lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date: Wed, 22 Jun 2011 22:32:07 -0500
From: adam <adam@...sy.net>
To: "-= Glowing Sex =-" <doomxd@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: [New Security Tool] INSECT Pro 2.6.1 release

*cough*

*Directory indexes enabled:*
http://www.insecurityresearch.com/wp-includes/
http://www.insecurityresearch.com/wp-content/uploads/
http://www.insecurityresearch.com/wp-content/plugins/wp-pagenavi/
http://www.insecurityresearch.com/wp-content/plugins/wp-postratings/

*Path disclosure:*
http://www.insecurityresearch.com/wp-content/themes/eVid/

*Other:*

   - Using outdated version of SSL
   - Outdated SSL Certificate (2009)
   - Outdated version of mod_frontpage (which may be vulnerable to a root
   access exploit)
   - At *least* a dozen broken links
   - MySQL is exposed to the internet

Blah blah blah. Some of these may or may not be serious but the fact is: it
took less than 60 seconds to find all of it. Imagine what someone who is *
really* bored could find. I think I'll pass on your oh so special *hacker*
 tool.

On Wed, Jun 22, 2011 at 10:20 PM, -= Glowing Sex =- <doomxd@...il.com>wrote:

> OK, now this is just blatant sales spam.   This list isn't your market -
> can't you just move on?
> ^^ thats the poor state of FD nowdays :P people do not even realise, i
> think, what the thing means :P lol... i think this maybe either due to
> language,simply not knowing english.. or, pure spam of an app wich has been
> mentioned beofre over and over... what kind of moderation is here ? uhmmm
> none.... "posting to a moderated" list, is nowdays a frigging joke.
> xd - fuall <3
>
>
>
>
> On 23 June 2011 13:04, Thor (Hammer of God) <thor@...merofgod.com> wrote:
>
>> OK, now this is just blatant sales spam.   This list isn't your market -
>> can't you just move on?
>>
>>
>> > -----Original Message-----
>> > From: full-disclosure-bounces@...ts.grok.org.uk [mailto:
>> full-disclosure-
>> > bounces@...ts.grok.org.uk] On Behalf Of Juan Sacco
>> > Sent: Wednesday, June 22, 2011 6:16 PM
>> > To: full-disclosure@...ts.grok.org.uk
>> > Subject: [Full-disclosure] [New Security Tool] INSECT Pro 2.6.1 release
>> >
>> >  Test your network security and audit your website using the same tools
>>  as
>> > hackers.
>> >  INSECT Pro 2.6.1 is available for purchase right now worldwide through
>> > PayPal!
>> >
>> >  * Run Faster: You not only want to make great security testing, you
>>  want a
>> > nice performance
>> >  * Load Better: Major graphical interface and optimizations features
>> >  * Module Search: Ever wondered where that module? We have a built-in
>> > search feature for you
>> >  * Improvements, and Changes As always, we've added a lot of other
>> > features and optimizations
>> >  * The latest exploits found in the wild
>> >
>> >  We are always trying to be one step ahead of the competition, take a
>>  visual
>> > tour of some of INSECT Pro most popular features and discover  INSECT
>> Pro
>> > today!
>> >
>> >  Start here: http://www.insecurityresearch.com
>> >
>> >  Regards
>> >  Juan Sacco
>> >  --
>> >
>> > __________________________________________________________
>> > __
>> >  Insecurity Research - Security auditing and testing software
>> >  Web: http://www.insecurityresearch.com
>> >  INSECT Pro 2.6.1 on track - Stay tunned
>> >
>> > _______________________________________________
>> > Full-Disclosure - We believe in it.
>> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> > Hosted and sponsored by Secunia - http://secunia.com/
>>
>> _______________________________________________
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/
>>
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