Ahh..netcat..how useful you are to me! If you don’t use netcat for pen testing you absolutly have to. Good article below on how you can use netcat. Some examples: * Outbound or inbound connections, TCP or UDP, to or from any ports * Full DNS forward/reverse checking, with appropriate warnings * Ability to use any […]
Netcat – The TCP/IP Swiss Army Knife Read More »
I remember awhile back reading this article about how a pen testing company came up with a a really neat way to social engineer the employees of a company. How? Place USB thumb drives at strategic locations (like the main entrance) and see if employees plug them in and open up applications or pictures contained
Social Engineering, the USB Way Read More »
This is a nice suprise from Microsoft! The patch to fix an exploit..causes a crash the is able to be exploited! (say that fifty times in a row) What to do? – Windows XP: Make sure you are on XP Service Pack 2. SP2 is not vulnerable. Or, disable HTTP1.1 functionality. – Windows 2000 IE
MS06-042 Related Internet Explorer ‘Crash’ is Exploitable Read More »
Very good article from the NY Times today about wireless security in airports and public hotspots. With an article in the “business” section of the NY Times, it goes to show that wireless security is becoming more of an issue. Some key points from the article: – Educate your employees on how small of a
Web Surfing in Public Places Is a Way to Court Trouble – New York Times Read More »
A few months ago I heard on the “Security Now!” podcast that there was a really good open-source encryption application that is so good that it is literally scary. It is so good, and so well done that you can use it for “plausible deniability“. In TrueCrypt, this provides you with (from the TrueCrypt website):
TrueCrypt – Free Open-Source On-The-Fly Disk Encryption Software Read More »
So the truth comes out…here is a great quote from the article: “Despite SecureWorks being quoted saying the Mac is threatened by the exploit demonstrated at Black Hat, they have provided no evidence that in fact it is,” Apple Director of Mac PR, Lynn Fox, told Macworld. “To the contrary, the SecureWorks demonstration used a
MacBook Wi-Fi hack didn’t use Apple drivers Read More »
So Immunity is about to release a wireless handheld called “SILICA” that includes hundreds of exploits to perform automated pen testing. If you are not aware Immunity sells a product called “Canvas” which is in direct competition with “Core Impact” from Core Security Technologies. Basically, both these companies offer products very similar to the Metasploit
‘Pen’ Testing in the Palm of Your Hand Read More »
LURHQ once again has done a very good analysis of how the latest Mocbot (which exploits the MS06-040 vulnerability) works in detail. It also is a good overview on how bots, botnets, and botherders’s control thousands of Zombie machines to do thier bidding. Also shows you how security researchers spy on the botherders to learn
Mocbot Spam Analysis Read More »
Interesting article on Biometric polygraph for airport security. This works by detecting emotional responses to a series of questions. If the person was nervous or worried the system could determine that. In tests it has flagged 85% “mock” terrorists and 8% of innocent passengers! 8% is a large amount…. So the question is..what if you
Biometric polygraph next for airport security? Read More »
LURHQ has relased a very good analysis of the MS06-040 IRC Bot which started exploiting vulnerable systems this weekend. You can view the analysis at the LURHQ website. SANS also has a very good article on some steps to take to block or detect this on your network. Note the following: – Lookout for laptops
Mocbot/MS06-040 IRC Bot Analysis Read More »
