lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list] 
Date: Mon, 13 Feb 2017 20:23:03 +0200
From: "MustLive" <mustlive@...security.com.ua>
To: <submissions@...ketstormsecurity.org>,
	<fulldisclosure@...lists.org>
Subject: [FD] Backdoored Web Application v.1.0.2

Hello participants of Mailing List.

In December 2012 I released my Backdoored Web Application (BWA)
(http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/2012-December/008630.html)
 - a reference test of backdoors scanners. All qualitative scanners of
backdoors must find it, otherwise such scanners not good enough. So everyone
can use it to check their scanners.

In 2013 I published the results of my backdoor scanners testing
(http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/2013-May/008832.html).
In this research I tested WordPress plugins scanners with using of my BWA.

After release of version BWA v.1.0.1 in 2014, this year I released new
version Backdoored Web Application v.1.0.2
(http://websecurity.com.ua/8491/). In which I added new backdoor on PHP.
This will allow to better test backdoors scanners.

Download: http://websecurity.com.ua/uploads/2017/bwa_v.1.0.2.rar

Best wishes & regards,
Eugene Dokukin aka MustLive
Administrator of Websecurity web site
http://websecurity.com.ua 


_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Powered by blists - more mailing lists