New Zealand
[-----------------------------------------------------------------]
After travelling the world to attend many excellent security conferences
with our compatriots, we decided it was time to pull finger and organise
one in Aotearoa, New Zealand.
This is the call for presenters for the inaugural Kiwicon.
[WTF?]
For more details regarding exploitation of Firefox
extensions, refer to our DEFCON 17 presentation at
http://security-assessment.com/files/presentations/liverani_freeman_abusing_firefox_extensions_defcon17.pdf.
Security-Assessment.com is a New Zealand based world
leader in web application testing, network security
and penetration testing. Security-Assessment.com
services organisations across New Zealand, Australia,
Asia Pacific, the United States and the United
Kingdom.
For more details regarding exploitation of Firefox
extensions, refer to our DEFCON 17 presentation at
http://security-assessment.com/files/presentations/liverani_freeman_abusing_firefox_extensions_defcon17.pdf.
Security-Assessment.com is a New Zealand based world
leader in web application testing, network security
and penetration testing. Security-Assessment.com
services organisations across New Zealand, Australia,
Asia Pacific, the United States and the United
Kingdom.
___ ___ __ __ ___ ___ ___
| Y )|__|.--.--.--.|__|.----..-----..-----. | || Y |
|. 1 / | || | | || || __|| _ || | |. ||. | |
|. _ \ |__||________||__||____||_____||__|__| |. ||. | |
|: | \ 27-28 November, 2010AD |: ||: 1 |
|::.| . ) Wellington, New Zealand |::.| \:.. ./
`--- ---' `---' `---'
Yes, by hoof or by boot, it is time to plan once again the journey to the
idyllic palm-tree lined shores of New Zealand's sheep shearing capital -
Te Kuiti - for the annual gathering of our ilk. See the mighty shears! Taste
For more details regarding exploitation of Firefox
extensions, refer to our DEFCON 17 presentation at
http://www.security-assessment.com/files/presentations/liverani_freeman_abusing_firefox_extensions_defcon17.pdf
Security-Assessment.com is a New Zealand based world
leader in web application testing, network security
and penetration testing. Security-Assessment.com
services organisations across New Zealand, Australia,
Asia Pacific, the United States and the United
Kingdom.
+-----------------------------+
|About Security-Assessment.com|
+-----------------------------+
Security-Assessment.com is a New Zealand based world leader in web
application testing,
network security and penetration testing. Security-Assessment.com
services organisations
across New Zealand, Australia, Asia Pacific, the United States and the
United Kingdom.
Discovered and advised to Hyleos in December 2009 by Paul <dot> Craig - Security-Assessment.com
This advisory is also available from our website:
http://www.security-assessment.com/files/advisories/2010-02-11_ChemviewX_Activex.pdf
Security-Assessment.com is a New Zealand based world leader in web application testing, network security
and penetration testing. Security-Assessment.com works with organisations across New Zealand, Australia,
Asia Pacific, the United States and the United Kingdom.
+-----------------------------+
|About Security-Assessment.com|
+-----------------------------+
Security-Assessment.com is a New Zealand based world
leader in web application testing, network security
and penetration testing. Security-Assessment.com
services organisations across New Zealand, Australia,
Asia Pacific, the United States and the United
Kingdom.
For more details regarding exploitation of Firefox
extensions, refer to our DEFCON 17 presentation at
http://www.security-assessment.com/files/presentations/liverani_freeman_abusing_firefox_extensions_defcon17.pdf
Security-Assessment.com is a New Zealand based world
leader in web application testing, network security
and penetration testing. Security-Assessment.com
services organisations across New Zealand, Australia,
Asia Pacific, the United States and the United
Kingdom.
+-----------------------------+
|About Security-Assessment.com|
+-----------------------------+
Security-Assessment.com is a New Zealand based world
leader in web application testing, network security
and penetration testing. Security-Assessment.com
services organisations across New Zealand, Australia,
Asia Pacific, the United States and the United
Kingdom.
+-----------------------------+
|About Security-Assessment.com|
+-----------------------------+
Security-Assessment.com is a New Zealand based world
leader in web application testing, network security
and penetration testing. Security-Assessment.com
services organisations across New Zealand, Australia,
Asia Pacific, the United States and the United
Kingdom.
For more details regarding exploitation of Firefox
extensions, refer to our DEFCON 17 presentation at
http://security-assessment.com/files/presentations/liverani_freeman_abusing_firefox_extensions_defcon17.pdf.
Security-Assessment.com is a New Zealand based world
leader in web application testing, network security
and penetration testing. Security-Assessment.com
services organisations across New Zealand, Australia,
Asia Pacific, the United States and the United
Kingdom.
For more details regarding exploitation of Firefox
extensions, refer to our DEFCON 17 presentation at
http://security-assessment.com/files/presentations/liverani_freeman_abusing_firefox_extensions_defcon17.pdf.
