2009-01-01から1ヶ月間の記事一覧
http://www.computerworld.jp/news/sw/131749.html
http://www.seomoz.org/blog/rewriting-the-beginners-guide-part-viii-search-engine-tools-and-services-5844
http://cwe.mitre.org/top25/pdf/2009_cwe_sans_top_25.pdf プログラミングエラーのトップ25が公開された
http://d.hatena.ne.jp/connect24h/20090112#p1 量がすごいです
今日時点での偽SSL証明書の話関連をピックアップ http://d.hatena.ne.jp/naoe/20090107 1月7日時点のまとめ
Process Memory Dumper (PMD) is an application that allows you to dump the entire memory of the chosen process. http://www.evilfingers.com/tools/ProcessMemoryDumper.php
OWASP AppSec Europe 2009 Poland http://2009.confidence.org.pl/lang-pref/en/ http://2009.confidence.org.pl/call-for-papers Sixth International Conference on Detection of Intrusions and Malware & Vulnerability Assessment http://www.dimva.org…
How Bypass firewall with Process Injection http://abysssec.com/blog/2009/01/how-bypass-firewall-with-process-injection/
偽のSSL証明書作成を研究者グループが実証、200台のPS3を使用 http://internet.watch.impress.co.jp/cda/news/2009/01/05/22003.html 多分,オリジナルは2008年12月30日にWebAppSecで投稿されたこれかと MD5 considered harmful today: Creating a rogue CA …
http://www.microsoft.com/japan/technet/security/bulletin/ms09-jan.mspx 今月は一件のみ
http://internet.watch.impress.co.jp/cda/news/2009/01/09/22062.html http://isec-rss.ipa.go.jp/
http://www.jpcert.or.jp/wr/2009/wr090101.html
そろそろ各種ベンダーからもプレスリリースやらメールが回り始めたことだし ちょっとづつ集めてみよう.どうせ仕事でこの辺をやる羽目になるのだろうから・・・ MD5 considered harmful today: Creating a rogue CA certificate http://www.win.tue.nl/hashc…
http://itpro.nikkeibp.co.jp/article/NEWS/20090106/322289/
http://www.computerworld.jp/news/sec/131189.html
12th Annual New York State Cyber Security Conference June 3-4, 2009, Empire State Plaza (Albany, NY) http://www.albany.edu/iasymposium
http://www.dimva.org/dimva2009
http://2009.confidence.org.pl/lang-pref/en/ http://2009.confidence.org.pl/call-for-papers
http://release.nikkei.co.jp/detail.cfm?relID=208870&lindID=1
http://abysssec.com/blog/2009/01/how-bypass-firewall-with-process-injection/
is an application that allows you to dump the entire memory of the chosen process. http://www.evilfingers.com/tools/ProcessMemoryDumper.php
http://sigappfr.acm.org/MEDES/09/ 扱うトピックは Digital Ecosystem Infrastructure Web Technologies Social Networks Data & Knowledge Management Systems Multimedia Information Retrieval Ontology Management Services Systems and Engineering E-…
http://internet.watch.impress.co.jp/cda/news/2009/01/05/22003.html 多分,オリジナルは2008年12月30日にWebAppSecで投稿されたこれかと MD5 considered harmful today: Creating a rogue CA certificate http://www.win.tue.nl/hashclash/rogue-ca/ って…
CAN YOU CRACK A CODE? Try Your Hand at Cryptanalysis http://www.fbi.gov/page2/dec08/code_122908.html FBIからの挑戦 「セキュリティいろはかるた」なんてものがあるらしい http://www.amazon.co.jp/dp/B001NK7QTY/ これも武田さんが監修らしい
韓国産のsqlインジェクションツール WITOOL WITOOL is an sql injection GUI tool by DotNET. Target db : SQL SERVER, Oracle Retrive schema : DB/TableSpace, Table, Column, other object Retrive data : retrive paging, dump xml file Log : View the …
CFP uCon Security Conference 2009 - Recife, Brazil http://www.ucon-conference.org/
National Security Agency Releases History of Cold War Intelligence Activities http://www.gwu.edu/~nsarchiv/NSAEBB/NSAEBB260/index.htm ちょっと前の読み応えのあるNSAの冷戦時のお話
The year in IPv4 addresses: almost 200 million served http://arstechnica.com/news.ars/post/20090102-the-year-in-ipv4-addresses-almost-200-million-served.html IPv4の利用状況
http://arstechnica.com/news.ars/post/20090102-the-year-in-ipv4-addresses-almost-200-million-served.html
http://www.coffeeandsecurity.com/resources/tools/tamapper.aspx
