus/5MP3Q0A60W.html">ProFTPD Response Pool Use-After-Free Code Execution Vulnerability</a></li><li><a href="http://www.securiteam.com/unixfocus/5WP3W0A55A.html">Insight Control for Linux Multiple Vulnerabilities</a></li><li><a href="http://www.securiteam.com/unixfocus/5SP3S0A55O.html">HP-UX Running NFS/ONCplus Denial of Service Vulnerability</a></li><li><a href="http://www.securiteam.com/unixfocus/5XP3L2K55W.html">HP-UX Running BIND Denial of Service Vulnerability 2011</a></li><li><a href="http://www.securiteam.com/unixfocus/5ZP311555Y.html">HP-UX Running XNTP Denial of Service Vulnerability</a></li><li><a href="http://www.securiteam.com/windowsntfocus/5XP3H0U60U.html">Novell Zenworks Software Packaging LaunchHelp.dll Code Execution Vulnerability</a></li><li><a href="http://www.securiteam.com/windowsntfocus/5WP3G0U60M.html">Novell ZENWorks Software Packaging Antique ActiveX Control Code Execution Vulnerability</a></li><li><a href="http://www.securiteam.com/windowsntfocus/5RP302K60C.html">Microsoft Internet Explorer swapNode Handling Code Execution Vulnerability</a></li><li><a href="http://www.securiteam.com/windowsntfocus/5FP2Y2K60M.html">Microsoft Internet Explorer Select Element Insufficient Type Checking Code Execution Vulnerability</a></li><li><a href="http://www.securiteam.com/windowsntfocus/5EP2X2K60Q.html">Internet Explorer Select Element Cache Code Execution Vulnerability</a></li><li><a href="http://www.securiteam.com/exploits/5SP360040Q.html">Microsoft Windows shmedia.dll Division By Zero, Explore.exe DOS Exploit</a></li><li><a href="http://www.securiteam.com/exploits/5VP3H153PA.html">IGSS 8 ODBC Server Multiple Remote Uninitialized Pointer Free DoS</a></li><li><a href="http://www.securiteam.com/exploits/5UP3G153PI.html">Progea Movicon TCPUploadServer Remote Exploit</a></li><li><a href="http://www.securiteam.com/exploits/5LP2V0K0AG.html">Trango Broadband Wireless Rogue SU Authentication Bug</a></li><li><a href="http://www.securiteam.com/exploits/5CP2W0A0AU.html">Exposing HMS HICP Protocol and Intellicom NetBiterConfig.exe Remote Buffer Overflow</a></li><li><a href="http://www.securiteam.com/securityreviews/5GP3G005FA.html">Bypassing Internet Explorer's XSS Filter</a></li><li><a href="http://www.securiteam.com/securityreviews/5OP39204AM.html">Apple OfficeImport Framework Excel Memory Corruption Vulnerability</a></li><li><a href="http://www.securiteam.com/securityreviews/5YP2V1F35I.html">LittleBlackBox Project: Default SSL Keys in Multiple Routers</a></li><li><a href="http://www.securiteam.com/securityreviews/5NP0E00R5A.html">Why Silent Updates Boost Security</a></li><li><a href="http://www.securiteam.com/securityreviews/5MP0D00R5G.html">PDF Silent HTTP Form Repurposing Attacks</a></li></ul> <!-- end of securiteam feed --> </li> <a href="http://www.securiteam.com/securiteam.rss"><img class="offsetimg" src="http://blogs.securiteam.com/wp-content/themes/securiteam.new/images/rss.gif" ALT="Security Research"> Subscribe</a> </ul> </div> <div class="sidebar"> <a style="font-size: 150%;" href="/index.php/feed/"><img src="http://blogs.securiteam.com/wp-content/themes/securiteam.new/images/rss-icon-48x48.gif" width="24" ALT="Security RSS"> Subscribe</a> <br><br> <ul> <!-- <li class="pagenav"><h2>Pages</h2><ul><li class="page_item"><a href="http://blogs.securiteam.com/index.php/about/" title="About">About</a></li> <li class="page_item"><a href="http://blogs.securiteam.com/index.php/sectoon_about/" title="About SecuriToons">About SecuriToons</a></li> <li class="page_item"><a href="http://blogs.securiteam.com/index.php/sectoon_contact/" title="Contact SecuriToons">Contact SecuriToons</a></li> <li class="page_item"><a href="http://blogs.securiteam.com/index.php/sectoon_join/" title="Join SecuriToons">Join SecuriToons</a></li> <li class="page_item"><a href="http://blogs.securiteam.com/index.php/sectoon_authors/" title="SecuriToons Authors">SecuriToons Authors</a></li> <li class="page_item"><a href="http://blogs.securiteam.com/index.php/write/" title="Write with us">Write with us</a></li> </ul></li> --> <li> <h2 class="orange delicious">On the Wire</h2> <!-- ?php inlineRSS('delicious'); ?--> <a class="more" href="http://del.icio.us/securiteam">More...</a><br /> <a href="http://del.icio.us/rss/securiteam"><img class="offsetimg" src="http://blogs.securiteam.com/wp-content/themes/securiteam.new/images/rss.gif" ALT="Leading Security Blog"> Subscribe</a> <p></p><p></p> </li> <li class="feature"><h2 class="orange top">Top Posts</h2> <ul> <li><a href="http://blogs.securiteam.com/index.php/archives/790">IE7 on Linux</a></li><li><a href="http://blogs.securiteam.com/index.php/archives/1032">Zoned Out #2 (comic strip)</a></li><li><a href="http://blogs.securiteam.com/index.php/archives/1039">Zoned Out #4 (comic strip)</a></li><li><a href="http://blogs.securiteam.com/index.php/archives/1024">Memory Leak #23 (comic strip)</a></li><li><a href="http://blogs.securiteam.com/index.php/archives/1038">Zoned Out #3 (comic strip)</a></li><li><a href="http://blogs.securiteam.com/index.php/archives/1031">The NULL Terminated Strip #5 (comic strip)</a></li><li><a href="http://blogs.securiteam.com/index.php/archives/1017">Insecurity #15 (comic strip)</a></li><li><a href="http://blogs.securiteam.com/index.php/archives/1150">Microsoft Windows RPC Vulnerability MS08-067 (CVE-2008-4250) FAQ - October 2008 [UPDATED]</a></li><li><a href="http://blogs.securiteam.com/index.php/archives/1324">Microsoft Security Essentials review</a></li><li><a href="http://blogs.securiteam.com/index.php/archives/1060">MBR rootkit - here's some references</a></li> </ul> </li> <li><h2>RSS FEED</h2><a href="http://blogs.securiteam.com/index.php/feed/"><img class="offsetimg" src="http://blogs.securiteam.com/wp-content/themes/securiteam.new/images/rss.gif" ALT="SecuriTeam RSS">Securiteam Blogs RSS</a> <br /><br /> </li> <li><h2>Reed's Alert!