Android Framework for Exploitation
Finally after so many days I found some time to blog, 2012 has been awesome!! all due to Conferences accompanied by Bug Hunting and to top it all a very busy schedule at Tata Consultancy Services, where I am currently employed. Today I’ll be sharing with you about Android Framework for Exploitation, a framework, which [...]
Creating your own WordPress Themes from the scratch ! Part 1
This video describes how to setup a wordpress theme from the scratch ! This video is sponsored by http://wwdoubleu.com/ Do leave your comments below regarding any clarification, or help on the 1st part of the Creating your own WordPress Theme from the scratch.
Python mass downloader using Bing and Google search
This small python script can be used to download files from the result obtained by the search key provided. This is a small utility written for dummy mass download, for your fuzzing needs ! Requirements Python >= 2.6 Python Request module ( https://github.com/kennethreitz/requests ) Bing Search API ( http://www.bing.com/developers/ ) BeautifulSoup Python module for google_downloader.py (http://www.crummy.com/software/BeautifulSoup/ )
How LINUX is built ?
While Linux is running our phones, friend requests, tweets, financial trades, ATMs and more, most of us don’t know how it’s actually built. This short video takes you inside the process by which the largest collaborative development project in the history of computing is organized. Based on the annual report “Who Writes Linux,” this is [...]
Trance With Me !
I simply love to listen to Trance music, well today i want to share with you one of my favourite MiX Download: www.TranceMix.org presents Rodman – Trance With Me Cover Art: Mix Description: Rodman’s Trance With Me trance mix is split into 2 parts. The first part is going to be of a higher BPM [...]
I’m in Microsoft Security Researchers’ List
Few days back I was credited to Microsoft Security Researcher list, for a Flash based XSS vulnerability. A persistent flash component input validation vulnerability is detected on Microsoft’s Bing Service Application. The vulnerability allows an attacker to implement malicious persistent comments when the user is editing or posting through Flash. The vulnerability is located on the html editor input/output [...]
Android Security Model
Android is basically based on Linux kernel, therefore it enforces the classic privilege-separated operating system, in which each application runs with a distinct system identity (Linux user ID and group ID). Parts of the system are also separated into distinct identities. Linux thereby isolates applications from each other and from the system.
I’m in Google Hall Of Fame !
Finally after a long awaited time, I made it to Google Security Hall of Fame under honorable mention. On 1 November 2010, Google launched a Vulnerability Reward Program for Google web properties. Any Google web properties which display or manage highly sensitive authenticated user data or accounts may be in scope. Some examples could include: *.google.com [...]
I’M IN APPLE SECURITY RESEARCHERS
Few days back, I was credited in the Apple Security Researchers page, where they thanks to all the Security Researchers who identified severe security vulnerabilities in their website or servers. This made me really happy, cause it was an really easy XSS bug, on consultants.apple.com. Also, this bug remained unpatched for as far as 4 [...]
Clickjacking – a new breed of Attack
Clickjacking (User Interface redress attack, UI redress attack, UI redressing) is a malicious technique of tricking a Web user into clicking on something different to what the user perceives they are clicking on, thus potentially revealing confidential information or taking control of their computer while clicking on seemingly innocuous webpages. Simply put, don’t believe on [...]
Your Voice!