Accessing local variables in ProGuarded Android apps Debugging applications without access to the source code always has its problems, espe... 2016-6-16 18:43:40 | 阅读: 0 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu smali pgdebug hu dosecret

Detecting ImageTragick with Burp Suite Pro After ImageTragic... 2016-5-13 22:53:27 | 阅读: 0 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu rce1 burp payload reused

iOS HTTP cache analysis for abusing APIs and forensics We’ve tested a nu... 2016-5-6 19:29:3 | 阅读: 1 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu cfurl database burp blobs analysis

You’re not looking at the big picture When serving imag... 2016-2-11 00:5:7 | 阅读: 1 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu burp proxy payload security developers

Testing stateful web application workflows SANS Institute ac... 2016-1-15 20:34:28 | 阅读: 2 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu workflows burp gold stateful facing

Proxying nonstandard HTTPS traffic Depending on the... 2015-10-2 16:42:52 | 阅读: 1 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu proxy erlang client handshake chose

Finding the salt with SQL inception IntroductionWeb application penetration testing is a well researched area with prove... 2015-9-17 22:19:10 | 阅读: 0 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu duncan database passwords mytarget

Virtual Bank Robbery - In Real Life IntroductionThi... 2015-6-19 19:25:29 | 阅读: 3 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu tick remote eicar exploited

Poisonous MD5 - Wolves Among the Sheep MD5 is known to b... 2015-6-10 15:21:33 | 阅读: 2 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu security collision malicious shellcode

Testing Oracle Forms SANS Institute ac... 2015-5-27 17:32:39 | 阅读: 5 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu security gold proprietary github

CVE-2014-3440 - Symantec Critical System Protection Remote Code Execution Today we release... 2015-5-7 19:34:44 | 阅读: 1 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu symantec scsp pwd security somehow

The story of a pentester recruitment IntroLast year we decided to expand our pentest team, and we figured that offering a... 2015-4-3 15:53:7 | 阅读: 1 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu wp library recruit openvms security

AIX for Penetration Testers Silent Signal Professional Ethical Hacking Services ... 2015-1-9 16:33:26 | 阅读: 2 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu ethical

Code Review on the Cheap At the 31. Chaos Communication Congress I had the pleasure to watch the presenta... 2015-1-6 16:56:10 | 阅读: 1 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu lexers parsers crotch machine python

WebLogic undocumented hacking During an externa... 2014-10-3 23:23:57 | 阅读: 9 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu wl weblogic

How to get root access on FireEye OS 1. BackgroundA... 2014-7-29 04:30:24 | 阅读: 2 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu ssh fireeye unlimited ordinary slogin

HP-UX 0day local privilege escalation We worked for a b... 2014-6-25 20:54:6 | 阅读: 3 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu pppoec ux pppd sgid sr

Trend Micro OfficeScan - A chain of bugs Analyzing the security of security software is one of my favorite research areas... 2014-6-6 18:0:24 | 阅读: 2 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu proxy officescan client pwd requesting

ISAKMP hacking - How much should we trust our tools? During a VPN test... 2014-4-17 22:0:39 | 阅读: 1 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu 004400 ike psk isakmp nmap

Quick and dirty Android binary XML edits Last week I had an Android application that I wanted to test in the Android emulator (... 2014-4-4 19:43:29 | 阅读: 0 | 收藏 | Silent Signal Techblog - blog.silentsignal.eu apk hu blogpost keystore