Category Archives: Google

MITM Gmail SMTP STARTTLS Traffic in LAB machines

During auditing we may face with the challenge of MITM Gmail SMTP STARTTLS traffic to retrieve the email content/credentials. Most of the .Net programs does NOT allow connecting to a Secure server using a self-signed certificates. I used starttls-mitm (https://github.com/ipopov/starttls-mitm) … Continue reading

Posted in .Net, Google, Malware Analyzer, Tools, Windows | Tagged , , , | 1 Comment

Whitehat Security Labs ‘Aviator’ for windows in ten steps

Recently Whitehat Security Labs released a beta version of their own browser ‘Aviator’ based on the chromium code base. They released it only for the Mac OS version. Here is how we can have a similar setup in windows or … Continue reading

Posted in browser, Chrome, Cr-48, Google | Tagged , , , , , , , | Leave a comment

Google Chrome/ChromeOS bug – 189250

http://googlechromereleases.blogspot.in/2013/04/chrome-os-stable-channel-update.html    [189250] High CVE-2013-0927: Unsafe config option loading in Pango. Credit to Pinkie Pie.    http://www.scip.ch/en/?vuldb.8422 The changes are in ChromeOS’s x11-libs/Pango library. You can read the vulnerable code in this location:    https://git.gnome.org/browse/pango/tree/pango/pango-utils.c static voidread_config (void){  if (!config_hash)    {      char *filename;      … Continue reading

Posted in Chrome, chrome OS, Google | Tagged , , , , | Leave a comment

Google Chrome/ChromeOS Bug (14508)

https://code.google.com/p/chromium/issues/detail?id=14508 http://src.chromium.org/viewvc/chrome/trunk/src/net/http/http_chunked_decoder.cc?r1=18687&r2=18686  &nbsp; Root Cause: Signedness error.    commit 9d65ad87c64ec57473b42ed290472ddec99e55c6Author: abarth@chromium.org <abarth@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>Date:   Thu Jun 18 04:58:34 2009 +0000     Improve chunked encoding parsing.        R=abarth    BUG=14508    TEST=HttpChunkedDecoderTest.ExcessiveChunkLen        Patch contributed by Chris Evans.        git-svn-id: svn://svn.chromium.org/chrome/trunk/src@18687 0039d316-1c4b-4281-b951-d872f2087c98 $ git rev-list –parents -n … Continue reading

Posted in Chrome, chrome OS, Google | Tagged , , | Leave a comment

Google Chrome/ChromeOS Bug (227197/227181/227158)

  http://googlechromereleases.blogspot.com/2013/04/stable-channel-update-for-chrome-os.html  &nbsp; https://code.google.com/p/chromium/issues/detail?id=227197  &nbsp; https://code.google.com/p/chromium/issues/detail?id=227181  &nbsp; https://code.google.com/p/chromium/issues/detail?id=227158  &nbsp; https://code.google.com/p/chromium/issues/detail?id=196456  &nbsp; You can see all the patches in this link.http://git.chromium.org/gitweb/?p=chromiumos/overlays/chromiumos-overlay.git;a=commit;h=9181705680e1f53fd1e895ebe84c1b7f18c5c380 Anyway, let’s search the GIT log for these bug ID’s in the chrome OS commitsand crack each and every bug.    commit 9181705680e1f53fd1e895ebe84c1b7f18c5c380Author: Josh Horwich <jhorwich@chromium.org>Date:   … Continue reading

Posted in Chrome, chrome OS, Google | Tagged , , | Leave a comment