Events

27/FEB/2012 "Assessing and Exploiting Web Applications with Samurai-WTF" (ES)

Raul Siles
RootedLabs 2012 (1 day). Madrid. Spain.

1-3/MAR/2012"We will be there again... don't miss it! ;)"

Taddong
Rooted CON 2012 (3 days). Madrid. Spain.

12-17/MAR/2012"SEC542: Web App Penetration Testing and Ethical Hacking"

BROCHURE (pdf)
Raul Siles
SANS Community Madrid 2012 (6 days). Madrid. Spain. (Spanish)

7-12/MAY/2012"SEC542: Web App Penetration Testing and Ethical Hacking"

Raul Siles
SANS Secure Europe 2012 (6 days). Amsterdam. Netherlands. (English)

News

Book: "Hacking y seguridad en comunicaciones móviles GSM/GPRS/UMTS/LTE" (Spanish)

Taddong has written a book (in Spanish) compiling the main security threats of 2G/3G communications, as well as the theory required to understand the associated attacks. The book has been published by Informatica64 and it is available for purchase on their web page.

tadbsl tool released

Taking as a starting point our analysis of the behaviour of "Signal" application, we have created a little Linux tool to ask Google for the geographical location of a cellular base station. The tool is available at our lab. All the details of the analysis have been published (in Spanish) in the blog "Seguridad Apple" and in this post of our blog. August 2011.

"Un ataque práctico contra comunicaciones móviles" (VIDEO)

The video for the RootedCON 2011 "Un ataque práctico contra comunicaciones móviles" presentation is available (in Spanish). August 2011.

"Building OWASP ZAP Using Eclipse IDE for Java... Pen-Testers"

Taddong has contributted to the OWASP ZAP project by creating the "Building OWASP ZAP Using Eclipse IDE for Java... Pen-Testers" guide. Check the related blog post. The original guide is available for download in our lab. August 2011.

"OWASP Session Management Cheat Sheet"

Taddong has contributted to the OWASP Cheatshet Series by creating the OWASP Session Management Cheat Sheet. Check the related blog post. The original whitepaper is available for download in our lab. July 2011.

"OWASP DNIe Project"

Taddong has contributted to the OWASP Spain Local Chapter by creating the "OWASP DNIe" Project. We encourage you to participate on it if you are involved in web applications that provide authentication based on the Spanish DNIe. June 2011.

"Browser Exploitation for Fun and Profit Revolutions" (VIDEO)

The video for the RootedCON 2011 "Browser Exploitation for Fun and Profit Revolutions" presentation is available (in Spanish). June 2011.

SMB Export Object functionality now included in the latest stable release (1.6.0) of Wireshark

The latest stable release of Wireshark now includes our SMB export object functionality. You can check the release notes or download the software directly from the Wireshark download page. June 2011.