This is a brief whitepaper discussing how to perform forensics on iOS 5 on the iPhone.
>> CATEGORY: Apple
WOL-E is a suite of tools for the Wake on LAN feature of network attached computers, this is now enabled by default on many Apple computers. These tools include bruteforcing the MAC address to wake up clients, sniffing WOL attempts and passwords, scanning for Apple devices and more.
Zero Day Initiative Advisory 12-05 – This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the application decodes video samples encoded with the RLE codec.
Zero Day Initiative Advisory 12-04 – This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime.
Secunia Security Advisory – A weakness has been discovered in Apple Safari, which can be exploited by malicious people to disclose sensitive information.
Zero Day Initiative Advisory 11-340 – This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the application parses font names embedded within an atom.
Whitepaper called Hacking Dispositivos iOS.
Ostinato is an open-source, cross-platform packet/traffic generator and analyzer with a friendly GUI.
RT Wikileak's Assange warns of Apple iTunes spy portal Computerworld (blog) Wikileaks founder Julian Assange says there's “flaw” in iTunes. He claims this flaw is used by those shady security/surveillance firms to take over people's computers
Vega is a GUI-based, multi-platform, free and open source web security scanner that can be used to find instances of SQL injection, cross-site scripting (XSS), and other vulnerabilities in your web applications. Vega also includes an intercepting proxy for interactive web application debugging. Vega attack modules are written in Javascript, users can easily modify them or write their own