Monday 31 March 2008

Laura Lab Kit v9.0 released

The ISO for the kit can be downloaded here:
http://www.novell.com/connectionmagazine/laurachappell.html
dD loves Laura...

PS3 users watch your wallets...

It looks like some PS3 PLAYSTATION®Store users have had their details compromised. Judging by the number of forum posts to be found by googling a few people have been affected:
http://uk.playstation.com/home/news/articles/detail/item98438/Notice-to-PLAYSTATION%C2%AENetwork-Users/

Get tickets for Euro 2008, get your machine hacked...

The web site euroticketshop.com contains code that will download a trojan to fans wanting to purchase tickets for euro 2008:
http://www.sophos.com/security/blog/2008/03/1226.html

Apple getting worse at patching

Researchers presenting at Blackhat Amssterdam showed that vendors' response to security vulnerabilities indicate that MS is improving whilst Apple is steadily getting worse:
http://www.techzoom.net/papers/blackhat_0day_patch_2008.pdf

Thursday 20 March 2008

SIW

dD just cam accross this fantastic tool from Gabriel Topala:
http://www.gtopala.com/

To quote the web site:
"SIW is an advanced System Information for Windows tool that gathers detailed information about your system properties and settings and displays it in an extremely comprehensible manner. SIW can create a report file (CSV, HTML, TXT or XML), and is able to run in batch mode (for Asset Inventory Tracking, Computer (Software and Hardware) Inventory, PC Audit, Software Audit, Software License Compliance Management)."

There is an installer and also a stand alone executable.
There is also functionality similar to SnadBoy (the password revealer) to reveal any password areas. Just click on the Eureka! button. You can change the machine's MAC address, scan the network 'hood, ....

This one is going straight into dD's toolkit. It beats the pants of msinfo in gathering data from a Windows box!

dD

Tuesday 18 March 2008

Hacking smart cards on Vista

Rather than focussing on the chip , Dan Griffin attacks Vista middleware instead:
http://www.darkreading.com/document.asp?doc_id=148438

Respect to IC for this one again.
dD

my kind of captcha

if only all all captchas were this interesting! It works well though and I wonder if it has any merit. It still boils down to multiple choice.

http://www.hotcaptcha.com/

dD

Monday 17 March 2008

TSA Gangstaz

Airport security gangsta rap:
http://www.youtube.com/watch?v=z7AWw7t5zj0

Goolag scanner from cDc

Scanner / auditing Windows application to look for web apps vulnerabilities using Johnny "I hack stuff".
Download it at:
http://goolag.org/download.html

More information available at:
http://www.cultdeadcow.com/cms/main.php3

dD

Secure Mashups from IBM

Shaping the future of secure Ajax mashups:
http://www-03.ibm.com/press/us/en/pressrelease/23676.wss

SMash keeps the code and data from each mashup source separated, and shares the data using a secured communication channel.

Friday 14 March 2008

SNMP Walking

Really interesting experiment from the GNUCitizen folks: 2.5 million random IP addresses were scanned via SNMP, 5320 IP addresses responded including: Windows 2000 Servers returning a list of usernames, BT Voyager router leaking ISP credentials and password, etc...
http://www.gnucitizen.org/blog/exploring-the-unknown-scanning-the-internet-via-snmp/

Wednesday 12 March 2008

Microsoft Security Vulnerability Research and Defense blog

dD just came accross this blog from MS which seeks to provide more information about security vulnerabilities and be more open:
http://blogs.technet.com/swi/default.aspx

It is mostly contributed to by member of the Secure Windows Initiative team.
dD

Monday 10 March 2008

USB Hacksaw

Useful to have in one's toolkit, especially for those PCs with Autorun on by default, but wait that's quite a few of them :-) Automatically infect Windows boxes, retrieves documents from USB drives plugged into the infected box and securely transmit them to an mail account.

http://wiki.hak5.org/wiki/USB_Hacksaw

There is a demo available.

dD

Sorry we lost your tax return, could you resubmit...

730,000 poor dutch citizens will have to resubmit their tax return after a "glitch" deleted them. Sorry there was no backup either....

http://www.theregister.co.uk/2008/02/29/sorry_we_lost_your_tax_return/print.html

dD

Friday 7 March 2008

Yankee Group 2007-2008 Operating System Reliability Survey

The report itself seems difficult to find, but the article from Mark Joseph Edwards makes for interesting reading. Windows is bottom of the pile...

What has security got to do with reliability? Read on:
http://www.windowsitpro.com/mobile/Article.cfm?ArticleID=98475

Wednesday 5 March 2008

Hacking Windows XP using firewire

Amdam Boileau first demonstrated this two years ago, but decided to release the tool and code.
http://www.stuff.co.nz/4425376a28.html

Adam Boileau's site is below:
http://www.storm.net.nz/projects/16

dD says: respect to IC for bringing this one to his attention.

Tuesday 4 March 2008

Windows Mobile Trojan

An interesting report about a new trojan. Mobile targeted malware has been spoken of for a while now. We have even seen some proof of concepts; but nothing too worrying, so far as these devices have not been as targeted as their desktop cousin:
http://www.us-cert.gov/current/index.html#microsoft_wince_trojan

There are not too many details above, but it appears the trojan is packed with games and even Google Maps. More info at:
http://www.theunwired.net/?item=alert-wince-infojack-sends-unauthorized-information-and-leaves-device-vulnerable

Monday 3 March 2008

'coldboot' - guidance for your users from SANS

Guidance:
http://isc.sans.org/diary.html?storyid=4043

Vendor reactions to the research paper are here:
http://isc.sans.org/diary.html?storyid=4024

SQL Ninja new version

Just come accross a new-ish version of SQL Ninja at:
http://sqlninja.sourceforge.net/
dD

YouTube hijacking by Pakistan Telecom (AS17557)

An interesting account of Pakistan Telecom BGP route advertisement for YouTube's 208.65.153.0/24:
http://www.ripe.net/news/study-youtube-hijacking.html
There is a high-res mp4 video of the event.
dD

GNU Citizen projects

Hi All,
Just had a chance to start trawling through GNUCitizens project list and the are some really interesting ones here.
For a start the Massive Enumeration Toolset sounds really cool.

dD

social engineering

trawling through a back log of RSS feeds, this interesting little nuget was found on gnucitizen about a side attack for social engineering. Using a pki database you can query for email addresses tied to certain keys. the author, pdp, has some demo code up but it appears to not be working. However it is a really neat idea.

http://www.gnucitizen.org/projects/pki-book/