Author Topic: Tests and other Media topics  (Read 579472 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Tests and other Media topics
« Reply #45 on: September 01, 2013, 10:08:33 PM »
Try the final version of ABP for IE: Adblock Plus for Internet Explorer page:

https://adblockplus.org/nl/internet-explorer
https://adblockplus.org/en/internet-explorer

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Tests and other Media topics
« Reply #46 on: September 04, 2013, 12:02:26 PM »
Test your site against clickjacking.
One way to do this is test at ASafaWeb Scanner: https://asafaweb.com/Scan?Url=www etc.
Another way to pentest on your own website is  make a html page with this code:
Code: [Select]
<html>
  <head>
    <title>Clickjack test page</title>
  </head>
  <body>
    <p>You’ve been clickjacked!</p>
    <iframe sandbox="allow-scripts allow-forms" src="http://yoursite :8080" style="width:100%;height:90%"></iframe>
  </body>
</html>
  Code credits go to ITSecurity's lakshmi Prudhvi  * yoursite = main url of site  e.g. www dot mysite dot com
Whenever vulnerable and opened in the browser you see: "You have been clickjacked!"

polonus
« Last Edit: September 04, 2013, 12:05:04 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Tests and other Media topics
« Reply #47 on: September 04, 2013, 11:53:04 PM »
Public Malware Database: http://owl.nchc.org.tw/km/

pol
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Tests and other Media topics
« Reply #48 on: September 08, 2013, 10:40:47 PM »
Does a https site use PFS?
Check with the Netcraft extension for Google Chrome and firefox.
Read: http://toolbar.netcraft.com/help/faq/index.html#pfs
PFS makes https more secure against surveillance.
even if the private key of the website has been cracked.
with PFS every session has to be cracked seperately
for instance in national security agency surveillance.

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Tests and other Media topics
« Reply #49 on: September 13, 2013, 09:13:34 PM »
Free malware scan as a service from this University on Saturday 9-14-2013 ->
http://www.ky3.com/news/ky3-free-computer-virus-scan-saturday-at-sbu-20130912,0,1341868.story
Free computer virus scan Saturday at SBU 'Disinfection Day'

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Tests and other Media topics
« Reply #50 on: September 21, 2013, 12:48:53 PM »
Test that https page for insecure content here: http://www.whynopadlock.com/check.php
Another check I did with this extension in Google Chrome: RECX HTTP Header and Cookie Security Analyzer
from Recx Ltd - www.recx.co.uk
results:
Analysis results for:

https://www.security.nl/

HTTP security headers
Name   Value   Setting secure   Secure connection
x-frame-options   deny   
OK - follows best practice
OK - follows best practice
cache-control   no-store, no-cache, must-revalidate, post-check=0, pre-check=0   
OK - follows best practice
OK - follows best practice
strict-transport-security   max-age=31536000   
OK - follows best practice
OK - follows best practice
x-content-type-options   N/A   
Investigate - does not follow best practice
OK - follows best practice
x-xss-protection   N/A   
Investigate - does not follow best practice
OK - follows best practice
x-content-security-policy   N/A   
Investigate - does not follow best practice
OK - follows best practice
access-control-allow-origin   N/A   
OK - follows best practice
OK - follows best practice
Show all HTTP headers.
Cookie information (1 cookies)
Name   Domain   Secure attribute   HTTP only attribute   Host only attribute   Secure connection
sessionid   .www.security.nl   


Information - no risk or does not apply
OK - follows best practice
Show extended cookie properties.
Page meta security headers
Name   Value   Setting secure   Secure connection

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48524
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Tests and other Media topics
« Reply #51 on: September 21, 2013, 01:54:51 PM »
Nice addition. Thanks :)
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Tests and other Media topics
« Reply #52 on: September 22, 2013, 11:19:55 PM »
Wanna know where redirects go?

Good online check: http://www.internetofficer.com/seo-tool/redirect-check/
For the site here: Response


Checked link: http://forum.avast.com/index.php

Type of link: direct link

Another example -
Response


Checked link: http://www.w3.org/Protocols/rfc2616/rfc2616-s
ec10.html.

Type of redirect: 300 Multiple Choices  *

Redirected to: http://www.w3.org/Protocols/rfc2616/rfc2616-s
ec10.html.

This is explained here: http://www.checkupdown.com/status/E300.html  (info link from Pitdale)

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Tests and other Media topics
« Reply #53 on: September 29, 2013, 12:29:34 PM »
Do we need a hosting web reputation system?

There are various parties involved  to work towards a more secure Internet.
It is not only the (avast!) user with his, her or its webclient that has to have security at mind and work towards a more secure Internet.
It is also the website owner, webmaster and the website software coder that has to be (more) security aware.
In the virus and worms we cover all these aspects.

But it also goes higher up.
I see loads of website scanners and security analyzers exist. But what about the web hosters?
Shouldn't we put them under some form of scrutiny also?

