Next to do:
1) Think up some ideas for posts
2) Get some members to join up as authors
3) Get some input on the site design
4) Write the about page (Dig up those old memories, perhaps go back through the old Darknet HTML site)
5) Get some incoming links
6) Get some sites to promote the relaunch of Darknet [...]
Hi….
It is a nice idea. I hope we all can put up some stuff, something that we are interested in and something that will get our grey cells working.
Maybe someday …. just maybe…this will evolve into an idea….a killer app!
Darknet is currently undergoing a relaunch, it has been rebuilt from scratch in a new style using a powerful and extensible open source CMS called Wordpress.
If you wish to contribute please contact us for access to the site.
We are looking for people to write articles about anything to do with Hacking, Cracking or Information Security.
Topics [...]
You can find the famous Darknet Links list here:
Hacking and Information Security Links
You can find the tools/guides/hacking tutorials here:
Hacking Tools, Tutorials, Papers Guides and more
How to Secure Windows 2000/Win2k
How to Install Debian Guide/Tutorial
Darknet Hacking/Cracking Trojan & Virus TCP/UDP Port List
All this information will be replaced with new updated versions as we work on the site [...]
With the advent of Web 2.0 and more powerful, user friendly web applications, security and privacy concerns have increased.
Moreso with the new version of Google Desktop coming out, although this is not strictly a web application, they will be storing your data online.
Yes, version 3 adds the ability to “access your documents from anywhere”, or [...]
Nmap (”Network Mapper”) is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts [...]
Sheriff Brian Rahn said the man made coffee, cooked and ate meals, took showers, picked out a change of clothes, watched television and checked his e-mail during the burglaries.
He left behind valuables, including jewelry, firearms and electronic equipment, Rahn said.
He also allegedly stole a car in the town of Wayne in the last of the [...]
BackTrack is the result of the merging of two Innovative Penetration Testing live Linux distributions namely Whax and Auditor.
Combining the best features from both distributions, and paying special attention to small details, this is probably the best version of either distributions to ever come out.
Based on SLAX (Slackware), BackTrack provides user modularity. This means the [...]
By using one of the many mobile phone location tracking services aimed at businesses or concerned parents, and some trickery it is possibly to get almost anyone’s mobile phone position without their agreement. All that is required is their mobile phone number, and carrier.
Over the past year a number sites have popped up offering web [...]
Check it out!
US President George W. Bush visited the NSA headquarters at Fort Meade in January 2006. A wall-sized status screen in the background displays the latest versions of Nmap and some of our other favorite open source tools. Pictures were printed in the February 6, 2006 edition of Newsweek (article) and the Jan 27 [...]
A Spanish hacker who launched a denial of service attack that hobbled the net connections of an estimated three million users has been jailed for two years and fined €1.4m. Santiago Garrido, 26, (AKA Ronnie and Mike25) launched the attack using a computer worm in retaliation for been banned from the popular “Hispano” IRC chat [...]
AnonymousInet has relaunched! A nice clean FREE web based proxy service.
http://www.anonymousinet.com/
Works great for me, it’s fast and free!
It also encodes the URL so stupid simple content filters wont stop it.
Google has offered multiple reasons why it shouldn’t have to comply with a Justice Department subpoena. One is privacy. An excerpt:
If Google is forced to compromise its privacy principles and produce to the Government on such a flimsy request, its search query and URL data, Google will, without a doubt, suffer a loss of trust [...]
As the German IT portal heise online conveys, a new security hole in the Safari webbrowser for Apple’s Mac OS X has been discovered. This security hole is rather severe, as it invokes the execution of shell scripts under certain circumstances.
Once again the Safari option “open ’safe’ files automatically after download†bears the blame. If [...]
Back in September, we posted about Thomas Slattery, an unhappy iTunes user who filed a class action lawsuit against Apple alledging that Apple has a monopoly over the digital music and digital music player market with iTMS and iPods. Back then, the judge dismissed a number of items in Apple’s favor, but didn’t dismiss the [...]
Internet search giant Google Inc.’s controversial expansion into China now faces possible trouble with regulators after a Beijing newspaper said its new Chinese-language platform does not have a license.
The Beijing News reported on Tuesday that Google.cn, the company’s recently launched service that accommodates the China’s censorship demands, “has not obtained the ICP (Internet content provider) [...]
January at a glance: Vicious and Varied
The numbers are indeed concerning: 19 new email-born significant virus attacks, of which a troubling 8 (42%) were graded “low intensity”, 7 (37%) “Medium Intensity” and 4 (21%) were massive attacks – a rare phenomenon for a single month.
One outbreak of specific interest, consisting of 7 variants, illustrates how [...]
Phishing is a difficult enough form of fraud to avoid for most computer users, but when some of the biggest names in the financial industry fail to do their part to detect and eliminate these online scams, consumers often are placed in an untenable situation.
Case in point: A source recently forwarded a link to one [...]
This is just an introductory article about myself, nothing interesting (for the most of you) will be revealed in this article, I re-edited it because it had to meet the EU standards (you know Romania will be part of it on 1st of January 2007).
A long time ago…
…I was a big game addict, computers had [...]
Companies could find themselves put up for public humiliation by the U.S. Federal Trade Commission if they continue to advertise through insidious ad-serving software.
Such a move might help in the battle against adware, FTC Commissioner Jon Leibowitz said Thursday at an event here hosted by the Anti-Spyware Coalition. Adware is software that displays pop-up ads [...]
OWC (Other World Computing) is a great site for buying parts for the mac. Their prices are quite cheap if you compare prices with stores in asia. Two days back (21/2/06) they got their hands on a Macbook Pro, which they received at 10:30pm and managed to take it all apart by [...]
Google Enterprise has reacted to privacy concerns and released Google Desktop 3 Enterprise.
It responds to security concerns allowing full administrator control, letting them use the standard group policy settings to completely disable features, including the controversial Search Across Computers feature which you can read about in our original article.
Google Enterprise’s [...]
SAN JOSE, California — Identity theft and online bank fraud were the unofficial themes of the 2006 RSA Conference, a massive security confab where Bill Gates came to announce the imminent death of the password and vendors filled the exhibition halls with iPod giveaways and promises that their product could stop everything from spam and [...]
Yes that’s right, big brother wants a backdoor in your operating system even MORE of a reason to use Open Source alternatives that we can audit ourselves eh?
There has been talk of such things in the past, US government backdoors in common cryptography algorithms and now talks of backdoors in the most popular OS in [...]
Well it’s not really a backdoor… but we can consider it one…
Some time ago it apeared on many websites (including mine) an article about a backdoor in mIRC… all this backdoor stuff was really nothing more than a mIRC script that by it’s mean made the client to respond at any command received via a [...]
Here’s a series of well written IBM Linux tutorials to help you learn Linux fundamentals and prepare for system administrator certification. The LPI prep tutorials help you prepare for the topics in LPI exam 201 and the topics in LPI exam 202.
You can find more about the certification at the Linux Professional Institute.
I’ve been meaning [...]
The UK government stated:
If Mozilla permit the sale of copied versions of its software, it makes it virtually impossible for us, from a practical point of view, to enforce UK anti-piracy legislation
It seems they really don’t understand the whole open source thing do they? You can’t pirate open source software, you can however sell it [...]
Looking to streamline the collection of malware samples, two of the biggest honeypot projects—mwcollect and nepenthes—have merged operations.
The two projects, which passively trap viruses, spyware and other forms of malicious software by emulating known vulnerabilities, will combine operations to develop a single malware collection tool, according to an announcement my mwcollect head developer Georg Wicherski.
The [...]
What is RainbowCrack & Rainbow Tables?
RainbowCrack is a general propose implementation of Philippe Oechslin’s faster time-memory trade-off technique.
In 1980 Martin Hellman described a cryptanalytic time-memory trade-off which reduces the time of cryptanalysis by using precalculated data stored in memory. This technique was improved by Rivest before 1982 with the introduction of distinguished points which drastically [...]
Now after the huge Sony BMG Rootkit fiasco, this has become quite a hot topic, how far can vendors go to enforce their ‘Digital Rights Management’ (or Digital Restrictions Management as we like to call it), can they install a rootkit on your machine and hook into your OS? Can they take over your PC [...]
Following the recent post by backbone, I decided to post a short introduction as well.
Background
I am from The Netherlands, Europe — a country most people probably have heard about. Either because of the legendary HackTic-foundation that later started the ISP XS4ALL and otherwise undoubtably because of our liberal stance towards soft-drugs and prostitution.
I have [...]
A little bit crazy eh?
Sex workers cry foul, say game “accrues points to players for the depiction of rape and murder of prostitutes.”
The Grand Theft Auto franchise is getting attacked from all angles. Joining the ranks of politicians, policemen, and attorneys in their crusade to see the game lifted from shelves are the nation’s sex [...]
This is actually a very interesting debate.
Just to introduce if you don’t know..
What is Penetration Testing
A penetration test is a method of evaluating the security of a computer system or network by simulating an attack by a malicious cracker. The process involves an active analysis of the system for any weaknesses, technical flaws or vulnerabilities. [...]
This is a tutorial web book. All 152 pages of the large paperback book with 96 diagrams are on 38 web pages here.
Even if you know nothing about electronics, you have come to the right place.
If you are wondering how microprocessors work, you have come to the right place. A microprocessor is a small processor.
If [...]
Interesting to see which RSS aggregators and readers Digg users are using.
As you can see after being ‘digged’ on Monday February 27th, the RSS subscriber base spiked from about 21 up to 182 at the highest point, after a day it receded back to around 150, and now it’s about 130.
