Documents Associated to Nick Freeman

New User, Welcome! Login

Nick Freeman

WizzRSS Firefox Extension - Privileged Code Injection

+------+
|Credit|
+------+

Discovered and advised to the WizzRSS developer
February 2009 by Nick Freeman of
Security-Assessment.com.
Contact: Nick Freeman \\AT\\ security-assess\m/ent.com
Personal Page: http://atta.cked.me

Security-Assessment.com Advisory: BroadWorks Call Detail Record Disclosure Vulnerability

Name             : BroadWorks Call Detail Record Disclosure Vulnerability
Vendor Website   : http://broadsoft.com/products/broadworks/
Date Released    : November 2, 2010
Affected Software: BroadWorks <= R16
Researcher       : Nick Freeman (nick.freeman@security-assessment.com)


PDF:
http://security-assessment.com/files/advisories/BroadWorks_Call_Detail_Record_Disclosure_Vulnerability.pdf
TXT:

ScribeFire Firefox Extension - Privileged Code Injection

+------+
|Credit|
+------+

Discovered and advised to the ScribeFire developer
July 2009 by Nick Freeman of Security-Assessment.com.
Contact: Nick Freeman \\AT\\ security-assess\m/ent.com
Personal Page: http://atta.cked.me


For full details regarding this vulnerability

Yoono Firefox Extension - Privileged Code Injection

+------+
|Credit|
+------+

Discovered and advised to the Yoono developers
June 2009 by Nick Freeman of Security-Assessment.com.
Contact: Nick Freeman \\AT\\ security-assess\m/ent.com
Personal Page: http://atta.cked.me


For full details regarding this vulnerability

Feed Sidebar Firefox Extension - Privileged Code Injection

+------+
|Credit|
+------+

Discovered and advised to the Feed Sidebar developer
March 2009 by Nick Freeman of Security-Assessment.com.
Contact: Nick Freeman \\AT\\ security-assess\m/ent.com
Personal Page: http://atta.cked.me


For full details regarding this vulnerability

EUSecWest 2009 (May27/28) London Agenda and PacSec 2009 (Nov 4/5) Tokyo CFP deadline: June 1 2009

Malware Case Study: the ZeuS evolution 
        - Vicente Diaz, S21Sec
Writing better XSS payloads 
        - Alex Kouzemtchenko, SIFT
Exploiting Firefox Extensions 
        -Roberto Suggi Liverani & Nick Freeman,  Security-Assessment.com
Stored Value Gift Cards, Magstripes Revisited 
        - Adrian Pastor,  Gnucitizen, Corsaire
Advanced SQL Injection to operating system control 
        - Bernardo Damele Assumpcao Guimaraes, Portcullis
Cloning Mifare Classic

Security-Assessment.com WhitePaper/Addendum: Cross Context Scripting with Firefox & Exploiting Cross Context Scripting vulnerabilities in Firefox

The addendum "Exploiting Cross Context 
Scripting vulnerabilities in Firefox" 
includes a number of exploits tailored 
for Cross Context Scripting vulnerabilities.

Exploiting Cross Context Scripting vulnerabilities in Firefox - Nick Freeman, Roberto Suggi Liverani
Link: http://www.security-assessment.com/files/whitepapers/Exploiting_Cross_Context_Scripting_vulnerabilities_in_Firefox.pdf


+--------+
|Abstract|

Security-Assessment.com Release: Hacking Hollywood Slides, Advisories and Exploits

+------------+
|Introduction|
+------------+

At Kiwicon V (https://www.kiwicon.org) and Ruxcon 2011
(http://www.ruxcon.org.au), Nick Freeman presented on Hacking
Hollywood - a half hour feel-good romp through vulnerabilities in
software used during the film making process. This release includes
the slides, advisories and exploits used during the presentation. Enjoy!

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!