There certainly is abusive and malicious website and IP hosting, where (criminal) money interests come first and security last.
Sitevet is a scanner to give an idea about the Autonomous System health,
also on Clean MX we can get these details and there are other (re)sources.

In a time where we see it has now more or less been confirmed (by Mrs. Feinstein's utterances)
that grands scale telco surveillance "snarfing" is being performed and the integrity of the Interwebs are at stake,
it is of the utmost importance to give security a higher priority as it had previously and as it has now.

When  even European AMX-IX is gonna have a US base now as has been decided by votes, we know this is not idle talk.
Government and other commercial snarfing will go on and only will be limited by what they see as  technically impossible.
If hosters and telco's do not work towards more secure infrastructures the situation will only get worse or stay like it is.
Therefore we not only need a website rep system but also a hosting rep system.
Google Safebrowsing is giveing such details,
but I have a hunch general users and website owners/webmasters aren't at all that aware.
I hope I am wrong here!

polonus
« Last Edit: September 29, 2013, 12:32:22 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Tests and other Media topics
« Reply #54 on: October 03, 2013, 11:57:26 AM »
Saw a double.click generated ad on a Romanian scan site
Analyzed it here: http://www.urlanalyser.net/www.mapazdrowia.pl  (adsite Romanian of course)
Analyzer is interesting while it will give resolved mistypes going there.
Analyzing adsite domains with this might be rewarding: http://www.urlanalyser.net/www.mapazdrowia.pl
Normally I do not see these ads because I neatly have them blocked, but interesting to see what doubleclick (google ads) serves up once in a while,

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Tests and other Media topics
« Reply #55 on: October 06, 2013, 04:51:43 PM »
To clarify specific security problems for a given site some SEO scanners certainly assist us (for social sites etc.)
For instanced an online Meta Tag analyzer (when not checked for input/output validation, embedded, should be checked with regular expressions)
we find it here: http://www.submitexpress.com/analyzer/
http://analyzer.metatags.org/  and tools here: http://seotools.scrubtheweb.com/
Read on malicious meta tag: http://blog.unmaskparasites.com/2009/07/23/goscanpark-13-facts-about-malicious-server-wide-meta-redirects/
link article author = Denis Sinegubko
These were also found to be helpful: http://www.internetofficer.com/seo-tool/redirect-check/  (watch out for malicious redirects)
Read instruction s here: http://www.stopthehacker.com/2012/11/05/how-to-discover-and-remove-malicious-redirects-in-the-htaccess-file/

http://www.seoimage.com/seo-tools/check-server-headers.php (for this I use HTTP Spy extension in Google Chrome)
combine this with a scan via urlquery dot net...see an example here: http://urlquery.net/report.php?id=6317707
go down the report page to http transactions

Enjoy and put these to good use, my friends,

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Tests and other Media topics
« Reply #56 on: October 09, 2013, 11:35:13 PM »
See the malicious DNS world activity. This is growing to be a real malware threat, my good forum friends, see: http://exposure.iseclab.org/
Click the drop down menu on search and search for domains and IPs into this.
Exposure is also part of this metascanner: http://www.urlvoid.com/scan

Enjoy this scan, all you folks that are into pres-scanning links,
and also try this metascanner, a real good one, as I may say so:
http://scanurl.net/?u= 
This is a nice multiscanner to check out suspicious URLs and uri's,

Stay safe through avast! and keep the avast! Shields up,

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Tests and other Media topics
« Reply #57 on: October 11, 2013, 12:10:27 AM »
Another nice link checker also with advice on broken links etc:
An example http://www.ranks.nl/cgi-bin/ranksnl/tools/checklink.cgi?uri=www.otrforum.com
and an additional one here: http://www.brokenlinkcheck.com/broken-links.php#status
It also alerts for (conditional) redirects and following is to give in the redirect uri.

Enjoy whenever in need of checking...

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Tests and other Media topics
« Reply #58 on: October 11, 2013, 12:16:41 PM »
Price of exploitkit went up with 2200% for non-Russians after exit of Blackhole vendor  ->: http://malware.dontneedcoffee.com/2013/10/paunch-arrestationthe-end-of-era.html

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Tests and other Media topics
« Reply #59 on: October 17, 2013, 03:47:53 PM »
Again I stumbled upon an awesome test site...
Go here: http://check-host.net/check-dns?host=
For instance see DNS check for the forum: http://check-host.net/check-dns?host=forum.avast.com
What about the different result from the Vienna and Ukraine servers?
Another one: http://www.watchmouse.com/en/checkit.php
http://www.watchmouse.com/en/dnstool.php?vhost=_&vtt=1382018577&varghost=http%3A%2F%2Fforum.avast.com&vaction=trace&trace=analyse
and this: http://www.dnssy.com/report.php?q=

Enjoy, my good forum friends,

pol
« Last Edit: October 17, 2013, 11:01:35 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!