The biggest Agent in the [...]
the following exploits (if we can call it this way) was published on securityfocus bugtraq mailinglist… it is entirely reproduced in the following lines:
Norton Internet monitoring tools issues
Versions Affected : *
Fix : No
What im writing about is how to stop the internet of some user that is
using the norton tools and IRC / any other [...]
It seems like script kiddies have been taking full advantage of the bug we talked about in the Symantec software. Do companies never learn?
Script kiddies have been taking advantage of intrusion prevention features of Symantec’s Norton Firewall and Norton Internet Security Suites to knock users offline in IRC channels, according to an amusing post at [...]
So you better make sure you do.
As we discussed in the article on Social Engineering in Penetration Testing, it’s not that the employees don’t care as such, it’s that they don’t know. They haven’t been educated, they are ignorant, their awareness of best practise is low.
An experiment carried out within London’s square mile has revealed [...]
The RIAA’s latest tactic, is to reveal to Santangelo and her new lawyer that they’ve been investigating her children, and have been able to collect a lot of non-public information. The RIAA will probably claim that the info is related to the case, but it certainly borders on using scare tactics, and trying to intimidate [...]
Last year, we noted how some security products could cause conflicts that would cause computers to lock up — but there’s another (less troublesome) trend that’s happening as well: security products declaring competing products as malware and removing them.
Just a little over a week ago, the latest version of Microsoft’s anti-spyware offering declared Symantec’s anti-virus [...]
Amazing, now ripping YOUR OWN CD’s to use on YOUR iPod is not fair use according to the new DMCA rulings currently being created.
As part of the on-going DMCA rule-making proceedings, the RIAA and other copyright industry associations submitted a filing that included this gem as part of their argument that space-shifting and format-shifting do [...]
Requirement: To connect to a VPN server in a different country.
Situation: A country which has proxies at every gateway.
Issues: VPN based on IPSec is fussy when it comes across networks which are NAT’ted/ proxied. The Security Parameters Indexes don’t match and clients do not get connected.
Objective: To connect VPN server in a corporate network using [...]
2. Why OpenVPN
Here, in this article, I will lay down the emphasis on one important Open-Source SSL VPN software written by James Yonan and contributed by several others, which proposes security without the inherent complexity of IPsec AND using a trusted design of client component and VPN server.
Usually VPNs require end points which are trusted. [...]
3. Brief How-to ….. OpenVPN and Site-to-Site Tunnels.
OpenVPN can be implemented either Site-to-site or client-server model. I will take example configurations of both models.
If you want to implement site-to-site configuration, the best way is to use static-keys instead of PKI. Using static keys, you can have your VPN tunnel up and running in a jiffy.
First, [...]
Windows Rootkits are a big rarity in this modern web hacking tehnology…
I won’t speak exactly about rootkits, because it’s impropriate to call them that way… why? Well rootkits are programs that aid you in getting access to root level users…
So in the case we are using Windows rootkits we should call them admkits (admin kits [...]
4. Brief How-to …. Creating Multiple clients to Single site tunnels.
Example of using PKI to create a client-to-site VPN:
For a road warrior or roaming/multiple user scenario, static keys based VPNs don’t scale well. You will need to implement a PKI if you have Hub and Spoke architecture of VPN.
From the OpenVPN.net website:
Static Key advantages
Simple [...]
1. Introduction
This article describes and partly implements a method to delete or re-locate, potentially sensitive and / or incriminating information from your UNIX flavoured machine, after the sad event of your death.
An older version of this article has been published before, yet it has since disappeared from the Internet and the Google cache; hence this [...]
Types of activities that will become illegal under the proposed laws include making or supplying “hacking tools”- computer programmes or code that can help crack passwords or bypass security systems – and will be punishable by up to two years in prison.
Isn’t this legitimate action for any security enthusiast, hobbiest or professional involved in penetration [...]
The new “features” this time are primarily performance improvements possible due to the use of better algorithms (bringing more inherent parallelism of trying multiple candidate passwords down to processor instruction level), better optimized code, and new hardware capabilities (such as AltiVec available on PowerPC G4 and G5 processors).
In particular, John the Ripper 1.7 is a [...]
Lab rats at Microsoft Research and the University of Michigan have teamed up to create prototypes for virtual machine-based rootkits that significantly push the envelope for hiding malware and that can maintain control of a target operating system.
The proof-of-concept rootkit, called SubVirt, exploits known security flaws and drops a VMM (virtual machine monitor) underneath a [...]
This could be the end of reverse engineering in France sadly, I hope it doesn’t have repucussions in other parts of the world.
I think it’s the end of using reverse engineering tools to find flaws in France. Maybe the next step will be to forbid the possession of debuggers and disassemblers.
It’s a valid course of [...]
Well seen as though I tell the others to do some kind of introduction, probably I should do one for myself too.
Then
I started out with a Spectrum ZX-81 back in the olden days, typing whole games out of the Spectrum magazines I picked up from charity shops.
Yah it had no tape drive, no disk drive, [...]
1. BackTrack
The newest contender on the block of course is BackTrack, which we have spoken about previously. An innovative merge between WHax and Auditor (WHax formely WHoppix).
BackTrack is the result of the merging of two Innovative Penetration Testing live Linux distributions Whax and Auditor, combining the best features from both distributions, and paying special attention [...]
Shaolin introduced him self, and said he had asked every one to do like wise. News to me mate or did that slip my mind? Can’t see how it could but one never knows…
So, any way, who the hell am I? I have known Shaolin for years, he might have some idea how [...]
This is old news to those who already knows about it (Found out about it last year and tested it till now). But i just had to try it before actually posting it up.
Do you get tired of being in an elevator and someone else gets on every other floor in between the floors [...]
The fact is Windows is getting ripped apart with viruses, spamware, spyware, zombie clients, trojans worms and whatever else you can think of.
Mac and Linux aren’t (at the moment), there are already Bluetooth viruses, so why not Linux and Mac..
Some may say it’s because they are inherently more secure, the architecture and user privelege seperationg [...]
Each day I check out the technology section of the bbc site, ok, its not the most in-depth, or techy site in the world, but it covers interesting stuff.
One interesting article http://news.bbc.co.uk/1/hi/technology/4816520.stm talks about getting a mac to run windows. That in it self is quite cool, but to my mind its the wrong way.
Who [...]
I’ve seen quite a lot of discussion lately on how to ‘defend against nmap’ or how to change the properties of your TCP/IP Stack so your Windows OS appears to be something else (As in you can guess the OS from the TTL value passed back in a TCP/IP packet).
One way you can do this [...]
No it’s not AJAX Amsterdam… it’s something more interesting (or boring to some of you)… so let’s get it started….
I. Introduction
AJAX stands for Asynchronous JavaScript And XML… It is a new technology which comes to help any web developer who really is interesed in dynamic webpages…
Click here for a overview of the AJAX Technology…
II. The [...]
Im a tinkerer. I can’t say I’m expert in anything more than ASP and MSSQL, but I make a point of playing and learning anything new and wanky. I’ve tweaked dBase, fiddled with Python, installed Apache, destroyed MS2003 server, plugged in SUN boxes, screamed at VisualStudio, urinated on Fedora, set fire too Game [...]
Is it ethical or even legal to charge for other peoples work?
As far as I know France seems have some pretty strong (and weird) copyright laws.
And yes, they are blaming French Laws prohibiting full disclosure.
In conformity with applicable French laws prohibiting Full-disclosure, the FrSIRT will no longer distribute exploits and PoCs on its public [...]
Version 1.2 (Beta) of the pwdump6 software has been released.
There are three major changes from the previous version:
Uses “random” named pipes (GUIDs) to allow concurrent copies of the client to run. This is predominately for the next version of fgdump, which will be multithreaded.
Will turn off password histories if the requisite APIs are not available [...]
The main thing is the massive kernel overhaul, it’s actually adding some decent functionality and refining the architecture to become more like Linux!
While the kernel in Vista is still primarily the same one as in Windows 2000 and XP, there have been some significant changes to tighten up security. Fewer parts of the OS [...]
Introduction
kArp is a linux patch that allows one to implement ARP hijacking in the kernel, but control it easily via userland. You may configure, enable and disable kArp via ProcFS or the sysctl mechanism.
kArp is implemented almost on the device driver level. Any ethernet driver (including 802.11 drivers) is supported. The kArp code is [...]
Is Open Source more secure? That’s a question that can be answered with both yes and no. Not only that, but the reasons for the “yes†and the “no†are fairly much the same. Because you can see the source the task of hacking or exploiting it is made easier, but at the same time [...]
Good I say, nothing worse than a spammer.
A bulk e-mailer who looted more than a billion records with personal information from a data warehouse has been sentenced to eight years in prison, federal prosecutors said Wednesday.
Scott Levine, 46, was sentenced by a federal judge in Little Rock, Ark., after being found guilty of breaking into [...]
Ever wanted to download those cool videos from youtube.com? (Its an online video storage site similar to imageshack.us for storing images) and can’t because those peeps made it difficult for you to just download them offline? Well now you can !!
Go to fileleecher.com and follow the instructions on how to copy the youtube.com [...]
One way to defend against OS fingerprinting from tools such as nmap, queso, p0f, xprobe etc is to change the metrics that they base their analysis on.
One way to do this with OpenBSD is to use Sealing Wafter.
Goals of Sealing Wafter:
1. To reduce OS detection based on well known fingerprints network stack behavior.
2. To have [...]
Internet Storm Center’s always informative Diary has some good information.
