Information Security / Kukuruku / Technology Hub

Why we need novel authentication schemes?

Written by Cossack Labs

Revealing security holes in 5 main methods of authentication Introduction: A Word To Pass Passwords are ultimate keepers of...

Building secure end-to-end webchat with Themis

Written by Cossack Labs

Intro While developing components of our products, we love to explore use cases and usability through creating real-world test...

Introducing Themis

Written by Cossack Labs

What is Themis? Themis is a high-level cryptographic services library: a library providing easy to use, highly abstracted set...

Releasing Themis into public: usability testing

Written by Cossack Labs

Experiment: developers with no Themis experience building an application with use of it in 6 hours. Being ready to...

The Role of WebRTC Technology In Online Security

Written by Jane

WebRTC technology is rather new (spearheaded by Google in 2012 through the World Wide Web Consortium). It is a free project that provides browsers with Real-Time Communications. The technology is now widely used in live help customer support solutions, webinar platforms, chat rooms for dating,...

Top 5 Anonymous E-mail Providers

Written by Info_sec

In the recent years we hear more and more about on-line security and privacy. People wonder how to be...

Tor: Illegal Weapons

Written by uuii

A few years ago, when I was reading some popular weapons forum, I thought of how much a gun...

Backdoor in a Public RSA Key

Written by Scratch

Hello, %username%! When I saw how it works, say that I was shocked is to say nothing. It's a...

Hacked. A Short Story.

Written by kay

It all started when I was asked (as a freelancer) to configure exim4 , so that newsletters would not...

Cell Phones and the NSA Mass Surveillance. The Way it Works.

Written by PTSecurity

During the last two years, you could often see Edward Snowden’s name in the news about Information Security. Thanks...

Application Porno or the Way to Find Secrets in Mobile Applications

Written by Alexey Troshichev

I have recently read an interesting article about a team of researchers that downloaded and parsed the Android Playmarket....

How to Analyze Distributed Denial-of-Service (DDos) Attack

Written by Kukuruku Hub

What is DDoS Attack? As per Wikipedia, denial-of-service ( DoS ) or distributed denial-of-service (DDoS) attack is an attempt...

How to DDos Someone with Facebook Notes

Written by ValdikSS

A month and a half ago chr13 discovered how to DDoS someone with the help of Google Spreadsheet, and now he applied such a method to Facebook Notes. And it worked! Operating procedure is absolutely the same as in Google Spreadsheet: Create a list with «unique» «photos»:

LibreSSL: clean version of OpenSSL (OpenBSD project)

Written by Kukuruku Hub

Participants of the OpenBSD project, that have developed the system of the same name and also different tools such as...

OpenSSL Heartbleed Vulnerability Guide

Written by Vanav

What can be stolen by attacker Private key of the TLS server, private key of the TLS client (if the client is vulnerable), cookies, logins, passwords and any other data that are shared between the server and his clients. And you don’t need to monitor the communication path, you just can...