Questions tagged [attacks]

An attempt to exploit a weakness in a system, either for nefarious or research reasons. Questions with this tag should be about designing, carrying out, or defending against the attack itself, rather than about the underlying weakness.

A threat may be thought of as a person or group of people who wish to damage, disable, or extract value from a target system. A weakness is a component of a system which requires less effort to compromise than the rest of the system.

An attack differs from a weakness / vulnerability in that:

An attack is a specific instance of exploiting a weakness,
launched at a specific time,
against a specific target,
often using custom tools or payloads designed to exploit one or more vulnerabilities
to accomplish a specific goal.

1221 questions

248

votes

4 answers

SSL3 "POODLE" Vulnerability

Canonical question regarding the recently disclosed padding oracle vulnerability in SSL v3. Other identical or significantly similar questions should be closed as a duplicate of this one. What is the POODLE vulnerability? I use…

asked Oct 14 '14 at 23:50

tylerl

82,225
25
148
226

179

votes

9 answers

Can webcams be turned on without the indicator light?

I've made a series of penetration tests in my network and one of the things I've tried was to record webcam and microphone. Recording an end-user's microphone seems to be a stealth thing, but what about the webcam? In my tests, the indicator is…

attacks penetration-test exploit

asked Sep 01 '11 at 16:33

user4610

165

votes

3 answers

What are rainbow tables and how are they used?

Where can I find one? Is there a pot of gold at the end? How do I protect against them? From the Area51 proposal This question was IT Security Question of the Week. Read the Sep 09, 2011 blog entry for more details or submit your own Question of…

cryptography hash attacks attack-prevention rainbow-table

asked Nov 16 '10 at 07:26

AviD

72,138
22
136
218

139

votes

9 answers

Where can I find good dictionaries for dictionary attacks?

I’m wondering where I can find good collections of dictionaries which can be used for dictionary attacks? I've found some through Google, but I’m interested in hearing about where you get your dictionaries from.

authentication passwords attacks brute-force dictionary

asked Dec 29 '10 at 15:24

Chris Dale

16,119
10
56
97

138

votes

8 answers

Are "man in the middle" attacks extremely rare?

In "Some thoughts on the iPhone contact list controversy and app security", cdixon blog Chris Dixon makes a statement about web security Many commentators have suggested that a primary security risk is the fact that the data is transmitted in plain…

network attacks man-in-the-middle statistics

asked Feb 22 '12 at 19:36

Jeff Atwood

4,542
6
25
29

113

votes

9 answers

Should I change the default SSH port on linux servers?

Is there any advantage in changing the SSH port, I've seen people do that, but I can't seem to find the reason why. If you have a strong password and/or a certificate, is it useful for anything? Edit: I should also mention that I am using iptables…

authentication attacks linux attack-prevention ssh

asked Mar 09 '13 at 12:09

sharp12345

1,969
3
13
23

108

votes

5 answers

Can simply decompressing a JPEG image trigger an exploit?

The novel Daemon is frequently praised for being realistic in its portrayal rather than just mashing buzzwords. However, this struck me as unrealistic: Gragg's e-mail contained a poisoned JPEG of the brokerage logo. JPEGs were compressed image…

appsec attacks compression

asked Aug 26 '15 at 19:00

JDługosz

1,138
2
7
12

101

votes

5 answers

Someone is trying to brute-force(?) my private mail server... very... slowly... and with changing IPs

This has been going on for about 1-2 days now: heinzi@guybrush:~$ less /var/log/mail.log | grep '^Nov 27 .* postfix/submission.* warning' [...] Nov 27 03:36:16 guybrush postfix/submission/smtpd[7523]: warning: hostname bd676a3d.virtua.com.br does…

attacks firewalls brute-force

asked Nov 27 '17 at 07:22

Heinzi

2,914
2
21
25

votes

7 answers

Script Kiddies - how do they find my server IP?

I've set up a site on Digital Ocean without a domain yet, so there is only the IP. Despite telling no-one of its existence or advertising it, I get hundreds of notices from fail2ban that various IP's are trying to hack my SSL port or are looking for…

attacks penetration-test webserver brute-force

asked Feb 12 '16 at 12:53

microwth

2,101
2
14
19

votes

4 answers

How does XSS work?

I have very little experience in web development, but I'm interested in security. However, I haven't fully understood how XSS works. Can you explain it to med? The Wikipedia article give me a good idea but I don't think I understand it very well.

web-application attacks xss appsec

asked Dec 28 '10 at 16:58

Ither

1,039
1
9
9

votes

8 answers

How would one crack a weak but unknown encryption protocol?

I was reading this interesting question: Is my developer's home-brew password security right or wrong, and why? It shows a weak home-brew algorithm developed by "Dave", and the answers discuss why this is a bad idea. (Actually hashing algorithm…

attacks cryptanalysis obscurity

asked Mar 18 '13 at 15:03

Ram Rachum

1,998
2
17
20

votes

12 answers

What is different about being targeted by a professional attacker?

It is often said that security tools such as firewalls, antivirus programs, etc. are only effective against random, untargeted attacks. If you are specifically targeted by an intentional, professional attacker (e.g. state sponsored, NSA, Chinese…

attacks defense

asked Oct 05 '14 at 02:18

user2174870

1,378
2
11
13

votes

13 answers

Is divide-by-zero a security vulnerability?

Even though sometimes software bugs and vulnerabilities are deemed as the same concept, there must be at least one distinct aspect between them, and I think the most prominent one is exploitability (the latter one having the property). What I'm…

exploit attacks vulnerability

asked Mar 04 '19 at 01:15

Gwangmu Lee

votes

7 answers

SQL injection -- why isn't escape quotes safe anymore?

Raw SQL When you're writing SQL -- for anything that takes human input really, a lot of things have been done to avoid the injection. Everyone that's heard of SQL injection knows that (I'm going to use PHP as a sample) doing something like this…

appsec web-application attacks databases sql-injection

asked May 06 '11 at 14:44

Incognito

5,204
5
27
31

votes

6 answers

Can malicious code fit in 14 bytes?

I was reading this The New York Times (NYT) article about the hack of Jeff Bezos's phone. The article states: The May 2018 message that contained the innocuous-seeming video file, with a tiny 14-byte chunk of malicious code, came out of the…

malware exploit attacks

asked Jan 23 '20 at 02:22

Stud Sterkel

2 3

…

81 82 Next