At the urging of Handler Extraordinaire Kyle Haugsness, I tested the sploit on a box with software-based DEP and DropMyRights… here are the results:
Software-based DEP protecting core Windows programs: sploit worked
Software-based DEP protecting all programs: sploit worked
DropMyRights, config’ed to allow IE to run (weakest form of [...]
Ophcrack is a Windows password cracker based on a time-memory trade-off using rainbow tables. This is a new variant of Hellman’s original trade-off, with better performance. It recovers 99.9% of alphanumeric passwords in seconds.
We mentioned it in our RainbowCrack and Rainbow Tables article.
Changes:
(feature) support of the new table set (alphanum + 33 special chars – [...]
At the place I pretend to work, the time has come that most developers equally fear and love, upgrade time. We’ve been using MSSQL2000 for 90% of our work for about 4 years now, and it’s served us well, but when a change as big as 2005 server comes along, you have to make the [...]
Basically the Americans are saying a lot of their sensitive govermental organisations are using Snort and they don’t want the software to be controlled by an Israeli company, they see it as a threat.
The same Bush administration review panel that approved a ports deal involving the United Arab Emirates has notified a leading Israeli software [...]
Honestly, I always thought it’s ok..
Why not, if someone puts a seat in the middle of a public walkway I can sit on it right? I don’t need to ask permissions, nor fear I am doing something wrong.
Likewise if someone broadcasts an open wireless network into my house or office or a public space, I [...]
Haha, well serves them right, get out and get laid guys.
Online payment company iBill on Thursday said a massive cache of stolen consumer data uncovered by security experts did not come from its database.
“I’m the first person that would have taken this to the FBI and the first person to have gone on 60 Minutes [...]
As I’ve been Digged about 5 times now…and somehow got Slashdotted (whilst I was sleeping) until my server crashed and my host started crying..and my bandwidth went out.
I can give a reasonable comparison between Slashdot and Digg traffic.
From what I’ve seen Digg traffic is between 4,000 and 20,000 hits depending what time it hits the [...]
I remember some time back Netcraft developed an anti-phishing toolbar for Internet Explorer Exploder and Firefox.
You can check it out here:
Netcraft Toolbar
Protect your savings from Phishing attacks.
See the hosting location and Risk Rating of every site you visit.
Help defend the Internet community from fraudsters.
Then recently Google has come out with the Safe Browsing Extension for [...]
So a friend of mine received a spam, which is not unusual, but this one was a little different.
This guy is in Malaysia, and the spam he usually receives is from all over the place, mostly US-centric, but this one was targetting Malaysians, Malaysian spammer producing Malaysian spam, is it the first?
I asked for him [...]
I recently found on securityfocus mailinglist a bug in IE which can be exploited with a simple javascript code to spoof the address bar location…
This allow attacker inject a malicious shockwave-flash application into Internet Explorer while it is display another URL (even trusted sites).
The vulnerability has been confirmed on a fully patched system with Internet [...]
Introduction
We see it all around us, recently. Web applications get niftier by the day by utilising the various new techniques recently introduced in a few web-browsers, like I.E. and Firefox. One of those new techniques involves using Javascript. More specifically, the XmlHttpRequest-class, or object.
Webmail applications use it to quickly update the list of messages in [...]
China are moving further away from the rest of the world when it comes to the Internet, taking control, making sure information doesn’t get out and making sure other people don’t have access to anything behind the Great Firewall of China.
China’s Ministry of Information Industry (MII) has made adjustment to China’s Internet domain name system [...]
Just in case you didn’t read it, found this one in the archives.
A serious problem in the use of GPG to verify digital signatures has been discovered, which also affects the use of gpg in email. It is possible for an attacker to take any signed message and inject extra arbitrary data without affecting the [...]
Pretty Scary eh?
Although some people do call them the Central Lack-of Intelligence Agency.
Privacy is a major issue and well people should be a little more careful about what they reveal online, perhaps I’ll rehash my old Google Hacking Presentation and write it up as a post for Darknet. I guess it would be interesting reading [...]
Well I would have thought these guys should have had a little better security..
The Department of Homeland Security received an F (Failing) grade in cybersecurity from the House Government Reform Committee for the third year in a row. The Committee will likely give the Fed a D+ overall for its cybersecurity efforts. The grades will [...]
A competitor for our buddy Google Desktop perhaps?
ORACLE, the world’s third- biggest software maker, has begun selling software that allows users to search only personal data on their work computers such as email, word documents and calendar appointments.
Chief executive Larry Ellison says the California company’s new search program “is one of the biggest products in [...]
One of my favourite proxy options, along side the Burp Proxy (evolved into Burp Suite).
I’ll definately talk more about the Burp Suite later as it’s excellent for testing anything web-based.
Paros labels itself as MITM Proxy + Spider + Scanner plus anything else you want it to be, it is a pretty neat piece of software.
It’s [...]
With one easy click! We talked about Downloading Youtube.com Videos before, but now it’s even easier.
Found a new site that does this seamlessy, all you have to do is drag the bookmarklet to your toolbar, then when you see a video you want on Google or Youtube, just hit the button on your bookmark toolbar [...]
Well how many does that leave unpatched? 30+ if I remember correctly from the PivX page that got taken down mysteriously.
Microsoft on Tuesday released a “critical” Internet Explorer update that fixes 10 vulnerabilities in the Web browser, including a high-profile bug that is already being used in cyberattacks.
The Redmond, Wash., software giant sent out the [...]
I don’t know what he was thinking really, tampering with US military or governmental systems without some SERIOUS protection.
A British man accused of being behind the largest ever hack of US government computer networks could end up at Guantanamo Bay, his lawyer has claimed.
Gary McKinnon, from London, denies causing $700,000 (£400,000) damage to military and [...]
bsqlbf is a tool for Blind SQL Injection attacks, a pretty nifty one too!
The author says there are similar tools about, but he’s tried to combine all the techniques into one compact but complete tool.
# CHANGELOG:
# -get now support resume (with -start option)
# -get to fetch files (thank you ilo AGAIN)
# + -time option added [...]
I came across this while browsing, has some pretty solid stuff, goes deeper than most basic Linux security guides.
It has some good sections like this on protection against fork bombs:
Fork bombs are programs that keep creating child processes until system resources are all used, they actually aren’t remote exploits because they require a local user [...]
1. Nmap
I think everyone has heard of this one, recently evolved into the 4.x series.
Nmap (”Network Mapper”) is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what [...]
I’ve tried out a few of these visual recognition password technique things, and to tell you the truth they didn’t work for me, not at all.
I clicked the requisite 3-4 spots on the image, and remembered them, but when I tried to login it wouldn’t accept it.
A password that uses images instead of numbers could [...]
It’s common sense for most people on the hacking side of computer security as we know how easy it is to break a password when it’s only a few characters long or it uses a dictionary word (even if it is postfixed with a couple of digits, a hybrid dictionary attack breaks it pretty fast).
Even [...]
Man this blows.
It seems it happened quite a while ago, I only just found out about it recently though when I was checking to see if L0phtcrack had been updated past version 5.
Symantec has quietly pulled the plug on sales of L0phtCrack, the venerable password auditing and recovery application.
The decision to discontinue support for L0phtCrack, [...]
I have always said no matter what it be, you need to start ‘em young!
Same for open source, don’t lock kid into Microsoft operating systems in the schools, give dual boot machines, let them use Ubuntu or Debian or something else. Let them explore free software, let the smart ones see the source, fix the [...]
I remember some time ago there was a VB virus creation kit, there’s actually quite a few. Yah I know, it’s extremely lame.
But what to do, it seems less and less people can actually think nowdays, let along think of something original, or wow…even DO SOMETHING ORIGINAL? So what’s the big money maker now? Spyware…
So [...]
There seems to be a certain amount of confusion within the security industry about the difference between Penetration Testing and Vulnerability Assessment, they are often classified as the same thing when in fact they are not.
I know Penetration Testing sounds a lot more exciting, but most people actually want a VA not a pentest, many [...]
Since FrSIRT closed it’s public archives and starting charging for access (blaming it on French laws…), people have been wondering where they can their dose of Exploits..For legitimate purposes obviously.
Security Forest
The most comprehensive collection in my opinion comes from SecurityForest. They also have a BETA exploitation framework in development, something like a Metasploit, but with [...]
Can you see the irony?
Just after 2 weeks that M$ released the Internet Explorer security makeover, Michal Zalewski came up with a highly critical exploit, as called by Secunia… based on a mishandling of the OBJECT tag….
Security alerts aggregator Secunia flagged the issue as “highly critical” and stressed that it can be exploited to corrupt [...]
Oracle is getting serious with security? Again..?
Oracle Corp. has published a collection of software patches that address security vulnerabilities in a range of the company’s products, including its database and application server software. As part of this update, it also released a tool designed to ferret out commonly used default passwords that theoretically could [...]
Paros 3.2.11 has been released. This version is a maintenance release with a useful feature requested by various users. All users are recommended to upgrade to this version.
One of my favourite proxy options, along side the Burp Proxy (evolved into Burp Suite).
Paros labels itself as MITM Proxy + Spider + Scanner plus anything [...]
A new term has been coined, yes indeed..
Ransomeware
That’s what they are calling this new threat, infects your PC then freezes it until you send some people some money.
A new kind of malware circulating on the Internet freezes a computer and then asks for a ransom paid through the Western Union Holdings money transfer service.
A sample [...]
It turns out Gary McKinnon got sloppy, that’s why he got busted. He forgot the computers he was comprimising were in a completely different time zone, and as he was using remote control software, the person in the office saw their mouse moving around. We have reported about this guy before, when he was fearing [...]
Pretty interesting and imaginative way to exploit the flaw in IE…yeah I know linked to ActiveX again, all the more reason to use Firefox right?
