The ISO for the kit can be downloaded here:
http://www.novell.com/connectionmagazine/laurachappell.html
dD loves Laura...
Monday, 31 March 2008
PS3 users watch your wallets...
It looks like some PS3 PLAYSTATION®Store users have had their details compromised. Judging by the number of forum posts to be found by googling a few people have been affected:
http://uk.playstation.com/home/news/articles/detail/item98438/Notice-to-PLAYSTATION%C2%AENetwork-Users/
http://uk.playstation.com/home/news/articles/detail/item98438/Notice-to-PLAYSTATION%C2%AENetwork-Users/
Get tickets for Euro 2008, get your machine hacked...
The web site euroticketshop.com contains code that will download a trojan to fans wanting to purchase tickets for euro 2008:
http://www.sophos.com/security/blog/2008/03/1226.html
http://www.sophos.com/security/blog/2008/03/1226.html
Apple getting worse at patching
Researchers presenting at Blackhat Amssterdam showed that vendors' response to security vulnerabilities indicate that MS is improving whilst Apple is steadily getting worse:
http://www.techzoom.net/papers/blackhat_0day_patch_2008.pdf
http://www.techzoom.net/papers/blackhat_0day_patch_2008.pdf
Thursday, 20 March 2008
SIW
dD just cam accross this fantastic tool from Gabriel Topala:
http://www.gtopala.com/
To quote the web site:
"SIW is an advanced System Information for Windows tool that gathers detailed information about your system properties and settings and displays it in an extremely comprehensible manner. SIW can create a report file (CSV, HTML, TXT or XML), and is able to run in batch mode (for Asset Inventory Tracking, Computer (Software and Hardware) Inventory, PC Audit, Software Audit, Software License Compliance Management)."
There is an installer and also a stand alone executable.
There is also functionality similar to SnadBoy (the password revealer) to reveal any password areas. Just click on the Eureka! button. You can change the machine's MAC address, scan the network 'hood, ....
This one is going straight into dD's toolkit. It beats the pants of msinfo in gathering data from a Windows box!
dD
http://www.gtopala.com/
To quote the web site:
"SIW is an advanced System Information for Windows tool that gathers detailed information about your system properties and settings and displays it in an extremely comprehensible manner. SIW can create a report file (CSV, HTML, TXT or XML), and is able to run in batch mode (for Asset Inventory Tracking, Computer (Software and Hardware) Inventory, PC Audit, Software Audit, Software License Compliance Management)."
There is an installer and also a stand alone executable.
There is also functionality similar to SnadBoy (the password revealer) to reveal any password areas. Just click on the Eureka! button. You can change the machine's MAC address, scan the network 'hood, ....
This one is going straight into dD's toolkit. It beats the pants of msinfo in gathering data from a Windows box!
dD
Tuesday, 18 March 2008
Hacking smart cards on Vista
Rather than focussing on the chip , Dan Griffin attacks Vista middleware instead:
http://www.darkreading.com/document.asp?doc_id=148438
Respect to IC for this one again.
dD
http://www.darkreading.com/document.asp?doc_id=148438
Respect to IC for this one again.
dD
my kind of captcha
if only all all captchas were this interesting! It works well though and I wonder if it has any merit. It still boils down to multiple choice.
http://www.hotcaptcha.com/
dD
http://www.hotcaptcha.com/
dD
Monday, 17 March 2008
Goolag scanner from cDc
Scanner / auditing Windows application to look for web apps vulnerabilities using Johnny "I hack stuff".
Download it at:
http://goolag.org/download.html
More information available at:
http://www.cultdeadcow.com/cms/main.php3
dD
Download it at:
http://goolag.org/download.html
More information available at:
http://www.cultdeadcow.com/cms/main.php3
dD
Secure Mashups from IBM
Shaping the future of secure Ajax mashups:
http://www-03.ibm.com/press/us/en/pressrelease/23676.wss
SMash keeps the code and data from each mashup source separated, and shares the data using a secured communication channel.
http://www-03.ibm.com/press/us/en/pressrelease/23676.wss
SMash keeps the code and data from each mashup source separated, and shares the data using a secured communication channel.