</h2> <ul> <li><a href="mailto:reedalert@securiteam.com">Got something burning?<br />Tell SecuriTeam blogs.</a></li> </ul> </li> <li><h2>Favorites</h2> <ul> <li><a href="http://www.beyondsecurity.com/vulnerability-scanner.html">Vulnerability Scanner</a></li> <li><a href="http://www.beyondsecurity.com/vulnerability-assessment.html">Vulnerability Assessment</a></li> <li><a href="http://www.beyondsecurity.com/black-box-testing.html">Black Box Testing</a></li> </ul> </li> <li><h2>Cartoons</h2> <ul> <li><a href="http://www.securitoons.com/">SecuriTeam cartoons</a></li> </ul> </li>                   <li id="activity">                  <h2>COMMENTS</h2><ul><li><a href="http://blogs.securiteam.com/index.php/archives/1594" class="activityentry">New computers - Windows 7 - printers and USB</a>  <a href="http://blogs.securiteam.com/index.php/archives/1594#comments" title="Go to the comments of this entry">1</a><br /> <small><a style="color: #454545;" href="http://blogs.securiteam.com/index.php/archives/1594#comment-737120">Phil</a></small></li> <li><a href="http://blogs.securiteam.com/index.php/archives/1470" class="activityentry">Internet shut off switch?</a>  <a href="http://blogs.securiteam.com/index.php/archives/1470#comments" title="Go to the comments of this entry">3</a><br /> <small><a style="color: #5a5a5a;" href="http://blogs.securiteam.com/index.php/archives/1470#comment-736793">Parham</a>, <a style="color: #cccccc;" href="http://blogs.securiteam.com/index.php/archives/1470#comment-676253">snatur</a>, <a style="color: #cccccc;" href="http://blogs.securiteam.com/index.php/archives/1470#comment-676040">noam</a></small></li> <li><a href="http://blogs.securiteam.com/index.php/archives/1569" class="activityentry">REVIEW: "Good Night Old Man", George Campbell</a>  <a href="http://blogs.securiteam.com/index.php/archives/1569#comments" title="Go to the comments of this entry">2</a><br /> <small><a style="color: #cccccc;" href="http://blogs.securiteam.com/index.php/archives/1569#comment-733946">MandyB</a>, <a style="color: #cccccc;" href="http://blogs.securiteam.com/index.php/archives/1569#comment-728484">Marion Williams</a></small></li> <li><a href="http://blogs.securiteam.com/index.php/archives/1067" class="activityentry">How much does it cost to break into SmugMug.com?</a>  <a href="http://blogs.securiteam.com/index.php/archives/1067#comments" title="Go to the comments of this entry">4</a><br /> <small><a style="color: #cccccc;" href="http://blogs.securiteam.com/index.php/archives/1067#comment-733541">-mozza-</a>, <a style="color: #cccccc;" href="http://blogs.securiteam.com/index.php/archives/1067#comment-567819">Dude</a>, <a style="color: #cccccc;" href="http://blogs.securiteam.com/index.php/archives/1067#comment-567818">Dude</a>, <a style="color: #cccccc;" href="http://blogs.securiteam.com/index.php/archives/1067#comment-377002">Just Guess</a></small></li> <li><a href="http://blogs.securiteam.com/index.php/archives/1575" class="activityentry">New computers - Kindle - First Encounters</a>  <a href="http://blogs.securiteam.com/index.php/archives/1575#comments" title="Go to the comments of this entry">1</a><br /> <small><a style="color: #cccccc;" href="http://blogs.securiteam.com/index.php/archives/1575#comment-733103">2012 UEFA Euro Football Cup</a></small></li> <li><a href="http://blogs.securiteam.com/index.php/archives/1587" class="activityentry">New computers - Kindle - Ebooks and education</a>  <a href="http://blogs.securiteam.com/index.php/archives/1587#comments" title="Go to the comments of this entry">1</a><br /> <small><a style="color: #cccccc;" href="http://blogs.securiteam.com/index.php/archives/1587#comment-732175">Greg Charland</a></small></li> </ul>                 </li>          <li id="authors"> <h2>MOST ACTIVE</h2> <ul> <li><a href="http://blogs.securiteam.com/index.php/archives/author/aviram/" title="Posts by Aviram">Aviram Jenik</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/aviram/feed/" title="rss">rss</a>) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/author/davidh/" title="Posts by davidh">David Harley</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/davidh/feed/" title="rss">rss</a>) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/author/dmitryc/" title="Posts by dmitryc">Dmitry Chan</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/dmitryc/feed/" title="rss">rss</a>) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/author/sunshine/" title="Posts by sunshine">Sun Shine</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/sunshine/feed/" title="rss">rss</a>) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/author/joe/" title="Posts by joe">Joe Stewart</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/joe/feed/" title="rss">rss</a>) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/author/juha-matti/" title="Posts by Juha-Matti">Juha-Matti Laurio</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/juha-matti/feed/" title="rss">rss</a>) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/author/mattmurphy/" title="Posts