It just shows that the browser really is a point of entry, this could be useful for a penetration test, another way to show how easy it is to get in [...]
Switchback? For the worst? Aww Microsoft would never compromise our security for the sake of convenience or their profit line right?
Microsoft has shelved plans to include native support for RSA’s SecurID tokens in Windows Vista, even though the company has been trialling the technology for almost two years.
In February 2004, Microsoft chairman Bill Gates announced [...]
Well the original Gouki (also known as Akuma) is a character from the Street Fighter game series. I started using this handle approximately 10 years ago, when I was a big fan of the game.
The Gouki behind the keyboard
Personal Homepage
I was born in Portugal and unfortunately, that’s where I currently live. Lisbon, to be accurate. [...]
Medusa is a speedy, massively parallel, modular, login brute-forcer for network services created by the geeks at Foofus.net. It currently has modules for the following services: CVS, FTP, HTTP, IMAP, MS-SQL, MySQL, NCP (NetWare), PcAnywhere, POP3, PostgreSQL, rexec, rlogin, rsh, SMB, SMTP (VRFY), SNMP, SSHv2, SVN, Telnet, VmAuthd, VNC, and a generic wrapper module.
While Medusa [...]
An open-source security audit program funded by the U.S. Department of Homeland Security has flagged a critical vulnerability in the X Window System (X11) which is used in Unix and Linux systems. A missing parentheses in a bit of code is to blame. The error can grant a user root access, and was discovered using [...]
It seems the faith in Microsoft from the security industry is at an all time low, not surprising really with the amount of flaws that have been coming out in both the OS and the crapware forced upon its users like Internet Explorer Exploder.
Anti-virus firms at Infosec say they expect Vista and IE7 to change [...]
Now this is a VERY interesting project, as I’ve always said the majority of DoS attacks and DDoS attacks (90%+) could be stopped if all the ISP’s null routed packets which DO NOT originate from IP blocks they own, e.g. spoofed packets.
Basically the project has been established to see if you can spoof IP packets [...]
It really does seem like the Malware/Spyware folks are really into making money nowdays, what with $15 spyware kits and Viruses that place your machine under lockdown until you pay the ransom..
What happened to people just doing stuff for learning, for enhancement of knowledge, deep understanding..not a quick few hundred dollars.
I have to say though [...]
Ah, first we had the ransomeware, yesterday the trojan targetting WoW users, now we have the World Cup trojan..
It really must be Trojan season.
A Trojan horse that poses as a World Cup wallchart has begun circulating on the net. The Haxdoor-IN Trojan horse is been spamvertised in messages, written in German, that purport a program [...]
OS Fingerprinting is an important part of any penetration test or hack as it allows you focus your efforts a lot more effeciently when point testing, rather than throwing everything at a machine like a script kiddy would. So let’s introduce a new option, other than p0f and xprobe2.
SinFP is a new approach to OS [...]
What a surprise, McAfee spreading FUD to sell more copies of their bloated AV software?
Apart from the fact I think the whole AV model is flawed i.e. it can only protect against things the AV companies 1) know about 2) have written a definition for and 3) have delivered the definition to you – That’s [...]
If your familiar with asp.net, you’ll know the feeling of wasting hours searching through countless settings to get an app working, and then the many more hours it takes to tweak IIS to get your site running smoothly. But this is nothing compaired to getting authentication and domain controllers properly integrated. On Microsofts [...]
It is a little over the top, this guy used over the counter kiddy tool and ‘hacked’ into systems because of blank passwords.
Not rocket science, and apparently the machines he had access to were air-gapped, or segregated from the networks containing sensitive information, so the charges are greatly trumped up and are NOT relative to [...]
SecureDVD is a DVD with the 10 Best Security related Live CD’s.
Yes that’s right, they authored this DVD based on the recommendations made by Darknet!
Now you can have all your favorite CDs ‘compiled’ into a single DVD. I love this idea.
SecureDVD is available to download, but due to it’s size, only in BitTorrent. You can [...]
OH MY GOD, NOT ANOTHER SENDMAIL FLAW?
What’s that? Yah number 1001010102121.
Recently, Mark Dowd of ISS discovered a signal handling vulnerability in Sendmail. We don’t see major bugs in software that’s as popular as Sendmail very often (at least, in the Unix world anyways), and that’s probably a good thing. According to sendmail.com, Sendmail still handles [...]
There’s an interesting audio file about the next 50 years of computer security, it’s from a talk Alan Coxa a fellow at Red Hat Linux gave recently at the European OSCON.
It talks about the implementations of modularity, trusted computing hardware (we are already seing this in part, hardware anti-virus implementations and DRM to be built [...]
Hacking cars, what next? I have fears for the IPv6 generation (if it every happens), when every toaster and light bulb has an IP address, yeah…I’m gonna hack your house then and make your lights blink.
High-tech thieves are becoming increasingly savvy when it comes to stealing automobiles equipped with keyless entry and ignition systems. While [...]
This is the biggest load of shite I’ve read this year I think.
Rootkits are becoming more prevalent and difficult to detect, and security vendor McAfee says the blame falls squarely on the open source community.
In its “Rootkits” report being published today, McAfee says the number of rootkits it has collected as malware samples has jumped [...]
OSSEC HIDS is an Open Source Host-based Intrusion Detection System. It performs log analysis, integrity checking, rootkit detection, time-based alerting and active response.
It runs on most operating systems, including Linux, OpenBSD, FreeBSD, Solaris and Windows.
This is the first version offering native support for Windows (XP/2000/2003). It includes as well a new set of log analysis [...]
Aye…it’s not the first time.
The question came up, is Microsoft silently fixing security vulnerabilities and deliberately obfuscating details about patches in its monthly security bulletins?
Matthew Murphy, a security researcher who has worked closely with the MSRC (Microsoft Security Response Center) in the past, is accusing the software maker of ‘misleading’ customers by not clearly spelling [...]
I know this is old, but a lot of people still don’t know about it.
It can test for up to date Mozilla, Opera and Internet Explorer flaws, exploits and vulnerabilities.
Browser vulnerabilities are a serious issue now.
You can see which vulnerabilities they test for here and the statistics of the tests results here.
Total tests finished: 739828
Tests that [...]
Introduction
Anonymity is derived from the greek word ανωνυμία, meaning without a name or name-less. In colloquial use, the term typically refers to a person, and often means that the Ppersonal identity, or personally identifiable information of that person is not known.
The main question is of course, what are you trying to hide? Closely following that [...]
Bogosec is essentially a tool for finding security vulnerabilities in source code.
BogoSec aims to increase awareness regarding code security vulnerabilities, while encouraging developers to produce more secure code over time. By simplifying the code scanning process, BogoSec achieves a goal of allowing developers to scan their code regularly and more effectively.
BogoSec is a source code [...]
It’s gone round and round and round, now cars have Bluetooth, that they can get viruses like Cabir, I’m sorry but if an Anti-virus company like F-Secure can’t infect a car with a virus, I don’t have much hope for the others. The rumours came from a Lexus story in SCMagazine (The story is no [...]
The FCC wants to clamp down on Caller ID spoofing it seems.
If you’ve ever used one of the half-dozen websites that allow you to control the phone number that appears on someone’s Caller ID display when you phone them, the U.S. government would like to know who you are.
Last week the FCC opened an investigation [...]
Denim Group Ltd. announced today the public release of Sprajax, an open source web application security scanner developed to assess the security of AJAX-enabled web applications.
Sprajax is the first web security scanner developed specifically to scan AJAX web applications for security vulnerabilities. Denim Group, an IT consultancy specializing in web application security, recognized that there [...]
This a very interesting read, the tale of an RFID hacker.
I was always sceptical about RFID I have to say, when everything is tagged, criminals can just drive by your house and scan everything, see what TV you have, which DVD player, how many high value electrical goods, and choose which houses they want to [...]
Paros 3.2.12 is released. This version is a maintenance release which fix a potental 100% cpu consumption issue. All users are recommended to upgrade to this version.
The changes are:
- Use newest external library for HTTP handling.
- Enable/disable spider to POST forms in options panel to avoid generating unwanted traffic (default to enable). This [...]
A Turkish hacker using the handle iSKORPiTX was able to breach the security of a group of web servers, containing more than 38.500 web sites in less than a day!
Iskorpitx is believed to be 45 years old, sometimes being helped for minor defacement activities by another Turkish “senior cracker” (42) going by the handle of [...]
Ok so the list gets even BIGGER, after the WoW Trojan, Trojan for World Cup Fans, Ransomeware and the buy a spyware kit story…
Now we proudly present, the Poker Rootkit!
For online poker players, this was always going to be a losing hand.
A Trojan with malicious rootkit features hidden in a legitimate software package distributed by [...]
Packet sniffing goes hi-tech? What’s wrong with ethereal?
The equipment that technician Mark Klein learned was installed in the National Security Agency’s “secret room” inside AT&T’s San Francisco switching office isn’t some sinister Big Brother box designed solely to help governments eavesdrop on citizens’ internet communications.
Rather, it’s a powerful commercial network-analysis product with all sorts of [...]
PBNJ is a network tool that can be used to give an overview of an machine or multiple machines by identifying the details about the services running on them. PBNJ is different from other tools because it is based on using a scan from nmap parsed to amap. PBNJ parses the data from a scan [...]
We all knew it was just a matter of time until the ‘thing’ was out.
PandaLabs has detected the appearance of 1Table.A, a malicious code that exploits a recently detected critical vulnerability in Microsoft Word, and which also affects versions of MS Office 2003 and XP.
