1. Life & Code (The title of this section is taken from Johnny’s blog of the same name, Life and Code. Although my implementation of the phrase isn’t in terms with Johnny’s, yet I could resist using it. ) Life: Three days ago I found that there are some strange entries in my local Apache [...]
Read more →DEMO This post was due since the Bank of India hack incident, and was fueled by PDP’s Drive-by Java post, which is a very simple, yet a well thought of extension (sort of) to the Drive-by Download attack. This post is aimed to provide a clearer understanding of the Drive-by Download attack (via a demo). [...]
Read more →Update: Aah. It’s not that there couldn’t have been any better news , but today’s News is that Ma1 has agreed to provide feature to block frames through NoScript from the next version (1.1.7). NoScripts Rocks. Oh and Yes! Ma1 Rocks too …;) I have been pretty busy since the last few weeks (and this [...]
Read more →ZDNet Asia reports that Google Security team has discovered as “Dangerous Java Flaw that threaten’s Virtually Everything“. The interesting part of this news is that, apart from a few scary statements, it doesn’t inform you anything else. The Sun advisory page on this flaw, however, informs you about two flaws which are nothing but Buffer [...]
Read more →I hope you remember the young Indian security researchers Vipin Kumar (22) and Nitin Kumar (23), the TPM Boys [I guess, that's the way they call themselves. At least their blog confirms that. ]They presented a Paper “Vboot Kit: Compromising Windows Vista Security” at Blackhat Europe – 2007. The talk explained the (different) booting process [...]
Read more →The Month of Search Engine Bugs by MustLive has come to an end. MutLive reports: In the project took part 33 search engines (30 web engines and 3 local engines) of 19 vendors, some vendors have several engines. The list of project’s participants (in order of appearance): Meta, Yahoo, HotBot, Gigablast, MSN, Clusty, Yandex, Yandex.Server [...]
Read more →The title may lure you to assume that I am going to talk about some security bug. Well, I am not… or I’d rather say I haven’t yet thought of any ways to exploit it. If you come up with something, do let us know. Now back to the topic. Almost all the huge players [...]
Read more →I posted a very small article on Google Bombs; and quite co-incidentally few days later read that Google has started diffusing the bombs. Now “started diffusing…” makes sense when it has to be done manually, but aren’t we talking about terabytes and petabytes of data? We can never expect it to be done manually. Moreover, [...]
Read more →I stay back in the office during night and return back at around 6-7 am, when everybody is coming . These nights are supposed to be LONELY as I am the only one in the building (actually in all the four buildings combined), apart from the security guards and office boys, of course. However, I’ve [...]
Read more →Q. Where do you think will you find an amazingly crafted code that would give priority to a Screensaver over a Keyboard/Mouse interrupt? No Kidding. Think. Ans. If you guessed it to be an Operating System designed by the Redmond Giant, you are stupid. It’s not something to be guessed.I just posted to let you [...]
Read more →I was returning back to my room at around 6:30 in the morning after spending the whole night, as usual, in office. Suddenly this though struck me. I always talk about codes and related stuff and ask people to map their algorithms to real life while coding, especially in OOP languages. I asked myself, what [...]
Read more →Boom.I mean Hi I am not talking about something new. The term was coined by Adam Mathes on April 6, 2001 in uber.nu.talking about the topic, should I explain what Google Bomb is, or should i explain the consequences?Ummmm. Okay. Goto Google, type “misrable failure”, and click on “I am feeling Lucky”.What we get is [...]
Read more →It’s really interesting that even enginieering students, who are supposed to have a very ANALYTIC are least bothered in verifying anything before believing it…… and that too when they have access to GOOGLE. This blog of mine is in response to the hundreds and thousands of mails that are forwarded so that somewhere, somebody’s LIFE [...]
Read more →