_
News:
Bookmark Page
.
Bookmark Page
Welcome
Zoom in to www.techzoom.net, the home of
technical security information, research, and tools.
This site was created back in 2003 to act as the home of the research, tools, and publications by Stefan Frei.
Security research and analysis is my passion and profession.
Inspired by the problems surfaced during security assessment engagements and I wrote many tools, some of which I make available here as online network security tools.
Results of my research of the vulnerability ecosystem, presented at BlackHat or academic conferences, are listed under publications.
Recent Publication
- Microsoft vs. Apple: Who patches 0-days faster?
presented at BlackHat Europe 2008.
Abstract: We introduce the 0-day patch rate as a new metric to measure and compare the performance of the vulnerability handling and patch development processes of major software vendors. We use this metric to analyze Microsoft and Apple.
- E-Mail Backscatter Attacks
Bounces are messages, officially called non-delivery reports (NDR) or delivery status notifications (DSN), that are generated by a mail server to report on the delivery status of an email message. Problems arise with bounces if they are sent by a mail server to a non-local recipient. If a message did not originate locally, then a mail server cannot know for sure if the address it is sending the bounce to is forged or not. This quickly leads to unsolicited backscatter (or more rarely outscatter), sent to sites that never originated the email. Back in 2004 we published a whitepaper that described and measured the abuse potential of backscatter scams.
Content Overview
- Research and Publications
- Tools
Find here a lot of online-tools to lookup or calculate all kind of stuff. All you need is your browser to make them work. - Security Radar
My Security Radar consolidates some Internet status and security information under a common roof.