Codenomicon Labs - RSS Feed http://www.codenomicon.com/labs/ en-us Codenomicon 1 labs@codenomicon.com (Codenomicon Labs) http://www.codenomicon.com/news/newsletter/archive/2010-11.html The theme of this November newsletter is our core product, the Defensics testing engine. We will go through the new features in the latest 3.11 release, but as there are far too many cool new features to analyze them all in detail, we will concentrate on features that our development team wanted to highlight. We will also mention the recent vulnerabilities frond by the CROSS team on Quagga Routing Software Suite, with one of our best selling router suite bundle. Also check out the great opportunity to use our tools at upcoming conferences! Tue, 2 Nov 2010 12:00:00 +0300 http://www.codenomicon.com/news/newsletter/archive/2010-11.html http://www.codenomicon.com/news/press-releases/2010-10-06.shtml With assistance from Dell, we put our own tools to the test! Several Defensics tools were launched in parallel on high-end hardware, and more than fourty thousand test cases per second was an inspirational result. Check the details from our whitepaper! Wed, 6 Oct 2010 12:00:00 +0300 http://www.codenomicon.com/news/press-releases/2010-10-06.shtml http://www.codenomicon.com/news/newsletter/archive/2010-09.html The first ever Crash Test Party we organized last spring resulted in a number of new security findings. Two OpenLDAP vulnerabilities, discovered by the students attending the test fest, are now fixed. The newsletter also gives pointers to a recent Microsoft bug found with Defensics fuzzers. Also, remember to check out the latest whitepapers and webcasts. Wed, 1 Sep 2010 12:00:00 +0300 http://www.codenomicon.com/news/newsletter/archive/2010-09.html http://www.codenomicon.com/news/newsletter/archive/2010-06.html Besides looking at latest Defensics tools such as the new engine and fuzzers for medical devices, the latest newsletter also features several stories from the CROSS team. Bugs discussed include OpenSSL flaw fixed in March that was easily caught by any old version of our TLS suite, a perfect proof that fuzzers should be in regression testing. Lately CROSS team also found and helped to fix SCTP flaw in Linux Kernel. Finally our CROSS team discusses how you brick-a-phone. Thu, 24 Jun 2010 12:00:00 +0300 http://www.codenomicon.com/news/newsletter/archive/2010-06.html http://www.codenomicon.com/labs/results/ Results from browser fuzzing were added, finally. Browsers are the weakest link in Internet access of all consumers. All attacks against browsers could be successfully launched without any special actions from the user, as long as he could be directed to a malicious site. Full whitepaper is also available. Wed, 7 Apr 2010 12:00:00 +0300 http://www.codenomicon.com/labs/results/ http://www.codenomicon.com/news/news/2009-07-28.shtml Defensics HTTP Client tool breaks Squid! Earlier this year, the CROSS team found issues in Squid using the HTTP Server tool, and this time by looking at the security of handling HTTP responses, the team found a new set of issues. Tue, 28 Jul 2009 12:00:00 +0300 http://www.codenomicon.com/news/news/2009-07-28.shtml http://www.codenomicon.com/news/press-releases/2009-02-24.shtml Codenomicon, Ltd., the leader in protocol robustness and security test solutions, today announced its flagship XML testing product allowing the industry to clearly understand the existing security weaknesses in many open source and commercially deployed products taking advantage of XML technology. Tue, 24 Feb 2009 12:55:00 +0300 http://www.codenomicon.com/news/press-releases/2009-02-24.shtml http://www.codenomicon.com/news/news/2009-02-06.shtml Codenomicon's brave security soldiers have won yet another round in our ongoing battle for making open source software more robust and promoting the effectiveness of Codenomicon testing products in the process. Fri, 6 Feb 2009 12:55:00 +0300 http://www.codenomicon.com/news/news/2009-02-06.shtml http://www.codenomicon.com/labs/devellll Results from the wireless access point tests were added. Wireless access points were seen as one of the highest risk consumer products. Many of the attacks against access points can be successfully launched even when the security features were enabled. Mon, 15 Sep 2008 13:55:00 +0300 http://www.codenomicon.com/devellll/news/20080915