Microsoft confirmed today the existence of this vulnerability and apparently [...]
A year? A whole year? A few days I can take, but surely if an Admin doesn’t know what’s going with his machines for a year….compromised for a year, there is something wrong.
An unprecedented string of electronic intrusions has prompted Ohio University to place at least one technician on paid administrative leave and begin [...]
Only as I am writing these lines I can imagine some people who will start laughing when reading this article… But my dear friends this may be the real thing… will see who will laugh 10 years from now…
I. Introduction
This article was ment to be, because, as you will notice, more and more hacking tools [...]
Well it happened a while back, remember? The French researcher Guillaume Tena who got in trouble for breaching French copywrite laws by decompiling some software.
Now people are generally starting to worry about disclosing vulnerabilities through any channels, does there need to be some kind of anonymous PGP key based system for vulnerability disclosure? So people [...]
Sounds complicated, it’s almost a tongue-twister.
It turns out the carders (people using stolen credit card details fraudulently) have worked out how to get money out of the spammers (spamming being massive nowdays)
Fraudsters who deal in stolen credit card data have devised a means to extract money from sponsors of junk mail campaigns.
Carders have signed up [...]
Interesting to see this just a little while after Malaysia announced IMPACT, it’s anti cyber-terrorist task force..
IMPACT is its name, and making an impact in the battle against cyber-terrorism is its mission. Unveiled in Austin, Texas, the Malaysian initiative seeks to bring together governments and the international private sector to deal with increasing threats in [...]
I’ve seen similar figures from other organisations and countries, so the stats don’t suprise me.
My peers and I have always called this Armadillo security, hard on the outside, soft on the inside.
Firewall, IDS, etc…all protecting the exterior of the network, only edge devices, nothing inside, not much policies, not much privelege segregation, anyone inside can [...]
Apparently a gaping security flaw in the latest versions of Symantec’s anti-virus software suite has been discovered that could put millions of users at risk of a debilitating worm attack. According to eEye Digital Security, the company that discovered the flaw, the vulnerability could be exploited by remote hackers to take complete control of the [...]
MySpace owned again..let’s quote them for a penetration test or vulnerability assessment haha.
TWO New York teenagers are reportedly in police custody after allegedly threatening to give out the personal information of users of MySpace.com unless they are paid $US150,000 ($200,000). Associated Press reported Shaun Harrison, 18, and Saverio Mondelli, 19, of Suffolk County, face computer [...]
I know this maybe old news for some of you, however, I just got the chance of reading this great article on Security Focus (it’s been 2 weeks since I add it to my Favorites)
This two part article discusses some good points of Cryptology, more precisely in the field of Cryptovirology.
Writing a virus is just [...]
Irrepressible Adj. 1) Impossible to repress or control.
Chat rooms monitored. Blogs deleted. Websites blocked. Search engines restricted. People imprisoned for simply posting and sharing information.
The Internet is a new frontier in the struggle for human rights. Governments – with the help of some of the biggest IT companies in the world – are cracking down [...]
It’s sad when a country has to resort to this to control it’s people, freedom to watch porn for Cambodians!
Heeding a request from his wife, Prime Minister Hun Sen on Friday banned the latest generation of mobile phone services in Cambodia to curb the dissemination of pornography.
Bun Rany, along with the wives of several other [...]
F-Secure has an interesting new dynamic world map displaying the various threats and viral hotspots around the world. Viruses and antivirus software is always a big issue, especially for corporates.
Shows how things are heating up when it comes to viruses, malware, trojans and so on.
They make some nice antivirus software too.
Check it out:
F-Secure Worldmap
Pretty neat [...]
If you receive a e-Mail alert of a new patch for your Windows XP OS, think again before opening the link present on the message.
The spammed emails, which purport to come from patch@microsoft.com, claim that a vulnerability has been found ‘in the Microsoft WinLogon Service’ and could ‘allow a hacker to gain access to an [...]
The shocking statistic first, “56% of consumers do not have active anti-virus on their PCs”, ok not that shocking but still a bit worrying. Allthough asking if your average user doesn’t protect themselves on the internet conjures up images of the pope squatting in the woods.
The basic F-Secure anti-virus product protects against viruses and [...]
Today sees the launch of “OneCare”, Microsofts “secrity solution”. Combining firewall, anti-virus and anti-spyware in to one handy package…. but would you trust it?
I guess many people will, and over time we will find out if its a well spent $49.99 or not, but for me? I don’t think so. Microsoft do many things, but [...]
So over a month down the line, our SQL2005 upgrade project should now be in the workable prototype stage. But as with all things that “should” be(More security in IE, Great Britain ruling the world and my kitchen being fitted), it’s not, it’s not even close. On top of this our company is [...]
The Symposium on Security for Asia Network aims to be a very different security conference from the rest of the security conferences that the information security community in Asia has come to be so familiar and frustrated with. SyScan’06 intends to be a non-product, non-vendor biased security conference. It is the aspiration of SyScan’06 to [...]
Ah this is almost like Ransomeware again, messing up your machine then extorting money from you.
Make sure you educate your non tech savvy relatives about such threats, spyware, adware, trojans and worm type viruses. Education is THE most powerful defence against malware and computer security incidents.
Some simple patching, a free Antivirus protection like Avast! Using [...]
I have to agree with their sentiment, I’m all for open hardware standards.
Even if you don’t open it, people will copy it anyway (See the mass of Cisco knock-offs in China for a fraction of the price with almost exactly the same functions and IOS).
So why not open it, let us play with it.
At least [...]
Ah the big boys can’t get in legimately, so they are starting to use underhand tactics eh?
A lawsuit filed Wednesday accuses the Motion Picture Association of America of hiring a hacker to steal information from a company that the MPAA has accused of helping copyright violators.
The lawsuit (click for PDF), filed in U.S. District Court [...]
A pretty interesting article that statistically measured the frequency of passwords by taking an aggregate sample of passwords (primarily from the UK).
Here are listed the most commonly occuring from the sample.
10. ‘thomas’ (0.99%)
First off, at number 10, is the most common format of passwords – the name. Thomas is a perennially popular name in the [...]
RFID, biometrics, hi-tech police officers, yes it’s all going to be happening in Germany for the close approaching World Cup 2006.
Not surprisingly, security is a top priority for the German government, even higher than its desire to see the national team walk off the pitch with the World Cup 2006 trophy.
The list of security precautions [...]
I saw some interesting information recently on a mailing list.
We took one sample of one carding/phishing forum that our Global Surveillance Center was monitoring and sampled the set into a graph that lists the top 10 banks and the losses over the last month. As you can see, it’s obvious who the top credit card [...]
Apologies for the lack of updates for the past few days, I had to go abroad for an important assessment
It’s sad how people can pray on things as terrible as disasters to make a quick buck, but well we have to face the facts that they do, and will.
And as it seems, they [...]
Well it is for me, and I guess anyone who consider themself a career hacker, or at least has a serious interest..
As a few good trojans are open source (Back Orifice?), you can just mess around with them for a while until you reach the point they are no longer detected by any of the [...]
I found a useful resource containing a whole list of academic papers on web-application security.
This list represents an attempt to collect academic papers on the subject of Web application security sorted by the year of publication.
Hacking web applications has become a big thing in the last 5 years, just look at the number of holes [...]
Hmm Taiwan are really way ahead of everyone when it comes to being a spam hub, sadly that’s nothing to be proud of and generally it’s due to a large amount of poorly configured/unsecured servers.
Taiwan needs to start doing some vulnerability assessment! Taiwan and Korea have always had loads of open proxies/exploitable machines in my [...]
Oedipus is an open source web application security analysis and testing suite written in Ruby by Penetration Testers for Penetration Testers. It is capable of parsing different types of log files off-line and identifying security vulnerabilities. Using the analyzed information, Oedipus can dynamically test web sites for application and web server vulnerabilities.
Oedipus can be broken [...]
You can get your hands on the windows vista preview release beta2. This is for those of you who are wondering how the interface of the new windows vista will look like and the new feel of the new operating system. You can find the minimum system requirements here.
You can download vista here. [...]
In my opinion, the best way to keep clean of spam is simple:
The first rule is NEVER reply to spam, NEVER click the unsubscribe link and NEVER e-mail to the unsubscribe address.
These are simply underhand tactics to get ‘active’ e-mail addresses.
Some other tips to avoid getting spammed in the first place:
1) Never use your [...]
Following Darknet post regarding SyScan’06, I decided to make a little resume of the most important security events all around the world.
Unfortunately we won’t be able to go, so all the pictures are welcome. (-:
If there’s any missing do let us know.
Recon 2006 – WWW – 16 June to 18 June 2006 – Plaza Hotel [...]
SQL Power Injector is a graphical application created in .Net 1.1 that helps the penetrating tester to inject SQL commands on a web page.
For now it is SQL Server, Oracle and MySQL compliant, but it is possible to use it with any existing DBMS when using the inline injection (Normal Mode).
Moreover this application will get [...]
Microsoft has taken a bit of a leap with the integration of .net into SQL Server, and a lot of developers(Myself included) are worrying about what security implications this could have. DevX.com have taken an in-depth look into the guts of it, and spilled them onto a page for us all to look at.
CAS [...]
Aha! Trojans strike again. Really, I still think it all comes down to education, it doesn’t seem to be a targeted attack though.
Just a random infection from your average porn site Trojan.
Electronic files containing personal data of up to 2,200 Oregon taxpayers may have been compromised by an ex-employee’s unauthorized use of a computer, the [...]
Well this week there was a Yahoo! Email worm, now also follows a vindictive new worm targetting MSN called BlackAngel.B. The reports come from the anti-virus software company Panda Software.
