http://praetorianprefect.com Information security, a little slower...a little deeper Mon, 11 Feb 2013 03:39:40 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 http://praetorianprefect.com/archives/2010/01/the-aurora-ie-exploit-in-action/ http://praetorianprefect.com/archives/2010/01/the-aurora-ie-exploit-in-action/#comments Sat, 16 Jan 2010 00:42:41 +0000 Prefect http://praetorianprefect.com/?p=3065 big news hit earlier this week, the attack vector that allowed bad actors presumably from China into the networks of Google, Juniper, Adobe, and some 30 other firms was an Internet Explorer zero day, a use after free vulnerability on an invalid pointer reference affecting IE 6, 7, and 8 but only used in IE 6 according to Microsoft.]]> http://praetorianprefect.com/archives/2010/01/the-aurora-ie-exploit-in-action/feed/ 77 http://praetorianprefect.com/archives/2010/01/baidu-com-the-latest-victim-of-iranian-cyberarmy/ http://praetorianprefect.com/archives/2010/01/baidu-com-the-latest-victim-of-iranian-cyberarmy/#comments Tue, 12 Jan 2010 03:11:23 +0000 Prefect http://praetorianprefect.com/?p=2920 DNS attack on Twitter last month, hijacked the domain of Chinese search engine Baidu.com.]]> http://praetorianprefect.com/archives/2010/01/baidu-com-the-latest-victim-of-iranian-cyberarmy/feed/ 24 http://praetorianprefect.com/archives/2010/01/junos-juniper-flaw-exposes-core-routers-to-kernal-crash/ http://praetorianprefect.com/archives/2010/01/junos-juniper-flaw-exposes-core-routers-to-kernal-crash/#comments Wed, 06 Jan 2010 22:23:17 +0000 Prefect http://praetorianprefect.com/?p=2812 http://praetorianprefect.com/archives/2010/01/junos-juniper-flaw-exposes-core-routers-to-kernal-crash/feed/ 20 http://praetorianprefect.com/archives/2009/12/forensics-beverages-aside-a-look-at-incident-response-tools/ http://praetorianprefect.com/archives/2009/12/forensics-beverages-aside-a-look-at-incident-response-tools/#comments Wed, 16 Dec 2009 00:57:57 +0000 MJP http://praetorianprefect.com/?p=2333 much hype about nothing, as many free tools already out there exceed COFEE in features and functionality.]]> http://praetorianprefect.com/archives/2009/12/forensics-beverages-aside-a-look-at-incident-response-tools/feed/ 8 http://praetorianprefect.com/archives/2009/12/pentagon-web-pwned/ http://praetorianprefect.com/archives/2009/12/pentagon-web-pwned/#comments Tue, 08 Dec 2009 01:12:55 +0000 Prefect http://praetorianprefect.com/?p=2047 http://pentagon.afis.osd.mil, the headquarters of the U.S. Department of Defense. The hacker who identifies himself as Ne0h has posted images of the vulnerabilities, which are still active at the time of this blog post, on his blog.]]> http://praetorianprefect.com/archives/2009/12/pentagon-web-pwned/feed/ 10 http://praetorianprefect.com/archives/2009/11/the-perfect-crime-the-perfect-alibi-my-facebook-status/ http://praetorianprefect.com/archives/2009/11/the-perfect-crime-the-perfect-alibi-my-facebook-status/#comments Thu, 12 Nov 2009 13:44:22 +0000 Prefect http://praetorianprefect.com/?p=1618 http://praetorianprefect.com/archives/2009/11/the-perfect-crime-the-perfect-alibi-my-facebook-status/feed/ 6 http://praetorianprefect.com/archives/2009/11/more-cofee-please-on-second-thought/ http://praetorianprefect.com/archives/2009/11/more-cofee-please-on-second-thought/#comments Mon, 09 Nov 2009 17:24:49 +0000 MJP http://praetorianprefect.com/archives/2009/11/more-cofee-please-on-second-thought/ http://praetorianprefect.com/archives/2009/11/more-cofee-please-on-second-thought/feed/ 