In my previous post I discussed how to Setup a Fake Access Point with Backtrack Linux Although I love Backtrack Linux one of the tools I really miss is Cain & Able, I thought some of you will want to setup a Fake AP when Pentesting on Windows systems as well. So, here it goes… I am using an Alfa …
Setup a Fake Access Point With BackTrack5
Recently I needed to setup a fake access point for a presentation, I fired up my Backtrack5 VM, Connected my Alfa AWUS036H USB adapter and started to configure the Fake AP. There are a lot of Tutorials and Scripts for setting up a Fake AP, The “Gerix” tool also have an option to auto set …
Resolver
I needed a simple tool that can preform a reverse dns lookup for a given IP address or for a range of IP’s in order to find its PTR. Usually I use Linux which has several tools for querying DNS, One of my favourite tools is the “host” command which can be used for this task: root@bt”>root@bt:~# host …
Wophcrack – Ophcrack web interface
Rainbow tables are really useful when cracking password hashes, One disadvantage of these tables is their size which can get up to tens and even hundreds of gigs. I really liked the Offensive security Crackpot online hash cracker and i thought it would be really nice to have a web interface for my rainbow tables which i can access from web …
New home for exploit.co.il
You have probably noticed the blog was down for a couple of weeks, it was due to an ttack on godaddy’s server. afer that attack i decided to move the blog to a more controlled hosting environment with the ability to manage logs and security measures. due to the new security measures taken visitors may experience trouble accessing certain areas or …
ScreenSpy – New Meterpreter Script Review
Yesterday a new Meterpreter script named “ScreenSpy” was added to the Metasploit redmine. The script was written by Roni Bachar, You can read the official release notes on his Blog. This Meterpreter script captures images on remote host desktop at a predefined interval and then displays the images sequence . This emulates a live view of the remote host …
Meterpreter Script – Windows Service Creator
There are several ways to Backdoor a machine that has been compromised, One of them is placing your executable as a windows service. The advantages are that user doesn’t have to log on in order for the service to run, non like placing it in the startup via registry which requires user to log in. …
Installing USB-B2K Telbox On UBUNTU 10.04 64 Bit
I have recently purchased the USB-B2K Telbox Skype phone adapter. I chose it because it supports Linux OS (as seller in eBay mentioned) http://cgi.ebay.com/USB-VOIP-SKYPE-RJ11-Home-Cordless-Phone-Adapter-B2K-/190347547381?pt=LH_DefaultDomain_0&hash=item2c519912f5#ht_3495wt_1139 I ordered my self one unit, it took me some time to figure out how to install it in my Ubuntu 10.04 64 bit system i decided to post the installation and configuration process, hope someone may find it useful Requirements: …
Exploit KB Vulnerable Web App
During my SQL Injection learning journey I needed a vulnerable web application for practice I created a WebApp vulnerable to SQL Injection for my personal use, The result was an extremely vulnerable web site which I could test some SQLi techniques against MySQL. I must confess, I am not a programmer and I have never coded in PHP …
Patching and Compiling Cowpatty UBUNTU 10.04
I was playing around with some wireless attack tools today, Mostly with cuda based tools such as pyrit. I wanted to check my new Core i7 PC and GPU cracking capabilities and speed on my UBUNTU 10.04 64bit OS. Pyrit supports WPA cracking with Cowpatty, At first i decided to do some benchmarking for different …
Metasploit Java Meterpreter Payload
If you haven’t noticed the Metasploit Framework has a JAVA meterpreter payload for some time now It supports all the commands supported by the PHP meterpreter, as of SVN revision 9777, and additionally the ipconfig, route, and screenshot commands. It is not fully implemented into the framework yet and in order to get it up and …
Digital Whisper Magazine issue 11
Wrote an article named : “Buffer Overflows 101” which was published today on the Israeli Security Magazine “Digital Whisper” issue 11. The article is in the Hebrew language and covers the basics of buffer overflows,fuzzing,olly basics,writing a metasploit modules and more… The article has a companion tar.gz file which includes the source code of the vulnerable server (Which was …
Cracking Sofaware Safe@Office UTM (SBOX) Passwords
The Safe@Office UTM is a fully-integrated stateful inspection firewall, intrusion prevention, VPN and antivirus gateway, specifically designed to meet the needs of small businesses of various sizes. You can manage the Safe@Office (SBOX) via a web interface or SSH, This product has several passwords stored in its configuration such as: 1. User passwords 2. VPN …
Tool of the week: unix-privesc-check
Tool description as appears on the author website: Unix-privesc-checker is a script that runs on Unix systems (tested on Solaris 9, HPUX 11, Various Linuxes, FreeBSD 6.2). It tries to find misconfigurations that could allow local unprivilged users to escalate privileges to other users or to access local apps (e.g. databases). It is written as …
Tool of the week: Darkjumper
This tool will try to find every website that host at the same server at your target Then check for every vulnerability of each website that host at the same server Functions: 1. User enumeration(s) guessing based on 4-8 chars trial taken from every site name that host at the same server 2. Scan for …
Recent Comments