by mattmurphy">Matthew Murphy</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/mattmurphy/feed/" title="rss">rss</a>) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/author/noam/" title="Posts by noam">Noam Rathaus</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/noam/feed/" title="rss">rss</a>) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/author/p1/" title="Posts by p1">Rob Slade</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/p1/feed/" title="rss">rss</a>) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/author/prozacgod/" title="Posts by Prozacgod">David Hagler</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/prozacgod/feed/" title="rss">rss</a>) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/author/ren-and-stimpy/" title="Posts by ren and stimpy">Ren and Stimpy</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/ren-and-stimpy/feed/" title="rss">rss</a>) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/author/roger/" title="Posts by Roger">Roger Thompson</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/roger/feed/" title="rss">rss</a>) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/author/trirat/" title="Posts by Trirat">Trirat Kira P</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/trirat/feed/" title="rss">rss</a>) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/author/whiteacid/" title="Posts by WhiteAcid">WhiteAcid</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/whiteacid/feed/" title="rss">rss</a>) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/author/xyberpix/" title="Posts by xyberpix">xyberpix</a> (<a href="http://blogs.securiteam.com/index.php/archives/author/xyberpix/feed/" title="rss">rss</a>) </li> </ul> </li> <li><h2>Archives</h2> <ul> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2012/02/' title='February 2012'>February 2012</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2012/01/' title='January 2012'>January 2012</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2011/12/' title='December 2011'>December 2011</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2011/11/' title='November 2011'>November 2011</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2011/10/' title='October 2011'>October 2011</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2011/09/' title='September 2011'>September 2011</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2011/08/' title='August 2011'>August 2011</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2011/07/' title='July 2011'>July 2011</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2011/06/' title='June 2011'>June 2011</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2011/05/' title='May 2011'>May 2011</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2011/04/' title='April 2011'>April 2011</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2011/03/' title='March 2011'>March 2011</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2011/02/' title='February 2011'>February 2011</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2011/01/' title='January 2011'>January 2011</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2010/12/' title='December 2010'>December 2010</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2010/11/' title='November 2010'>November 2010</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2010/10/' title='October 2010'>October 2010</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2010/09/' title='September 2010'>September 2010</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2010/08/' title='August 2010'>August 2010</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2010/07/' title='July 2010'>July 2010</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2010/06/' title='June 2010'>June 2010</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2010/05/' title='May 2010'>May 2010</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2010/04/' title='April 2010'>April 2010</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2010/03/' title='March 2010'>March 2010</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2010/02/' title='February 2010'>February 2010</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2010/01/' title='January 2010'>January 2010</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2009/12/' title='December 2009'>December 2009</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2009/11/' title='November 2009'>November 2009</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2009/10/' title='October 2009'>October 2009</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2009/09/' title='September 2009'>September 2009</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2009/08/' title='August 2009'>August 2009</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2009/07/' title='July 2009'>July 2009</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2009/06/' title='June 2009'>June 2009</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2009/05/' title='May 2009'>May 2009</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2009/04/' title='April 2009'>April 2009</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2009/03/' title='March 2009'>March 2009</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2009/02/' title='February 2009'>February 2009</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2009/01/' title='January 2009'>January 2009</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2008/12/' title='December 