SecNiche Security Labs - /root@labs:~#
Home | Presentations | Publications | Tools | About
WhitePapers
Publications
- Abusing Glype Proxies: attacks , Exploits and Defenses, Elsevier Network Security, December 2012
- Game of Win 32/64 System Takeover : Bot Wars., Hack In The Box - Ezine, November 2012
- Winlocker Ransomware - Analysis *, Virus Bulletin, November 2012
- Circumventing SMS based Two-factor Authentication, Digital Forensics, August 2012
- Inside the ICE IX bot, descendent of Zeus *, Virus Bulletin Magazine, August 2012
- Malware Design Strategies for Circumventing Detection and Prevention Controls – Part Two. *, Virus Bulletin Magazine, June 2012
- Malware Design Strategies for Circumventing Detection and Prevention Controls – Part One. *, Virus Bulletin Magazine, May 2012
- Zombifying Targets - Malicious Phishing Campaigns., Virus Bulletin Magazine, April 2012
- Iphone Malware Paradigm., STSC Crosstalk Journal, March/April 2012
- Dissecting the NGR Bot Framework., Virus Bulletin Magazine, January 2012
- Social Networks - Launchpads for Malware., Commercial Crime International, December 2011
- Cross Interface Attacks in Network Devices., ISACA Journal, December 2011
- The Art of Stealing Banking Information - Form Grabbing on Fire., Virus Bulletin Magazine, November 2011
- Frametrapping the Framebusting Defense., Elsevier Network Security (NESE) Journal, October 2011
- Breaking Down the {I*} Devices - Penetration Testing Like a Hacker., Hakin9 Magazine, September 2011
- SpyEye Bot Exploitation Tactics., Virus Bulletin Magazine, August 2011
- SpyEye Malware Infection Framework., Virus Bulletin Magazine, July 2011
- State of Declarative Security in Banking Websites., Elsevier Computer Fraud and Security (CFS) Journal, July 2011
- Browser Malware Taxonomy., Virus Bulletin Magazine, June 2011
- Spying on the Browser - Dissecting the Design of Malicious Extensions., Elsevier Network Security (NESE) Journal, May 2011
- Browser Interface Design Flaws., STSC Crosstalk Journal, May/June 2011
- Malvertising - Mode of Infections., ISSA Journal, April 2011
- Social Networks - Chain Exploitation., ISACA Journal, January 2011
- JavaScript Infection Model., ISSA Journal, November 2010
- Exploit Distribution Mechanism in Browser Exploit Packs., Hack In The Box - Ezine, April 2012
- Extending SQL Injection using Buffer Overflows., Hack In The Box - Ezine, October 2011
- Botnet Resistant Coding., Hack In The Box - Ezine, May 2011
- Exploiting Web Virtual Hosting., Hack In The Box - Ezine, January 2011
- Notorious Datacenter Servers Support Systems., Hack In The Box - Ezine, October 2010
- Chinese Malware Factory., Hack In The Box - Ezine, July 2010
- Open Redirect - Wreck Off., Hack In The Box - Ezine, April 2010
- Malware Obfuscation - Tricks and Traps., Hack In The Box - Ezine, January 2010
- Holistic Analysis of Defective Threads., Debugged Magazine, December 2009
- Artifacts of Inline User Mode Heap Analysis., Debugged Magazine, September 2009
- Hacking 802.11 Protocol Insecurities., Usenix ;login Magazine, April 2008
- Insecurities in Designing XML Signatures., Usenix ;login Magazine, February 2008
- Design Flaws in IP Surveillance Cameras., Hakin9 Magazine, July 2011
- Pwning Embedded ADSL Routers., Hakin9 Magazine, April 2010
- Behavioral Analysis of Unwise.exe Malware., Hakin9 Magazine, November 2009
- Hacking Through Wild Characters., Hakin9 Magazine, April 2009
- Auditing Oracle in Production Environment (Part 1)., Hakin9 Magazine, January 2009
- Auditing Oracle in Production Environment (Part 2)., Hakin9 Magazine, January 2009
- Breaking in Add-on Malware., Hakin9 Magazine, May 2008
- Reverse Engineering Binaries., Hakin9 Magazine, February 2008
- Demystifying Windows PE Caveats., Hakin9 Magazine, April 2007
|