http://secdocs.lonerunners.net Latest security documents RSS feed for author Fyodor en-us <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/61-scanning">scanning</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/102-defcon-13">DEFCON 13</a> <br/> Sat, 18 Feb 2012 06:51:55 +0100 http://secdocs.lonerunners.net/documents/details/4912-hacking-nmap http://secdocs.lonerunners.net/documents/details/4912-hacking-nmap <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/61-scanning">scanning</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/102-defcon-13">DEFCON 13</a> <br/> Sat, 18 Feb 2012 06:51:55 +0100 http://secdocs.lonerunners.net/documents/details/4913-hacking-nmap http://secdocs.lonerunners.net/documents/details/4913-hacking-nmap <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/27-buffer-overflow">buffer overflow</a> <a href="http://secdocs.lonerunners.net/tags/details/83-exploiting">exploiting</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/82-black-hat-asia-2001">Black Hat Asia 2001</a> <br/> Tue, 08 Nov 2011 06:30:55 +0100 http://secdocs.lonerunners.net/documents/details/4314-non-common-architectures-buffer-overflows http://secdocs.lonerunners.net/documents/details/4314-non-common-architectures-buffer-overflows <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/1121-david-fifield">David Fifield</a> <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/41-vulnerability-assessment">vulnerability assessment</a> <a href="http://secdocs.lonerunners.net/tags/details/61-scanning">scanning</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/71-black-hat-usa-2010">Black Hat USA 2010</a> <br/><b>Abstract</b>: Most security practitioners can use Nmap for simple port scanning and OS detection, but the Nmap Scripting Engine (NSE) takes scanning to a whole new level. Nmap's high-speed networking engine can now spider web sites for SQL injection vulnerabilities, brute-force crack and query MSRPC services, find open proxies, and more. Nmap includes more than 125 NSE scripts for network discovery, vulnerability detection, exploitation, and authentication cracking. Rather than give a dry overview of NSE, Fyodor and Nmap co-maintainer David Fifield demonstrate practical solutions to common problems. They have scanned millions of hosts with NSE and will discuss vulnerabilities found on enterprise networks and how Nmap can be used to quickly detect those problems on your own systems. Then they demonstrate how easy it is to write custom NSE scripts to meet the needs of your network. Finally they take a quick look at recent Nmap developments and provide a preview of what is soon to come. This presentation does not require any NSE experience, but it wouldn't hurt to read nmap.org/book/nse.html. Sat, 10 Sep 2011 09:32:41 +0200 http://secdocs.lonerunners.net/documents/details/4000-mastering-the-nmap-scripting-engine http://secdocs.lonerunners.net/documents/details/4000-mastering-the-nmap-scripting-engine <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/1121-david-fifield">David Fifield</a> <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/41-vulnerability-assessment">vulnerability assessment</a> <a href="http://secdocs.lonerunners.net/tags/details/61-scanning">scanning</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/71-black-hat-usa-2010">Black Hat USA 2010</a> <br/><b>Abstract</b>: Most security practitioners can use Nmap for simple port scanning and OS detection, but the Nmap Scripting Engine (NSE) takes scanning to a whole new level. Nmap's high-speed networking engine can now spider web sites for SQL injection vulnerabilities, brute-force crack and query MSRPC services, find open proxies, and more. Nmap includes more than 125 NSE scripts for network discovery, vulnerability detection, exploitation, and authentication cracking. Rather than give a dry overview of NSE, Fyodor and Nmap co-maintainer David Fifield demonstrate practical solutions to common problems. They have scanned millions of hosts with NSE and will discuss vulnerabilities found on enterprise networks and how Nmap can be used to quickly detect those problems on your own systems. Then they demonstrate how easy it is to write custom NSE scripts to meet the needs of your network. Finally they take a quick look at recent Nmap developments and provide a preview of what is soon to come. This presentation does not require any NSE experience, but it wouldn't hurt to read nmap.org/book/nse.html. Sat, 10 Sep 2011 09:23:22 +0200 http://secdocs.lonerunners.net/documents/details/3998-mastering-the-nmap-scripting-engine http://secdocs.lonerunners.net/documents/details/3998-mastering-the-nmap-scripting-engine <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/1121-david-fifield">David Fifield</a> <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/41-vulnerability-assessment">vulnerability assessment</a> <a href="http://secdocs.lonerunners.net/tags/details/61-scanning">scanning</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/71-black-hat-usa-2010">Black Hat USA 2010</a> <br/><b>Abstract</b>: Most security practitioners can use Nmap for simple port scanning and OS detection, but the Nmap Scripting Engine (NSE) takes scanning to a whole new level. Nmap's high-speed networking engine can now spider web sites for SQL injection vulnerabilities, brute-force crack and query MSRPC services, find open proxies, and more. Nmap includes more than 125 NSE scripts for network discovery, vulnerability detection, exploitation, and authentication cracking. Rather than give a dry overview of NSE, Fyodor and Nmap co-maintainer David Fifield demonstrate practical solutions to common problems. They have scanned millions of hosts with NSE and will discuss vulnerabilities found on enterprise networks and how Nmap can be used to quickly detect those problems on your own systems. Then they demonstrate how easy it is to write custom NSE scripts to meet the needs of your network. Finally they take a quick look at recent Nmap