Security-Assessment.com is a New Zealand based world
leader in web application testing, network security
and penetration testing. Security-Assessment.com
services organisations across New Zealand, Australia,
Asia Pacific, the United States and the United
Kingdom.
10. About Morning Star Security
----------------------------------------------------------------------------------------------
MorningStar Security is an IT security consulting firm in Christchurch,
New Zealand.
The freshest blend of IT security news is available for your daily
consumption at http://www.morningstarsecurity.com/news/
Designed as a SaaS, iKAT features many methods of escaping out of a
browser jailed environment and gaining command execution.
iKAT is a website you visit from a Kiosk, its quick, free, and aims to please.
iKAT is solely developed by myself (Paul Craig) a Kiosk hacking
enthusiast from New Zealand.
Defcon 18 Edition:
---------------------
iKAT and Defcon seem to go hand in hand, and when the con is on
Kiosks get 'visited' by iKAT. Traffic to the iKAT website increased by
* V. Piuri (Università degli Studi di Milano, Italy)
* D. Prattichizzo (Università degli Studi di Siena, Italy)
* E. H. Ruspini (European Centre for Soft Computing, Mieres, Spain)
* R. Sole (ICREA and Universidad Pompeu Fabra, Barcelona, Spain)
* A. Sachenko (Ternopil Academy of National Economy, Ternopil, Ukraine)
* G. Sen Gupta (Massey University, Palmerston North, New Zealand)
* S. Valverde (ICREA and Universidad Pompeu Fabra, Barcelona, Spain)
=== Treasurer ===
* R. Falciai (IFAC-CNR, Italy, and IEEE Italy Section, Treasurer)
> > that would block WAY more than I would want.
> [...]
>
> In my professional life, I see frequent requests of this nature from
> customers in western/English-speaking countries. My immediate
> response is, "you *are* aware that Australia and New Zealand are
> part of APNIC, right?"
Yep- which is why I said "but that would block WAY more than I want." ;)
t
Jon Giffin (Georgia Institute of Tech., USA)
Virgil Gligor (Carnegie Mellon Univ., USA)
Eu-Jin Goh (Stanford University, USA)
Rachel Greenstadt (Drexel University)
Minaxi Gupta (Indiana University, USA)
Peter Guttman (U of Auckland, New Zealand)
Alex Halderman (Princeton University, USA)
Sotiris Ioannidis (ICS/FORTH, Greece)
Trent Jaeger (Penn State University, USA)
Farnam Jahanian (University of Michigan, USA)
Rob Johnson (Stony Brook University, USA)
> In my professional life, I see frequent requests of this nature from
> customers in western/English-speaking countries. My immediate
> response is, "you *are* aware that Australia and New Zealand are
> part of APNIC, right?"
http://ftp.apnic.net/stats/apnic/delegated-apnic-latest
http://ftp.apnic.net/stats/ripe-ncc/delegated-ripencc-latest
I've used the above lists to block only certain countries of the APNIC
with some degree of success.
> that would block WAY more than I would want.
[...]
In my professional life, I see frequent requests of this nature from
customers in western/English-speaking countries. My immediate
response is, "you *are* aware that Australia and New Zealand are
part of APNIC, right?"
--
{ IRL(Jeremy_Stanley); PGP(9E8DFF2E4F5995F8FEADDC5829ABF7441FB84657);
SMTP(fungi@yuggoth.org); IRC(fungi@irc.yuggoth.org#ccl); ICQ(114362511);
AIM(dreadazathoth); YAHOO(crawlingchaoslabs); FINGER(fungi@yuggoth.org);
‣ José Nazario ; Arbor Networks ; USA
‣ Kurt Grutzmacher ; Pacific Gas & Electric ; USA
‣ Luciano Bello ; CITEFA/Si6 , Debian Project ; Argentina
‣ Marc Schoenefeld ; University of Bamberg ; Germany
‣ Matt Jonkman ; Emerging Threats.net (formerly bleedingthreats.net) ; USA
‣ Morgan Marquis-Boire ; Security-Assessment.com ; New Zealand
‣ Neelay S. Shah ; Foundstone Inc., A Division of McAfee ; USA
‣ Paolo Perego ; Spike Reply srl, Owasp Orizon Project leader ; Italy
‣ Peter Panholzer ; SEC Consult Unternehmensberatung GmbH ; Austria
‣ Rafael Dominguez Vega ; MWR InfoSecurity ; UK
‣ Saumil Udayan Shah ; CEO, Net-Square ; India
10. About Morning Star Security
----------------------------------------------------------------------------------------------
MorningStar Security is an IT security consulting firm in Christchurch,
New Zealand.
The freshest blend of IT security news is available for your daily
consumption at http://www.morningstarsecurity.com/news/
Description
_______________
EasyManage Content Management System is a modular system designed
by New Zealand company, Face Limited.
It contains two modules which may be easily exploited to carry out
SQL injection attacks.
_______________
|
