SpiderLabs Blog
Explore the latest threats, critical vulnerability disclosures, cutting-edge research, and intelligence from our elite global threat experts.
Setting HoneyTraps with ModSecurity: Adding Fake HTML Comments
January 14, 2014
This blog post continues with the topic of setting " HoneyTraps" within your ...
SpiderLabs Radio: January 10, 2014
January 12, 2014
In this week's podcast we talk about malware offered up in onlines ads, the ...
SAP Sybase ASE 15.7 security updates
January 10, 2014 | Martin Rakhmanov
SAP Sybase Adaptive Server Enterprise is a relational database management ...
Microsoft Advance Notification for January 2014
January 09, 2014
Microsoft is scheduled to release the next security update for consumers on ...
DaumGame ActiveX 0day
January 06, 2014
One might think that vulnerabilities in ActiveX controls are a thing of the ...
SpiderLabs Radio: January 3, 2014
January 06, 2014
Welcome to the SpiderLabs Radio Reboot! As we bid our old host, Space Rogue, a ...
The Case of an Obscure Injection
December 31, 2013 | Damian Profancik
During a recent application penetration test, I came across what proved to be ...
How Snotnose the Elf was Able to Compromise The North Pole Domain and Retrieve the Nice and Naughty Lists
December 20, 2013 | Theresa
Last Winter, Snotnose won the North vs South Pole CTF contest, and Santa ...
Wendel's Small Hacking Tricks - A not so common and neat Oracle [for Windows] hack.
December 20, 2013 | Wendel Guglielmetti Henrique
Since 2003 a large part of my workday has been devoted solely to hacking ...
Exploiting Password Recovery Functionalities
December 19, 2013 | Marcio Almeida
Password recovery functionalities can result in vulnerabilities in the same ...
Quick Joomla Refresher
December 19, 2013 | David Kirkpatrick
I haven't come into contact with Joomla for a while, but I had the opportunity ...
Announcing ModSecurity v2.7.6 Release (CI Platform Usage)
December 17, 2013
The ModSecurity Project team is pleased to announce public release version ...
The Curious Case of the Malicious IIS Module: Prologue (Method of Entry Analysis)
December 13, 2013
Earlier this week, SpiderLabs Research team released a blog post outlining ...
The Kernel is calling a zero(day) pointer – CVE-2013-5065 – Ring Ring
December 11, 2013 | Ben Hayak
SpiderLabs investigates a number of suspicious binary files on a daily basis. A ...
Microsoft Patch Tuesday, December 2013
December 10, 2013 | Robert Foggia
'Tis the season for an increase in cyber-criminal activities. In the past ...
The Curious Case of the Malicious IIS Module
December 09, 2013
Recently, we've seen a few instances of a malicious DLL that is installed as an ...
Microsoft Advance Notification for December 2013
December 06, 2013
On December 10th, Microsoft will begin deploying their security updates to ...
Physical Address Strangeness in Spam
December 05, 2013 | Brian Bebeau
Ten years ago, Congress passed the "CAN-SPAM Act" (also known as ...
Hacking a Reporter: Sleepless Nights Outside a Brooklyn Brownstone (Part 3 of 3)
December 05, 2013
This post is the conclusion of a three-part series (read the first here and the ...
Look What I Found: Moar Pony!
December 03, 2013 | Daniel Chechik
In our last episode of "Look What I Found" we talked about a fairly large ...
[Honeypot Alert] More PHP-CGI Scanning (apache-magika.c)
November 26, 2013 | Ryan Barnett
In the past 24 hours, one of the WASC Distributed Web Honeypot participant's ...
SpiderLabs Responder Updates
November 26, 2013
Responder is a penetration-testing tool in active development. To continue ...
Spam Triple Threat: Voice Message, Important System Update, and DHL Delivery spam campaign.
November 22, 2013
This week we discovered a large malware spam campaign that used the Zbot Trojan ...
Vulnerability in RiskNet Acquirer (TWSL2013-031)
November 22, 2013
Last week we released an advisory for a vulnerability discovered in the RiskNet ...
Malicious shells; Established != Active
November 22, 2013 | Ryan Jones
During a recent investigation, SpiderLabs was presented with evidence that ...
Tutorial for NTDS goodness (VSSADMIN, WMIS, NTDS.dit, SYSTEM)
November 21, 2013
I recently performed an internal penetration test where the NTDS.dit file got ...
Trustwave SpiderLabs at OWASP’s AppSec USA 2013
November 15, 2013 | Trustwave SpiderLabs
Will you be at the OWASP Foundation's AppSec USA event next week in New York ...
SpiderLabs Radio November 15, 2013 w/ Space Rogue
November 15, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...