developments and provide a preview of what is soon to come. This presentation does not require any NSE experience, but it wouldn't hurt to read nmap.org/book/nse.html. Sat, 10 Sep 2011 09:22:09 +0200 http://secdocs.lonerunners.net/documents/details/3997-mastering-the-nmap-scripting-engine http://secdocs.lonerunners.net/documents/details/3997-mastering-the-nmap-scripting-engine <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/1121-david-fifield">David Fifield</a> <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/41-vulnerability-assessment">vulnerability assessment</a> <a href="http://secdocs.lonerunners.net/tags/details/61-scanning">scanning</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/71-black-hat-usa-2010">Black Hat USA 2010</a> <br/><b>Abstract</b>: Most security practitioners can use Nmap for simple port scanning and OS detection, but the Nmap Scripting Engine (NSE) takes scanning to a whole new level. Nmap's high-speed networking engine can now spider web sites for SQL injection vulnerabilities, brute-force crack and query MSRPC services, find open proxies, and more. Nmap includes more than 125 NSE scripts for network discovery, vulnerability detection, exploitation, and authentication cracking. Rather than give a dry overview of NSE, Fyodor and Nmap co-maintainer David Fifield demonstrate practical solutions to common problems. They have scanned millions of hosts with NSE and will discuss vulnerabilities found on enterprise networks and how Nmap can be used to quickly detect those problems on your own systems. Then they demonstrate how easy it is to write custom NSE scripts to meet the needs of your network. Finally they take a quick look at recent Nmap developments and provide a preview of what is soon to come. This presentation does not require any NSE experience, but it wouldn't hurt to read nmap.org/book/nse.html. Sat, 10 Sep 2011 09:21:44 +0200 http://secdocs.lonerunners.net/documents/details/3996-mastering-the-nmap-scripting-engine http://secdocs.lonerunners.net/documents/details/3996-mastering-the-nmap-scripting-engine <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/1121-david-fifield">David Fifield</a> <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/41-vulnerability-assessment">vulnerability assessment</a> <a href="http://secdocs.lonerunners.net/tags/details/61-scanning">scanning</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/65-defcon-18">DEFCON 18</a> <br/> Tue, 08 Feb 2011 05:25:17 +0100 http://secdocs.lonerunners.net/documents/details/3405-mastering-the-nmap-scripting-engine http://secdocs.lonerunners.net/documents/details/3405-mastering-the-nmap-scripting-engine <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/1121-david-fifield">David Fifield</a> <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/41-vulnerability-assessment">vulnerability assessment</a> <a href="http://secdocs.lonerunners.net/tags/details/61-scanning">scanning</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/65-defcon-18">DEFCON 18</a> <br/> Tue, 08 Feb 2011 05:25:16 +0100 http://secdocs.lonerunners.net/documents/details/3404-mastering-the-nmap-scripting-engine http://secdocs.lonerunners.net/documents/details/3404-mastering-the-nmap-scripting-engine <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/61-scanning">scanning</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/42-black-hat-usa-2008">Black Hat USA 2008</a> <br/> Sat, 07 Aug 2010 15:33:00 +0200 http://secdocs.lonerunners.net/documents/details/2790-nmap-scanning-the-internet http://secdocs.lonerunners.net/documents/details/2790-nmap-scanning-the-internet <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/61-scanning">scanning</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/42-black-hat-usa-2008">Black Hat USA 2008</a> <br/> Sat, 07 Aug 2010 15:33:00 +0200 http://secdocs.lonerunners.net/documents/details/2791-nmap-scanning-the-internet http://secdocs.lonerunners.net/documents/details/2791-nmap-scanning-the-internet <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/61-scanning">scanning</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/42-black-hat-usa-2008">Black Hat USA 2008</a> <br/> Sat, 07 Aug 2010 15:33:00 +0200 http://secdocs.lonerunners.net/documents/details/2792-nmap-scanning-the-internet http://secdocs.lonerunners.net/documents/details/2792-nmap-scanning-the-internet <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/41-vulnerability-assessment">vulnerability assessment</a> <a href="http://secdocs.lonerunners.net/tags/details/61-scanning">scanning</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/16-defcon-16">DEFCON 16</a> <br/> Mon, 09 Nov 2009 06:11:09 +0100 http://secdocs.lonerunners.net/documents/details/1519-nmap-scanning-the-internet http://secdocs.lonerunners.net/documents/details/1519-nmap-scanning-the-internet <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/24-network">network</a> <a href="http://secdocs.lonerunners.net/tags/details/41-vulnerability-assessment">vulnerability assessment</a> <a href="http://secdocs.lonerunners.net/tags/details/61-scanning">scanning</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/16-defcon-16">DEFCON 16</a> <br/> Sun, 29 Mar 2009 13:07:00 +0200 http://secdocs.lonerunners.net/documents/details/531-nmap-scanning-the-internet http://secdocs.lonerunners.net/documents/details/531-nmap-scanning-the-internet <b>Authors</b>: <a href="http://secdocs.lonerunners.net/authors/details/203-fyodor">Fyodor</a> <br/><b>Tags</b>: <a href="http://secdocs.lonerunners.net/tags/details/41-vulnerability-assessment">vulnerability assessment</a> <a href="http://secdocs.lonerunners.net/tags/details/61-scanning">scanning</a> <br/><b>Event</b>: <a href="http://secdocs.lonerunners.net/events/details/16-defcon-16">DEFCON 16</a> <br/> Sun, 29 Mar 2009 13:02:00 +0200 http://secdocs.lonerunners.net/documents/details/530-nmap-scanning-the-internet http://secdocs.lonerunners.net/documents/details/530-nmap-scanning-the-internet