WELCOME TO MWR LABS
On the MWR Labs website you will discover a wealth of exciting and interesting information from the world of Information Security including an insight into the security research activities being undertaken by the MWR team. You will find updates from the current research projects as well as the white papers, tools and advisories that have been published. You should also find news articles and other items of interest about the latest happenings in the IT security industry. So whether your interest is the latest developments with respect to security testing or the research being conducted into a specific technology, there should be something within MWR Labs of interest.
Recent Advisories
Jun 04, 2009
IBM WebSphere MQ Remote Buffer Overflow
Apr 07, 2009
Retain Resource Server Remote Code Execution
Apr 06, 2009
WebEx Remote Support Application Vulnerability
Jan 16, 2009
Sophos RMS / TAO Component Denial of Service
/var/log/messages
Jun 04, 2009
EuSecWest 2009 Run Down
Mar 13, 2009
Have you got bad timing?
Nov 15, 2008
Presentation: DeepSec 2008 - Behind Enemy Lines: Administrative Web Application Attacks
Sep 15, 2008
Stockholm Sec-T Conference Roundup
Recent Publications
May 07, 2009
HashCookies - A Simple Recipe
Nov 15, 2008
Presentation: DeepSec 2008 - Behind Enemy Lines: Administrative Web Application Attacks
Aug 12, 2008
Presentation: DefCon16 - Virtually Hacking
Jul 31, 2008
White Paper: Behind Enemy Lines: Administrative Application Attacks
Feature Key Project
Title: Behind Enemy Lines
Researcher: Rafael Dominguez Vega
Last Updated: Nov 15, 2008
This project research discusses the security implications of administrative web applications.
The use of alternative protocols (such as DHCP and 802.11) to perform web based attacks. The different methods available for exploiting these issues in practice, and details how tools can be built to test and exploit them.
RSS Master Feed:
Full Text
Titles Only
Look for the feed icon for individual feeds of different parts of the site.