Friday, 14 March 2008
SNMP Walking
Really interesting experiment from the GNUCitizen folks: 2.5 million random IP addresses were scanned via SNMP, 5320 IP addresses responded including: Windows 2000 Servers returning a list of usernames, BT Voyager router leaking ISP credentials and password, etc...
http://www.gnucitizen.org/blog/exploring-the-unknown-scanning-the-internet-via-snmp/
http://www.gnucitizen.org/blog/exploring-the-unknown-scanning-the-internet-via-snmp/
Wednesday, 12 March 2008
Microsoft Security Vulnerability Research and Defense blog
dD just came accross this blog from MS which seeks to provide more information about security vulnerabilities and be more open:
http://blogs.technet.com/swi/default.aspx
It is mostly contributed to by member of the Secure Windows Initiative team.
dD
http://blogs.technet.com/swi/default.aspx
It is mostly contributed to by member of the Secure Windows Initiative team.
dD
Monday, 10 March 2008
USB Hacksaw
Useful to have in one's toolkit, especially for those PCs with Autorun on by default, but wait that's quite a few of them :-) Automatically infect Windows boxes, retrieves documents from USB drives plugged into the infected box and securely transmit them to an mail account.
http://wiki.hak5.org/wiki/USB_Hacksaw
There is a demo available.
dD
http://wiki.hak5.org/wiki/USB_Hacksaw
There is a demo available.
dD
Sorry we lost your tax return, could you resubmit...
730,000 poor dutch citizens will have to resubmit their tax return after a "glitch" deleted them. Sorry there was no backup either....
http://www.theregister.co.uk/2008/02/29/sorry_we_lost_your_tax_return/print.html
dD
http://www.theregister.co.uk/2008/02/29/sorry_we_lost_your_tax_return/print.html
dD
Friday, 7 March 2008
Yankee Group 2007-2008 Operating System Reliability Survey
The report itself seems difficult to find, but the article from Mark Joseph Edwards makes for interesting reading. Windows is bottom of the pile...
What has security got to do with reliability? Read on:
http://www.windowsitpro.com/mobile/Article.cfm?ArticleID=98475
What has security got to do with reliability? Read on:
http://www.windowsitpro.com/mobile/Article.cfm?ArticleID=98475
Wednesday, 5 March 2008
Hacking Windows XP using firewire
Amdam Boileau first demonstrated this two years ago, but decided to release the tool and code.
http://www.stuff.co.nz/4425376a28.html
Adam Boileau's site is below:
http://www.storm.net.nz/projects/16
dD says: respect to IC for bringing this one to his attention.
http://www.stuff.co.nz/4425376a28.html
Adam Boileau's site is below:
http://www.storm.net.nz/projects/16
dD says: respect to IC for bringing this one to his attention.
Tuesday, 4 March 2008
Windows Mobile Trojan
An interesting report about a new trojan. Mobile targeted malware has been spoken of for a while now. We have even seen some proof of concepts; but nothing too worrying, so far as these devices have not been as targeted as their desktop cousin:
http://www.us-cert.gov/current/index.html#microsoft_wince_trojan
There are not too many details above, but it appears the trojan is packed with games and even Google Maps. More info at:
http://www.theunwired.net/?item=alert-wince-infojack-sends-unauthorized-information-and-leaves-device-vulnerable
http://www.us-cert.gov/current/index.html#microsoft_wince_trojan
There are not too many details above, but it appears the trojan is packed with games and even Google Maps. More info at:
http://www.theunwired.net/?item=alert-wince-infojack-sends-unauthorized-information-and-leaves-device-vulnerable
Monday, 3 March 2008
'coldboot' - guidance for your users from SANS
Guidance:
http://isc.sans.org/diary.html?storyid=4043
Vendor reactions to the research paper are here:
http://isc.sans.org/diary.html?storyid=4024
http://isc.sans.org/diary.html?storyid=4043
Vendor reactions to the research paper are here:
http://isc.sans.org/diary.html?storyid=4024
YouTube hijacking by Pakistan Telecom (AS17557)
An interesting account of Pakistan Telecom BGP route advertisement for YouTube's 208.65.153.0/24:
http://www.ripe.net/news/study-youtube-hijacking.html
There is a high-res mp4 video of the event.
dD
http://www.ripe.net/news/study-youtube-hijacking.html
There is a high-res mp4 video of the event.
dD
GNU Citizen projects
Hi All,
Just had a chance to start trawling through GNUCitizens project list and the are some really interesting ones here.
For a start the Massive Enumeration Toolset sounds really cool.
dD
Just had a chance to start trawling through GNUCitizens project list and the are some really interesting ones here.
For a start the Massive Enumeration Toolset sounds really cool.
dD
social engineering
trawling through a back log of RSS feeds, this interesting little nuget was found on gnucitizen about a side attack for social engineering. Using a pki database you can query for email addresses tied to certain keys. the author, pdp, has some demo code up but it appears to not be working. However it is a really neat idea.
http://www.gnucitizen.org/projects/pki-book/
http://www.gnucitizen.org/projects/pki-book/
Subscribe to:
Posts (Atom)