2008'>December 2008</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2008/11/' title='November 2008'>November 2008</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2008/10/' title='October 2008'>October 2008</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2008/09/' title='September 2008'>September 2008</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2008/08/' title='August 2008'>August 2008</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2008/07/' title='July 2008'>July 2008</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2008/06/' title='June 2008'>June 2008</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2008/05/' title='May 2008'>May 2008</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2008/04/' title='April 2008'>April 2008</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2008/03/' title='March 2008'>March 2008</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2008/02/' title='February 2008'>February 2008</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2008/01/' title='January 2008'>January 2008</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2007/12/' title='December 2007'>December 2007</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2007/11/' title='November 2007'>November 2007</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2007/10/' title='October 2007'>October 2007</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2007/09/' title='September 2007'>September 2007</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2007/08/' title='August 2007'>August 2007</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2007/07/' title='July 2007'>July 2007</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2007/06/' title='June 2007'>June 2007</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2007/05/' title='May 2007'>May 2007</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2007/04/' title='April 2007'>April 2007</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2007/03/' title='March 2007'>March 2007</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2007/02/' title='February 2007'>February 2007</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2007/01/' title='January 2007'>January 2007</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2006/12/' title='December 2006'>December 2006</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2006/11/' title='November 2006'>November 2006</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2006/10/' title='October 2006'>October 2006</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2006/09/' title='September 2006'>September 2006</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2006/08/' title='August 2006'>August 2006</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2006/07/' title='July 2006'>July 2006</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2006/06/' title='June 2006'>June 2006</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2006/05/' title='May 2006'>May 2006</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2006/04/' title='April 2006'>April 2006</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2006/03/' title='March 2006'>March 2006</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2006/02/' title='February 2006'>February 2006</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2006/01/' title='January 2006'>January 2006</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2005/12/' title='December 2005'>December 2005</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2005/11/' title='November 2005'>November 2005</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2005/10/' title='October 2005'>October 2005</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2005/09/' title='September 2005'>September 2005</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2005/08/' title='August 2005'>August 2005</a></li> <li><a href='http://blogs.securiteam.com/index.php/archives/date/2005/07/' title='July 2005'>July 2005</a></li> </ul> </li> <li id="linkcat-1"><h2>Blogroll</h2> <ul> <li><a href="http://www.osvdb.org/blog/">OSVDB blog</a></li> <li><a href="http://www.securiteam.com">SecuriTeam</a></li> </ul> </li> <li><h2>Categories</h2> <ul> <li><a href="http://blogs.securiteam.com/index.php/archives/category/apple/" title="Stories related to Apple Computer Inc.">Apple</a> (55) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/ask-the-expert/" title="Questions sent to expert@securiteam.com fall under this category.">Ask the Expert</a> (19) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/book-reviews/" title="View all posts filed under Book Reviews">Book Reviews</a> (23) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/botnets/" title="View all posts filed under Botnets">Botnets</a> (70) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/cisco/" title="Stories related to Cisco and their products">Cisco</a> (24) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/commentary/" title="General ideas about the world of security">Commentary</a> (1222) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/corporate-security/" title="View all posts filed under Corporate Security">Corporate Security</a> (336) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/culture/" title="View all posts filed under Culture">Culture</a> (343) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/ddos/" title="View all posts filed under