When activated the worm delivers a fateful terror message and then attempts to disable any protection software such as anti-virus, firewall or Windows system applications like [...]
Well I would say this was true for office workers everywhere, not particularly just Brits.
But well the British are an inquisitive nation, so this doesn’t suprise me at all.
Nearly a quarter (22 per cent) of UK employees admit to having illegally accessed sensitive data such as salary details from their firms employer’s IT systems. More [...]
There’s a good interview with Kevin Mitnick on Social Engineering.
Well afterall, that is where his skill lies, not in technical hacking.
Arrested by the FBI in 1995 and convicted of breaking into the systems of Fujitsu Siemens, Nokia and Sun Microsystems, Mitnick served five years in prison–eight months of it in solitary confinement.
In his days on [...]
No, it wasn’t Microsoft.com, still, a very cool hack.
Microsoft France suffered an attack by a Turkish group, going by the handle of TiTHacK. You can check TiTHacK ‘profile’ over at Zone-H. By the looks of things, he has been really busy today.
At the time of this writing, the site still hasn’t been fixed. However, [...]
OS Fingerprinting is an important part of any penetration test or hack as it allows you focus your efforts a lot more effeciently when point testing, rather than throwing everything at a machine like a script kiddy would. So let’s introduce a new option, other than p0f and xprobe2.
SinFP uses the aforementioned limitations as a [...]
It seems even though vendors are pushing their snakeoil harder than ever, the actual figures show that the money lost due to cybercrime has decreased every year for the last four years!
Perhaps people are finally getting more secure, it’s not suprising with the advent of cheaper and easier to use intrusion detection and intrusion prevention [...]
What? New vulnerabilities in Internet Explorer?
You can hack Internet Exploder Explorer? Never!
3Com Corp’s TippingPoint division has discovered and disclosed two critical new vulnerabilities in Microsoft’s Internet Explorer through 3Com’s Zero Day Initiative (ZDI).
The vulnerabilities could have allowed an attacker to gain control of a PC if the user was logged in with administrative rights. [...]
Yersinia is a network tool designed to take advantage of some weakeness in different network protocols. It pretends to be a solid framework for analyzing and testing the deployed networks and systems.
It’s a very useful for any network based penetration testing or vulnerability assessment. There isn’t many tools working on Layer 2 and this is [...]
So just a few days about there was a new MSN Worm – BlackAngel.B, before that the Yahoo! e-mail worm, long before that of course the MySpace worm and a few others not notable enough to mention.
And of course plenty of nasty Trojans.
A new Internet worm capable of stealing bank details and other personal data [...]
FireMaster version 2.1 has been released with its new features and new speed.
Firemaster is the Firefox master password recovery tool. If you have forgotten the master password, then using FireMaster you can find out the master password and get back your lost signon information. It uses various methods such as dictionary, hybrid and brute force [...]
Botnets and organises cybercrime is getting more prevalent, it seems it’s increasing exponentially despire crackdowns by the US governments and other organisations.
The criminals are getting more advanced, phishing scams are getting more realistic, technically trojans are getting more effective and the groups are getting really organised.
Cybercrooks are organizing better and moving to more sophisticated tactics [...]
Cross Site Scripting, or know as XSS, is the most common basic web hacking tehnique… and harmless, as many would say… but on this mather I don’t realy agree, that’s why I wrote this article.
About
XSS as I knew it is a very abstract definition for javascript injection, or at least this is what I have [...]
Ah another way to exploit wifi, what a surprise!
Security researchers have found a way to seize control of a laptop computer by manipulating buggy code in the system’s wireless device driver.
The hack will be demonstrated at the upcoming Black Hat USA 2006 conference during a presentation by David Maynor, a research engineer with Internet Security [...]
Seems like someone sneaked past the LiverJournal advertisers policy by only trying to infect Australian and European users.
A certain advertiser (kpremium.com) – being sneaky and underhanded. It’s not LJ’s fault, LJ already disabled the advert from rotation.
The ad itself is for a program that lets you download stuff – you know the sort of thing. [...]
An interesting interview had been posted on Wired with Gary McKinnon about what he actually found whilst penetrating the US government networks.
After allegedly hacking into NASA websites — where he says he found images of what looked like extraterrestrial spaceships — the 40-year-old Briton faces extradition to the United States from his North London home. [...]
Another HUGE information leak from the US government, seems they can’t help themselves.
Or perhaps people are just ramping up the efforts against them..
The Navy has begun a criminal investigation after Social Security numbers and other personal data for 28,000 sailors and family members were found on a civilian website.
The Navy said Friday the information was [...]
Forgot to post this earlier. I received this email from SANS Institute sometime in April. They seem to be having two of their training sessions in singapore in August. Those who live in Asia or anywhere near the region and are interested can look it up. SANS Institute has one of [...]
sqlninja is a little toy that has been coded during a couple of pen-tests done lately and it is aimed to exploit SQL Injection vulnerabilities on web applications that use Microsoft SQL Server as their back-end.
It borrows some ideas from similar tools like bobcat, but it is more targeted in providing a remote shell even [...]
As we’ve reported a few times recently, more and more attacks being aimed at Web Services such as Orkut, MySpace, Ebay and others.
As more people turn to web applications for everyday tasks like e-mail, friendship and payments, cyber criminals are following them in search of bank account details and other valuable data, security researchers said.
Users [...]
Botnets are indeed a growing problem, we’ve seen serious cases of DDoS extortion, the most recent example would be the attacks against the ‘million dollar homepage’ and the problems it caused the owner.
Botnets have been used for quite some time as spam networks and mostly for script kiddies to have DoS wars on IRC networks, [...]
NTA-Monitor has released the arp-scan detection and fingerprinting tool under the open source (LGPL license) concept.
It has been tested under various Linux based operating systems and seems to work fine.
This will only compile on Linux systems. You will need a C compiler, the “make” utility and the appropriate system header files to compile arp-scan. It [...]
Dark_AleX has now shared Downgrader Test v0.5 For PSP 2.50/2.60 Firmware which, according to MANY users (including TGMG, LalaMan, Firey, and LAXitives), works 100% with PSP consoles that were upgraded to v2.50 or v2.60 Firmware. However, it will NOT work with TA-082 versions and it’s NOT recommended for users whose FACTORY/STOCK Firmware was 2.50 or [...]
The Universal Hooker is a tool to intercept execution of programs. It enables the
user to intercept calls to API calls inside DLLs, and also arbitrary addresses within the executable file in memory.
Why is it ‘Universal’? There are different ways of hooking functions in a program, for example, it can be done by setting software breakpoints [...]
An interesting find made by John Hackenger surfaced today. For those of you familiar with MySpace, you’ll know that it uses ‘Bulletins’ to send a single message to multiple friends in your list.
Because the message is sent only to the people you have authorized to be on your list, sometimes you get a feel of [...]
Absinthe is a gui-based tool that automates the process of downloading the schema & contents of a database that is vulnerable to Blind SQL Injection.
Absinthe does not aid in the discovery of SQL Injection holes. This tool will only speed up the process of data recovery.
Features:
Automated SQL Injection
Supports MS SQL Server, MSDE, Oracle, Postgres
Cookies / [...]
Get ready for a complete month of fun with H D Moore’s Month of Browser Bugs.
Quoting from Browser Fun blog:
This blog will serve as a dumping ground for browser-based security research and vulnerability disclosure. To kick off this blog, we are announcing the Month of Browser Bugs (MoBB), where we will publish a new browser [...]
Ah, so finally they got it back, from a street corner of all places.
Let’s hope they shall be a little more careful in the future yah?
The missing laptop and hard drive that contained veterans’ personal information has been found, Veterans Administration Chief Jim Nicholson announced Thursday.
The announcement came at the beginning of a hearing [...]
If you aren’t using RSS you can now subscribe to Darknet via e-mail, you will receive a daily update of the posts published in the last 24 hours.
Enter your Email
Powered by FeedBlitz
Might be useful if you don’t have frequent access to check the site too.
Cheers!
An interesting speculative post on the forensics techniques that would most likely be used by the FBI during the investigation of the recovered Veteran’s Adminsitration laptop.
Most of them are pretty straight forwards if you have any kind of experience with digital forensics and data recovery (disaster recovery, incident response etc.)
As a former Computer Forensic Specialist, [...]
This is an excellent case of Social Engineering, you could also consider it playing on human greed/ignorance/stupidity.
Whatever you want to label it really
USB drives are a real security risk..
We recently got hired by a credit union to assess the security of its network. The client asked that we really push hard on the [...]
WebScarab is a framework for analysing applications that communicate using the HTTP and HTTPS protocols. It is written in Java, and is thus portable to many platforms. WebScarab has several modes of operation, implemented by a number of plugins.
In its most common usage, WebScarab operates as an intercepting proxy, allowing the operator to review and [...]
Spyware companies are apparently netting HUGE profits, it doesn’t surprise me though with the amount of people that actually install the crap on their machines..
Let’s say we don’t like companies like Direct Revenue very much though.
Consumers have strong opinions about Direct Revenue’s software. “If I ever meet anyone from your company, I will kill you,” [...]
Now this is a scary though, with the digitisation of the old analogue power stations and the accidental cross-over of networks (as we’ve seen before) people could soon be hacking nuclear power station control systems..
he nuclear power industry is going digital — replacing mechanical systems with more efficient, networked computer-controls.
If that makes you nervous in [...]
HoneyBOT
HoneyBOT is a Windows based medium interaction honeypot solution.
What is a Honeypot?