13 http://praetorianprefect.com/archives/2009/11/ossec-agentless-its-good-but-not-good-enough/ http://praetorianprefect.com/archives/2009/11/ossec-agentless-its-good-but-not-good-enough/#comments Fri, 06 Nov 2009 00:22:49 +0000 Jeremy Rossi http://praetorianprefect.com/?p=1475 syscheck functions on remote hosts, more general features are hard (if not impossible) to write into a script. This post will demonstrate an alternative for adding additional features to the OSSEC standard build.]]> http://praetorianprefect.com/archives/2009/11/ossec-agentless-its-good-but-not-good-enough/feed/ 0 http://praetorianprefect.com/archives/2009/10/the-barack-obama-donations-site-was-hacked%e2%80%a6err-no-it-wasn%e2%80%99t/ http://praetorianprefect.com/archives/2009/10/the-barack-obama-donations-site-was-hacked%e2%80%a6err-no-it-wasn%e2%80%99t/#comments Tue, 27 Oct 2009 02:45:53 +0000 Prefect http://praetorianprefect.com/?p=1170 calendar application at Roosevelt University. In the process of finding out how that would be possible, a real web site vulnerability on the Obama web site reveals itself.]]> http://praetorianprefect.com/archives/2009/10/the-barack-obama-donations-site-was-hacked%e2%80%a6err-no-it-wasn%e2%80%99t/feed/ 18 http://praetorianprefect.com/archives/2009/10/borderless-networks-yeah-but-wheres-my-border/ http://praetorianprefect.com/archives/2009/10/borderless-networks-yeah-but-wheres-my-border/#comments Thu, 15 Oct 2009 19:27:33 +0000 Jeremy Rossi http://praetorianprefect.com/?p=980 http://praetorianprefect.com/archives/2009/10/borderless-networks-yeah-but-wheres-my-border/feed/ 11 http://praetorianprefect.com/archives/2009/10/adobe-to-release-critical-update-on-patch-tuesday/ http://praetorianprefect.com/archives/2009/10/adobe-to-release-critical-update-on-patch-tuesday/#comments Fri, 09 Oct 2009 15:03:50 +0000 MJP http://praetorianprefect.com/?p=882 http://praetorianprefect.com/archives/2009/10/adobe-to-release-critical-update-on-patch-tuesday/feed/ 1 http://praetorianprefect.com/archives/2009/10/operation-phish-phry/ http://praetorianprefect.com/archives/2009/10/operation-phish-phry/#comments Wed, 07 Oct 2009 11:43:07 +0000 Prefect http://praetorianprefect.com/?p=792 http://praetorianprefect.com/archives/2009/10/operation-phish-phry/feed/ 1 http://praetorianprefect.com/archives/2009/09/2008-server-to-the-core/ http://praetorianprefect.com/archives/2009/09/2008-server-to-the-core/#comments Wed, 23 Sep 2009 21:47:06 +0000 MJP http://praetorianprefect.com/?p=398 http://praetorianprefect.com/archives/2009/09/2008-server-to-the-core/feed/ 5 http://praetorianprefect.com/archives/2009/05/wolverines-nemesis-data-leakage/ http://praetorianprefect.com/archives/2009/05/wolverines-nemesis-data-leakage/#comments Fri, 01 May 2009 05:44:33 +0000 Prefect http://praetorianprefect.com/?p=114 http://praetorianprefect.com/archives/2009/05/wolverines-nemesis-data-leakage/feed/ 3 http://praetorianprefect.com/archives/2009/04/now-i-will-believe-that-there-are-unicorns/ http://praetorianprefect.com/archives/2009/04/now-i-will-believe-that-there-are-unicorns/#comments Tue, 28 Apr 2009 04:17:59 +0000 Prefect http://praetorianprefect.com/?p=13 ESPN.com. A high profile web site defacement occurred on the sports news web site where the Cornify script was invoked by a Javascript using keystokes known as the Konami code.]]> http://praetorianprefect.com/archives/2009/04/now-i-will-believe-that-there-are-unicorns/feed/ 3