SpiderLabs Blog
Explore the latest threats, critical vulnerability disclosures, cutting-edge research, and intelligence from our elite global threat experts.
Wendel's Small Hacking Tricks - Killing Processes from the Microsoft Windows Command Line interface.
September 25, 2013 | Wendel Guglielmetti Henrique
Since 2003 a large part of my workday has been devoted solely to hacking ...
Is Oracle Application Server End-of-Life?
September 20, 2013
I was asked recently to review a web server running Oracle Application Server. ...
SpiderLabs Radio September 20, 2013 w/ Space Rogue
September 20, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
ModSecurity XSS Evasion Challenge Results
September 20, 2013
On July 30th, we announced our public ModSecurity XSS Evasion Challenge. This ...
Hey, can I use your server for spamming?
September 19, 2013 | Phil Hay
Over the last few months I have encountered two separate cases of our customers ...
Top Five Ways SpiderLabs Got Domain Admin on Your Internal Network
September 19, 2013 | Theresa
It's always surprising how insecure some internal networks turn out to be. Less ...
Vino VNC Server Remote Persistent DoS Vulnerability
September 16, 2013 | Jonathan Claudius
Last week, I was making some performance enhancements to theVNC protocol ...
Trust for Sale
September 16, 2013
Let's, for a moment, get into the mind of a cyber criminal:
SpiderLabs Radio September 13, 2013 w/ Space Rogue
September 13, 2013
This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Microsoft Patch Tuesday, September 2013
September 10, 2013 | Robert Foggia
In Chicago, it's been a roller coaster of a summer with cold weather to now ...
SpiderLabs Radio September 6, 2013 w/ Space Rogue
September 06, 2013
Microsoft Advance Notification for September 2013
September 05, 2013 | Space Rogue
This month Microsoft continues the recent tradition of large Patch Tuesday with ...
SpiderLabs Radio August 30, 2013 w/ Space Rogue
August 30, 2013
This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Setting HoneyTraps with ModSecurity: Adding Fake robots.txt Disallow Entries
August 26, 2013 | Ryan Barnett
The following blog post is taken from Recipe 3-2: Adding Fake robots.txt ...
SpiderLabs Radio August 23, 2013 w/ Space Rogue
August 23, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Multiple Web Application Vulnerabilities in RockMongo
August 19, 2013
During a recent code review for a client, I also took a brief look at a tool ...
[Honeypot Alert] Probes for Apache Struts 2.X OGNL Vulnerability
August 16, 2013 | Ryan Barnett
Today our web honeypot sensors picked up probes for the recent Apache Struts ...
SpiderLabs Radio August 16, 2013 w/ Space Rogue
August 16, 2013
This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
The Web IS Vulnerable: XSS on the Battlefront (Part 1)
August 15, 2013 | Ryan Barnett
Microsoft Pulls MS13-061 Update for Exchange
August 14, 2013
Microsoft has pulled one of the three critical patches from yesterdays Patch ...
Microsoft Patch Tuesday, August 2013
August 13, 2013
The big news this month in Microsoft's Active Protections Program, other than ...
The Way of the Cryptologist
August 12, 2013
SpiderLabs Radio August 9, 2013 w/ Space Rogue
August 09, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Fun with 'Active Defense'
August 09, 2013
Active Defense is steadily becoming a popular trend in the security field, both ...
Microsoft Advance Notification for Patch Tuesday – August 2013
August 08, 2013 | Space Rogue
No rest for the weary. Microsoft has announced that there will be eight ...
Introducing RDI – Reflected DOM Injection
August 06, 2013 | Daniel Chechik
The other day at DEFCON 21 we (Daniel Chechik and Anat Davidi) gave a talk ...
SpiderLabs Radio August 2, 2013 w/ Space Rogue
August 02, 2013
This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Announcing the ModSecurity XSS Evasion Challenge
July 30, 2013 | Ryan Barnett
The SpiderLabs Research Team is pleased to announce the release of the ...