A honeypot is a device placed on a computer network specifically designed to capture malicious network traffic. The logging capability of a honeypot is far greater than any other network security tool and captures raw packet level data even including the keystrokes and mistakes [...]
Ticketcharge.com.my, a Malaysian website that sells event tickets online appears to have been hacked. Forgot to take a screenshot of it but this screenshot from google cache taken today can be seen below. This happened over the weekend or perhaps earlier.
Google cache here . This will be gone when google re-cache the [...]
Using standard script kiddy tools a consultant managed to compromise some of the FBI’s computers containing confidential information.
Quite a hack eh?
A government consultant, using computer programs easily found on the Internet, managed to crack the FBI’s classified computer system and gain the passwords of 38,000 employees, including that of FBI Director Robert S. Mueller III.
The [...]
Ah, I wonder what happened?
I’ve always been a great fan of Debian, all the way back into the early days of woody and backporting apt packages.
What a name too, gluck to me usually means g’luck or good luck
Early this morning we discovered that someone had managed to compromise gluck.debian.org. We’ve taken the [...]
A working version of the exploit used to escalate priveleges to root in the recent Debian breakin, ah another root kernel exploit.
It’s to do with the way the kernel handles file persmissions (or lack of) on core dumps.
Linux kernel is prone to a local privilege-escalation vulnerability.
A local attacker may gain elevated privileges by creating a [...]
For those who haven’t noticed yet, today booster made a milestone in PSP history. Enabling firmware 2.71 emulation in DevHook 0.44.
Alot has been going on lately in the PSP scene and its great. With the release of the 2.5/.6 downgrader and full iso and game emulation in DevHook.
Download here. Credit goes to booster [...]
CAPTCHA, acronym for “completely automated public Turing test to tell computers and humans apart” is used, most of the times at least, as an authentication mechanism. Not to prove your identity, but to do a much simpler job than that; to prove your a human.
With the bad guys always a step ahead (which is cool [...]
Symantec has made a research and affirming to there research Windows Vista will be more insecure than Windows XP, because most of the new code is fresh, and the old code isn’t used anymore…
Microsoft has removed a large body of tried and tested code and replaced it with freshly written code, complete with new corner [...]
I saw a Freeware MAC Address Changing tool today which I thought I’d share with you all, as I used to use SMAC, a nice tool, until the guy started charging for it!
Hopefully this one won’t go the same way.
Technitium MAC Address Changer, which allows you to change Machine Access Control (MAC) Address of your [...]
This is actually a very important case depending on which way it goes.
It could become a landmark case in regards to liability for machines on your network, or actually any traffic originating from your IP range.
A boutique Washington, D.C.-based law firm is accusing IBM of hacking into its e-mail system and is seeking recourse.
The firm, [...]
We are happy to announce that Hping 2 works with Windows XP again! Hping support on Windows was never that great.
Darknet is indeed a great fan of Hping! Glad to see it has overcome the Raw sockets problems Windows XP SP2 brought about.
hping is a command-line oriented TCP/IP packet assembler/analyzer. The interface is inspired to [...]
It turns out yesterday one of the planned speakers at HOPE Number 6 was arrested on Saturday and is being charged by the FBI.
Security Fix obtained a copy of the complaint against “Steven Rambam” the private investigator arrested Saturday at the Hope Number Six hacker conference in New York City. The government document says Rambam [...]
Yes that means all versions including the current version and before, 2.0.4 has not yet been released at the current time.
An exploit has been discovered in the current release of Wordpress, affecting Wordpress 2.0.3 and below (including 1.5.x) that allows these subscribed users to cause some serious damage.
It’s recommended at present if you are using [...]
We are happy to announce that the 1.2.6 (christine) release of the Basic Analysis and Security Engine (BASE) is available.
BASE is the Basic Analysis and Security Engine. It is based on the code from the Analysis Console for Intrusion Databases (ACID) project. This application provides a web front-end to query and analyze the alerts [...]
Netscape.com has been hacked via a persistent Cross Site Scripting (XSS) vulnerability in their newly launched Digg-like news service.
It seems the attacker did report the flaw to them repeatedly but they didn’t heed and ignored it, so he performed the XSS all over the site.
eplawless stated the following:
It was me. I did it. C’est [...]
Just to let you all know, if you are using Wordpress you can upgrade today.
The latest stable release of WordPress (Version 2.0.4) is available.
his release contains several important security fixes, so it’s highly recommended for all users. We’ve also rolled in a number of bug fixes (over 50!), so it’s a pretty solid release across [...]
Spike is an Open Source tool based on the popular RATS C based auditing tool implemented for PHP.
The tool Spike basically does static analysis of php code for security exploits, PHP5 and call-time pass-by-reference are currently required, but a PHP4 version is coming out this week.
This tool is especially welcomed by Darknet as there aren’t [...]
Israeli hackers have decided to ‘help’ and join the war against Palestine.
The hackers group that calls itself “IDF” (which also means Israeli Defence Force) has hacked dozens of sites, erased the site content and replaced it the index with a picture of the Lebanon destruction that is made by Israeli Defence Force as an answer [...]
The antivirus specialists at McAfee have warned of a Trojan that disguises itself as a Firefox extension. The trojan installs itself as a Firefox extension, presenting itself as a legitimate existing extension called numberedlinks.
It then begins intercepting passwords and credit card numbers entered into the browser, which it then sends to an external server. The [...]
The eEye Binary Diffing Suite (EBDS) is a free and open source set of utilities for performing automated binary differential analysis. This becomes very useful for reverse engineering patches as well as program updates.
The first tool is BDS, the Binary Diffing Starter from Andre Derek Protas. This tool helps reverse engineers with batch-analysis of patches [...]
Duster is the Dead/Uninitialized Stack Eraser, an injectable DLL that causes uninitialized stack and heap memory in its host process to be wiped over with a specific value. It is intended as a crude tool to assist in the run-time discovery of uninitialized memory usage problems by increasing the chances that the host process will [...]
Scammers are getting more inventive and so it seems more technically advanced. They have actually duplicated the Interpol site to dupe people.
419 advanced fee scammers have created an exact copy of the Interpol website, which is expected to be used to dupe victims into believing they are dealing with the real International Criminal Police Organisation.
A [...]
Wapiti allows you to audit the security of your web applications.
It performs “black-box” scans, i.e. it does not study the source code of the application but will scans the webpages of the deployed webapp, looking for scripts and forms where it can inject data.
Once it gets this list, Wapiti acts like a fuzzer, injecting payloads [...]
Ah cyberwar, cyber terrorism, efforts are ramping up, more sites are going down.
The war in Lebanon is now showing its consequences in the digital world and a huge number of websites has been attacked and defaced as a protest against the invasion of Lebanon by Israel.
Today two NASA websites were attacked as well. The intrusion [...]
Ah at last a good solid collaborative effort to identify and categorise software vulnerabilities with a solid taxonomy and good organisation!
It seems very well written too in terms that anyone familiar with software development or programming can understand.
Fortify Software, which identifies and remediates software vulnerabilities, has contributed its collection of 115 types of software security [...]
Another good tool updated! TCPReplay suite 3.0.beta10 has been released.
For those that don’t know Tcpreplay is a suite of BSD licensed tools written by Aaron Turner for *NIX operating systems which gives you the ability to use previously captured traffic in libpcap format to test a variety of network devices. It allows you to classify [...]
Splogs are becoming a huge problem, half the stuff you search for nowadays returns a splog, mostly auto syndicated content.
I find a lot of my own entries on there, surrounded by Adsense ads.
New age scrapers I guess.
Technorati returns a lot of results from splogs too, but at least they have made some efforts to clean [...]
It seems people are turning some attention towards the security of Open Office finally, I for one say this is a good thing as it means it’s making inroads, it’s becoming popular, it’s getting to be a contender.
If people are seriously considering the security implications of using Open Office it means they are actually really [...]
Malware herders are speeding up, the first wave is already here for MS06-40.
It’s basically a variant of some old malware suited to the new vulnerability. Same old story then, same packer, technique, new exploit.
Same as the days of autorooters.
It’s basically the Mocbot trojan that was used in the Zotob worm attack in August 2005.
The first [...]
QJ.net forums have been abuzz lately with the talk of a possible new exploit centered around a libtiff vulnerability. NOPx86 stating that he’d managed to crash the PSP using this method. As those of you who follow these things know, a crash doesn’t always mean an open door to an exploit.
But after a cumulative 60 [...]
Introduction
This tutorial is an attempt to help you re-route all internet winsock applications in ms windows trough a socks chain, thus making your connections much more anonymous.
Theory
The more different hops you make your data jump, the more difficult it will be to trace it back. take this [...]
Ah, here at Darknet we have always been a fan of Sophos and the way they operate, a very efficient company and good to see good technical products still coming out of the UK!
Another good move by them, they have decided to offer a free rootkit detection tool called Sophos Anti-Rootkit..Yah I know, not a [...]
Recently one of the sites I am developing for my self was link spammed. Some unpleasant individual decided that it would be fun to post 160 “comments†spread over all the blog posts. All the comments contained was URL’s. Even more stupid they used BB tags, but as I wrote the site it doesn’t use [...]
AttackAPI provides simple and intuitive web programmable interface for composing attack vectors. The project was primary inspired by the JythonShell applet. At its very early stage AttackAPI was a single extensible web enabled python console with a few modules.
The 0.5 release of AttackAPI is purely JavaScript based. This is not a shift in the project [...]
I’ve been spending a lot of time online lately reading all kinds of stupid text files on how to “Takeover Ops Boi!!!”, “eLeEt WaYs To gEt OpS!!!”, “HOW TO GET OPS ON SERVER SPLITS”, etc. We all know none of these things work, at least not for me. They’re either written by morons, or they [...]
