http://enablesecurity.com Security Consultancy, Research and Development Tue, 26 May 2009 08:19:25 +0000 http://backend.userland.com/rss092 en Our presentation at OWASP Europe in Krakow on Web Application Firewall shortcomings was featured on Darkreading, and Wendel was quoted in the article. Other sites and blogs (such as Heise) also mentioned the presentation. Imperva's (which happens to be a WAF vendor) blog had some comments about the presentation as ... http://enablesecurity.com/2009/05/20/waf-research-media-coverage-and-a-response-to-imperva/ So the OWASP at Krakow (which was a great experience!) came to an end. The conference was a mixture of technical and non-technical presentations; I liked the w3af presentation and thought it was well delivered, and I heard that the "HTTP Parameter Pollution" was particularly interesting. It seems that the ... http://enablesecurity.com/2009/05/15/web-application-firewalls-and-voip-on-the-intertubes/ Back from Troopers09 in Munich after presenting our (Wendel Guglielmetti Henrique from Trustwave  and yourstruly) research on Web Application Firewalls. Troopers was great and the organizers (Enno Rey and co) made a great job out of the conference. Kudos to them!  During the presentation we demonstrated some tools that will ... http://enablesecurity.com/2009/04/26/the-state-of-web-application-security-and-their-firewalls/ Announcing the VOIPPACK April edition supporting IAX2 and can now scan Asterisk servers. Because the feedback for sipautohack was great, we included a similar tool for the Asterisk protocol called iax2autohack in the April edition of VOIPPACK. The following are the new tools avialable in this update: iax2enumerate which like sipenumerate, ... http://enablesecurity.com/2009/04/15/voippack-for-april-adds-asterisk-scanning/ One of the projects that we've been busy with is VOIPSCANNER.com. I am now pleased to announce that it is (semi-)public beta. During beta stage the service will be free but we shall be approving each application individually. Apply for a beta code now. What is VOIPSCANNER.com? VOIPSCANNER.COM makes scanning your public ... http://enablesecurity.com/2009/04/07/introducing-voipscannercom-saas-voip-security-scanner/ Go get it A paper is coming up on the subject because there's been quite some buzz on this on Twitter and some VoIP security blogs. The VOIPSA post explains that this is available to CANVAS users. Check out the VOIPPACK page for more information. And Sjur's blog attracted quite some ... http://enablesecurity.com/2009/04/01/how-to-exploit-the-sip-digest-leak-a-tutorial/ Which means that if you are running OpenX, make sure to update to the latest version which was issued just now. The latest download can be found here. We posted an advisory detailing some well hidden SQL injection vulnerabilities as well as XSS, the possibility of arbitrary file deletion and CRLF ... http://enablesecurity.com/2009/04/01/multiple-vulnerabilities-reported-in-openx-264-and-older/ Just published a tutorial called “How to set up a VoIP lab” which provides easy step-by-step instructions on how to get a VoIP lab up and running. Abstract: Have you been wondering about what sort of security vulnerabilities apply to the VoIP network that’s coming up in your next assignment but ... http://enablesecurity.com/2009/03/25/new-tutorial-published-on-setting-up-a-voip-lab/ Just released an update for VOIPPACK for which includes the "SIP Digest Leak" tool and "Ghostcall". What does the SIP Digest Leak tool do? The SIP Digest Leak is a vulnerability that affects a number of IP Phones that make use of SIP. Many VoIP phones will respond to an authentication challenge ... http://enablesecurity.com/2009/03/17/march-voippack-update-brings-ip-phone-attacks/ Last month we published a video demo called "Attacking Web Applications with Broken Authentication". This shows a simple web application that relies on a cookie called "userid" for authentication. You might think that very few sites are vulnerable to this issue, but the truth is I came across this issue ... http://enablesecurity.com/2009/02/26/weak-authentication-and-other-publications/