You have probably noticed the blog was down for a couple of weeks, it was due to an ttack on godaddy’s server. afer that attack i decided to move the blog to a more controlled hosting environment with the ability to manage logs and security measures. due to the new security measures taken visitors may experience trouble accessing certain areas or …
ScreenSpy – New Meterpreter Script Review
Yesterday a new Meterpreter script named “ScreenSpy” was added to the Metasploit redmine. The script was written by Roni Bachar, You can read the official release notes on his Blog. This Meterpreter script captures images on remote host desktop at a predefined interval and then displays the images sequence . This emulates a live view of the remote host …
Meterpreter Script – Windows Service Creator
There are several ways to Backdoor a machine that has been compromised, One of them is placing your executable as a windows service. The advantages are that user doesn’t have to log on in order for the service to run, non like placing it in the startup via registry which requires user to log in. …
Installing USB-B2K Telbox On UBUNTU 10.04 64 Bit
I have recently purchased the USB-B2K Telbox Skype phone adapter. I chose it because it supports Linux OS (as seller in eBay mentioned) http://cgi.ebay.com/USB-VOIP-SKYPE-RJ11-Home-Cordless-Phone-Adapter-B2K-/190347547381?pt=LH_DefaultDomain_0&hash=item2c519912f5#ht_3495wt_1139 I ordered my self one unit, it took me some time to figure out how to install it in my Ubuntu 10.04 64 bit system i decided to post the installation and configuration process, hope someone may find it useful Requirements: …
Exploit KB Vulnerable Web App
During my SQL Injection learning journey I needed a vulnerable web application for practice I created a WebApp vulnerable to SQL Injection for my personal use, The result was an extremely vulnerable web site which I could test some SQLi techniques against MySQL. I must confess, I am not a programmer and I have never coded in PHP …
Patching and Compiling Cowpatty UBUNTU 10.04
I was playing around with some wireless attack tools today, Mostly with cuda based tools such as pyrit. I wanted to check my new Core i7 PC and GPU cracking capabilities and speed on my UBUNTU 10.04 64bit OS. Pyrit supports WPA cracking with Cowpatty, At first i decided to do some benchmarking for different …
Metasploit Java Meterpreter Payload
If you haven’t noticed the Metasploit Framework has a JAVA meterpreter payload for some time now It supports all the commands supported by the PHP meterpreter, as of SVN revision 9777, and additionally the ipconfig, route, and screenshot commands. It is not fully implemented into the framework yet and in order to get it up and …
Digital Whisper Magazine issue 11
Wrote an article named : “Buffer Overflows 101” which was published today on the Israeli Security Magazine “Digital Whisper” issue 11. The article is in the Hebrew language and covers the basics of buffer overflows,fuzzing,olly basics,writing a metasploit modules and more… The article has a companion tar.gz file which includes the source code of the vulnerable server (Which was …
Cracking Sofaware Safe@Office UTM (SBOX) Passwords
The Safe@Office UTM is a fully-integrated stateful inspection firewall, intrusion prevention, VPN and antivirus gateway, specifically designed to meet the needs of small businesses of various sizes. You can manage the Safe@Office (SBOX) via a web interface or SSH, This product has several passwords stored in its configuration such as: 1. User passwords 2. VPN …
Tool of the week: unix-privesc-check
Tool description as appears on the author website: Unix-privesc-checker is a script that runs on Unix systems (tested on Solaris 9, HPUX 11, Various Linuxes, FreeBSD 6.2). It tries to find misconfigurations that could allow local unprivilged users to escalate privileges to other users or to access local apps (e.g. databases). It is written as …
Tool of the week: Darkjumper
This tool will try to find every website that host at the same server at your target Then check for every vulnerability of each website that host at the same server Functions: 1. User enumeration(s) guessing based on 4-8 chars trial taken from every site name that host at the same server 2. Scan for …
darkc0de.com Archive
Recently i noticed that darkc0de.com is down darkc0de.com was a security and hacking related website which contained a large archive of python (and other scripting languages) scripts,exploit and tutorials. It was a great resource for learning and getting custom made tools For those of you who didn’t got the chance to download its content I …
BLOG Updates and WordPress fingerprinting tool
I got a request from visitors to be able to get posts via e-mail, Now you can subscribe to your category of intrest and get updates whenever a new post is published. I also decided to start a “pick of the week” or “tool of the week” postings where each week i’ll post tools and …
Client side attacks using evil JAVA applets
About a year ago I stumbled upon a Facebook clone phishing site which contained an evil Java applet, At the time SET wasn’t introduced yet and only few articles disscussing this attack vector were published (Another applet creation process was published by Jabra and described later on the Offensive Security “Metasploit Unleashed” Online course). No source code was released …
How strong is your fu for charity – iVuln Writeup
On June 19th 2010 I attended the Offensive Security “How strong is your fu for charity” challenge , The objectives were to pawn 5 machines in 48 hours time frame. After some enumeration and rumors on the IRC channel it became clear to me that the easiest machine to pawn was the 192.168.x.200 (named iVuln), a …
Recent Comments