DDoS">DDoS</a> (39) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/digest/" title="SecuriTeam Digest">Digest</a> (41) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/funnies/earl/" title="View all posts filed under Earl">Earl</a> (11) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/encryption/" title="View all posts filed under Encryption">Encryption</a> (41) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/full-disclosure/" title="The need for Full, Partial, Responsible and Zero disclosure. Issues with reporting vulnerabilities to vendors.">Full Disclosure</a> (210) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/funnies/" title="Comic strips by our cartoon-writing-bloggers">Funnies</a> (71) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/funny/" title="or at least, we think so">Funny</a> (76) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/fuzzing/" title="View all posts filed under Fuzzing">Fuzzing</a> (30) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/gadgets/" title="Hacking TiVO, PS2, Palm, GPRS, or your riding bikes">Gadgets</a> (70) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/google/" title="View all posts filed under Google">Google</a> (52) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/funnies/hacked/" title="View all posts filed under Hacked">Hacked</a> (13) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/funnies/insecurity/" title="View all posts filed under InSecurity">InSecurity</a> (17) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/insider-threat/" title="The FBI says 70% of attackers originate from inside the organization (or is it 80%). So why do we all talk about hackers and Internet-bound attacks?">Insider Threat</a> (49) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/interviews/" title="View all posts filed under Interviews">Interviews</a> (9) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/law/" title="Law and legislation">Law</a> (66) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/linux/" title="Linux related stories">Linux</a> (38) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/malware/" title="View all posts filed under malware">malware</a> (45) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/funnies/memory-leak/" title="View all posts filed under Memory Leak">Memory Leak</a> (24) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/microsoft/" title="Stories about Microsoft, Windows, Office and so on">Microsoft</a> (229) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/networking/" title="View all posts filed under Networking">Networking</a> (97) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/opsec/" title="View all posts filed under OPSEC">OPSEC</a> (56) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/ot/" title="Off Topic">OT</a> (134) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/phishing/" title="View all posts filed under Phishing">Phishing</a> (93) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/physical-security/" title="Fences, alarms, but also TEMPEST and side channels">Physical Security</a> (74) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/privacy/" title="Privacy and anonymity">Privacy</a> (131) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/rootkits/" title="View all posts filed under Rootkits">Rootkits</a> (30) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/sec-tools/" title="View all posts filed under Sec Tools">Sec Tools</a> (66) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/social-engineering/" title="View all posts filed under Social Engineering">Social Engineering</a> (28) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/spam/" title="Anything related to Spam.">Spam</a> (147) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/funnies/the-null-terminated/" title="View all posts filed under The NULL Terminated">The NULL Terminated</a> (5) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/tips-tricks/" title="View all posts filed under Tips & Tricks">Tips & Tricks</a> (21) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/virus/" title="Anything related to viruses, Trojans and backdoors.">Virus</a> (234) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/web/" title="Web related security entries. Anything that has to do with PHP/ASP/JSP, including Apache, IIS, Macromedia flash, etc.">Web</a> (432) </li> <li><a href="http://blogs.securiteam.com/index.php/archives/category/funnies/zoned-out/" title="View all posts filed under Zoned Out">Zoned Out</a> (4) </li> </ul> </li> <li><h2>Meta</h2> <ul> <li><a href="http://blogs.securiteam.com/wp-login.php">Login</a></li> </ul> </li> </ul> </div> <div class="clear"></div> <div id="footer"> <p><a href="http://blogs.securiteam.com" title="SecuriTeam Blogs home page">SecuriTeam Blogs</a> is powered by Word Press.</p> </div> </div><!-- end page --> </div> <script type="text/javascript"> var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www."); document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E")); </script> <script type="text/javascript"> var pageTracker = _gat._getTracker("UA-240792-4"); pageTracker._initData(); pageTracker._trackPageview(); </script> <br> <div align="center"><a href="http://www.beyondsecurity.com/vulnerability-scanner-verification/blogs.securiteam.com" > <img src="http://www.beyondsecurity.com/verification-images/blogs.securiteam.com/vulnerability-scanner-2.gif" alt="Vulnerability Scanner" /> </a> </div> <br> </body> </html>