Bugtraq
Bugtraq
The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!
Friendly-Tech FriendlyTR69 CPE Remote Management V2.8.9 SQL Injection Vulnerability
CVE-2010-0624: Heap-based buffer overflow in GNU Tar and GNU Cpio
[SECURITY] [DSA-2010-1] New kvm packages fix several vulnerabilities
[SECURITY] [DSA 2009-1] New tdiary packages fix cross-site scripting
[USN-908-1] Apache vulnerabilities
Secunia Research: XnView DICOM Parsing Integer Overflow Vulnerability
[ MDVSA-2010:059 ] virtualbox
iDefense Security Advisory 03.09.10: Microsoft Excel MDXSET Record Heap Overflow Vulnerability
Secunia Research: Employee Timeclock Software Backup Information Disclosure
iDefense Security Advisory 03.09.10: Microsoft Excel MDXTUPLE Record Heap Overflow Vulnerability
View the last 25 posts.
♦♦♦♦♦
IDS Focus
IDS Focus
Technical discussion about Intrusion Detection Systems. You can also read the archives of a <A HREF="http://seclists.org/ids/">previous IDS list</A>
Call for Papers: EC2ND 2010
Announcing xtractr (on pcapr)
CFP: Workshop on the Analysis of System Logs
View the last 25 posts.
♠♠♠♠♠
FullDisclosure
Full Disclosure
An unmoderated high-traffic forum for disclosure of security information. Fresh vulnerabilities sometimes hit this list many hours before they pass through the Bugtraq moderation queue. The relaxed atmosphere of this quirky list provides some comic relief and certain industry gossip. Unfortunately 80% of the posts are worthless drivel, so finding the gems takes patience.
Vulnerabilities in Abton
Skype URI Handler Input Validation
[SECURITY] [DSA 2011-1] New dpkg packages fix path traversal
[SECURITY] [DSA-2010-1] New kvm packages fix several vulnerabilities
Secunia Research: XnView DICOM Parsing Integer Overflow Vulnerability
Re: credit union phishing scam
Re: credit union phishing scam
[USN-909-1] dpkg vulnerability
Re: GeoIPgen version 0.4 released - country-to-IPs generator
Re: Mozilla Firefox 3.6 plenitude String Crash(0day) Exploit
View the last 25 posts.
♥♥♥♥♥
Incidents
Incidents
Lightly moderated list for dicussing actual security incidents (unexplained probes, breakins, etc). Topics include information about new rootkits, backdoors, trojans, virii, and worms.
View the last 25 posts.
|
Info Security News
[ISN] InfoSec News Mailing List
InfoSecNews
Pennsylvania's Web security officer leaves post a week after talking about PennDOT hacking incident
The FBI supply chain illustrated
Colorado Springs man allegedly sabotaged TSA computers
Zeus botnets suffer mighty blow after ISP taken offline
WhitePages.com halts ad networks over malware
Thailand approves extradition of credit card hack suspect
RSA: Cybersecurity A Joint Fed, Industry Effort
Cybersecurity program has serious defects, GAO says
Ford Motor Rolls Out New Security Features To Prevent Car-Hacking
Backdoor found in Energizer Duo USB battery charger
View the last 25 posts.
♣♣♣♣♣
Penetration Testing
Penetration Testing
While this list is intended for "professionals", participants frequenly disclose techniques and strategies that would be useful to anyone with a practical interest in security and network auditing.
Re: Case studies books
Re: Evaluating pentesters
Re: Professional Scrpt Kiddies vs Real Talent
Re: Evaluating pentesters
Re: Evaluating pentesters
Re: Professional Scrpt Kiddies vs Real Talent
Re: Professional Scrpt Kiddies vs Real Talent
Re: Professional Scrpt Kiddies vs Real Talent
Re: proposed pen-test
Re: Professional Scrpt Kiddies vs Real Talent
View the last 25 posts.
♥♥♥♥♥
Security Basics
Security Basics
A high-volume list which permits people to ask "stupid questions" without being derided as "n00bs". I recommend this list to network security newbies, but be sure to read Bugtraq and other lists as well.
Re: Reporting SSH abuse
Re: Help hardening router
RE: Reporting SSH abuse
Re: Reporting SSH abuse
Re: Help hardening router
Reporting SSH abuse
Re: Help hardening router
Re: Help hardening router
Re: Help hardening router
RE: Help hardening router
View the last 25 posts.
♠♠♠♠♠
Vulnerability Development
Vulnerability Development (vuln-dev) Mailing List
A moderated list for discussing possible security issues and devising exploits for them.
View the last 25 posts.
|