Ah another huge hacking resulting in a large loss of confidential information, companies really need to start getting more pro-active about aggresively testing their corporate networks and web based applications.
Information including CREDIT CARD numbers sadly.
AT&T on Tuesday said hackers broke into one of its computer systems and accessed personal data on thousands of customers who [...]
These are basic techniques but very useful when penetration testing any Windows based network, the techniques were discovered on WinNT but are still very valid on Windows2000 and in some cases Windows2003 due to backwards compatibility.
This article is being written in a procedural manner. I have approached it much like an intruder would actually approach [...]
Ah another flaw in Myspace, this time it’s quite dangerous exposing the details of teenagers.
A security hole in the popular MySpace social networking site allowed users to view entries marked “private”, a crucial protection for users aged under 16, according to weekend reports.
Though the site is said to have fixed the problem, it was said [...]
“pleez, pleez, PLEEZ teach me how to hack a Hotmail Account!!!”
-unidentified IRC user
From here on in you walk alone. Neither little_v OR Black Sun Research Facility AND its members will be responsible for what you do with the information presented here. Do not use this information to impress your “l33t0_b0rit0″ friends. Do not [...]
This is a useful article that has basically taken the OWASP Top 10 Vulnerabilities and remapped them to PHP with actual examples.
The Open Web Application Security Project released a helpful document that lists what they think are the top ten security vulnerabilities in web applications.
These vulnerabilities can, of course, exist in PHP applications. Here are [...]
Sometimes doing good can help bad things propogate, sometimes it’s good to consider the big picture and the repucussions of your charitable actions.
This is a case where such logic rings true.
Programs to send PCs to third world countries might inadvertently fuel the development of malware for hire scams, an anti-virus guru warns.
Eugene Kaspersky, head of [...]
A lot of people come to Darknet looking for Brutus AET2 (brutus-aet2.zip) to download, but unfortunately due to some stupid Homeland security bullshit I actually had to remove the file or risk having no hosting left..
If you don’t know, Brutus is one of the fastest, most flexible remote password crackers you can get your hands [...]
Can you believe this the provincial government in British Columbia has managed to auction off a set of data tapes containing people’s social insurance numbers, dates of birth and medical records among other information.
The provincial government has auctioned off computer tapes containing thousands of highly sensitive records, including information about people’s medical conditions, their social [...]
Ethical debates are always interesting, and people have gotten in trouble lately for reverse engineering and various other branches of research.
This is a fairly old topic, but as I’m clearing out some old drafts, I still find it an interesting one.
There’s been an ongoing debate in security circles concerning how security researchers should disclose vulnerabilities [...]
Since Symantec stopped development of L0phtcrack many people have been looking for alternatives.
So don’t forget…
Jack the Ripper is still king
Medusa is good
Ophcrack for Rainbow Tables
And now one more, introducting LCP, which we have talked about before in the article Password Cracking with Rainbowcrack and Rainbow Tables.
LCP is freeware!
The main purpose of LCP program is user [...]
This effort started quite a long time ago, I was just checking up to see how they were getting on, but there’s not much news of their progress.
perating under the theory that if you kill the head, the body will follow, a group of high-profile security researchers is ramping up efforts to find and disable [...]
This is an excellent article you might find useful covering the use of the capture command in Cisco PIX firewalls.
A vital tool to use when troubleshooting computer networking problems and monitoring computer networks is a packet sniffer. That being said, one of the best methods to use when troubleshooting connection problems or monitoring suspicious network [...]
It’s good to see work on open source tools in the countermeasure department aswell as the attack and penetration arena.
It’s a shame since Snort and Nessus have gone semi-commercial.
I hope more people invest their time in good IDS, Firewall and IPS systems, I love things like IPCop and hope to see more products like HLBR.
HLBR [...]
Ah the anti-trust battle continues, good to see someone with technical skills involved, I wonder how the case is coming along, I haven’t heard about it for a while.
Again this is quite an old story.
As an expert witness on digital crime, British computer consultant Neil Barrett has helped prosecutors in the United Kingdom convict murderers [...]
Ah China, always been famous for repressing their population, now there repression is moving onto the Internet and using digital means..
Just like the so called ‘Great Firewall of China’, I’ve been meaning to do an article about that for quite some time, I have something drafted.
Anyway the latest thing China has done has made it [...]
Please note this is an old technique again, just for learning purposes, learn how the old techniques worked and why they worked, then try and discover new ways to do things.
Summary
The sole purpose of the information contained in this advisory is to point out the flaws in InterNIC’s domain name handling system and is intended [...]
Ahah! More government cover-ups? This one was a while back too.
Digging on those archives right now yah.
A hacker stole a file containing the names and Social Security numbers of 1,500 people working for the Energy Department’s nuclear weapons agency, scary eh?
The US government security really does scare me sometimes, their internal departments have some of [...]
SIFT has just published a world-first tool for identifying rogue web methods. The Web Method Search tool is a Windows based application that uses a hybrid dictionary attack in an attempt to find unpublished administrative and other web services functions.
As web services are becoming more prevalent, poor security practices from previous generations of application architectures [...]
A sterling case for two factor authentication if I ever saw one.
The rule is use two of the 3 methods of authentication, if possible use all 3.
What you have (A USB key or Token)
What you are (Biometrics – Fingerprint or Iris scan)
What you know (A password or passphrase)
More than 8 out of every 10 [...]
A useful tool for anyone working with PHP applications.
DESCRIPTION
————
FIS (File Inclusion Scanner) is a vulnerability scanner for PHP applications. Is scans PHP files mapping PHP/HTTP variables and then performs a security audit,in order to find out which of them are exploitable.
USAGE
——
php fis.php [local file] [remote file] [remote FIS ID file]
[local file]
————–
The local copy of the [...]
Something a little off-topic for once, nerdcore is getting big!
Geek music is hitting the streets.
Gangsta is dead. Grime is a bore. There’s a new beat on the street and it’s called Nerdcore. This geeky hip hop subgenre, also dubbed CS rap (that’s computer science, yo!), is finally booting up with the release of Rhyme Torrents, [...]
Apart from the fact Janus is almost like Anus this is a very cool project.
Seriously this is really geeky stuff, but super cool.
If you think seeing a dozen wireless networks makes your computer the ultimate scanning box, think again. A small security firm has made a portable computer that is capable of scanning 300 networks [...]
Announcing a new web application source code analysis tool called the Securitycompass Web Application Analysis Tool or SWAAT.
You may know it as a static analysis tool.
Currently in its beta release, this .Net command-line tool searches through source code for potential vulnerabilities in the following languages:
Java and JSP
ASP.Net
PHP
Using xml-based signature files, it searches for common functions [...]
This is a little scary, intensely personal ads which to be frank are getting a little invasive as it is..It’s like the part in minority report where the billboards scan your eyes and talk to you using your name and history of purchases.
It looks like it might be happening sooner than we think.
The first thing [...]
There’s been a lot of nice Web relevant testing and hacking tools coming out lately, I’ve gotten quite a collection to post about, so do try them out and let me know what you think.
BeEF is the browser exploitation framework. Its purposes in life is to provide an easily integratable framework to demonstrate the impact [...]
It makes sense really, the paranoia that quickly infected every corner of the ‘Western’ world had to be cashed in on by somebody, tada! The security industry of course.
During the Cold War, Canada’s National Optics Institute developed a system to detect which type of enemy tank or fighter jet was approaching. After the Soviet Union’s [...]
arp-sk is basically an ARP Traffic Generation Tool. It’s quite old but still very useful!
There are 2 basics mode:
– who-has: build a request ARP message.
– reply: build a reply ARP message (default)
Other advanced modes should come very soon
– arping: send a who-has to every host on the LAN to [...]
Not sure if any of you heard of this new super secure ultra cool web browser called Browzar?
There was a bit of a backlash as it turned out Browzar was just another custom wrapper for Internet Exploder.
Security experts are crying foul over a new supposedly secure browser application.
Browzar is promoted as an easy way for [...]
Echo Mirage is a generic network proxy. It uses DLL injection and function hooking to redirect network related function calls so that data transmitted and received by local applications can be observed and modified.
Think of it as Odysseus (or Burp, if you prefer) that will proxy (almost) anything…
Windows encryption and OpenSSL functions are also hooked [...]
It seems like war-driving may become a thing of the past, legislation is starting to happen.
It’s a good start though, you have to target the manufacturers to educate their users, not target the users as they don’t care, sometimes ease of use has to be traded a bit with security.
California legislators have passed a law [...]
A new revision of Inprotect has just been released, 0.22.5 in order to fix bugs and implement feature requests submitted by the development team and users. Existing users are recommended to upgrade.
Inprotect is a web interface for Nessus and Nmap security scanners, released under GNU/GPL license. This version has the following enhancements:
Improved and fixed [...]
FindBugs looks for bugs in Java programs. It is based on the concept of bug patterns. A bug pattern is a code idiom that is often an error. Bug patterns arise for a variety of reasons:
Difficult language features
Misunderstood API methods
Misunderstood invariants when code is modified during maintenance
Garden variety mistakes: typos, use of [...]
Ah Facebook again, security problems again?
Not this time, but privacy fears with the new stalker-esque features for tracking changes to people’s pages.
Millions of people have flocked to social networking sites to post information about themselves and share it with friends.
Now Facebook, one of the most popular, is facing a user backlash over a recent redesign [...]
For those that didn’t see, there is a new all singing all dancing ‘light-weight’ Codec in town that is actually a trojan.
Indeed it’s not the first time we’ve seen this kind of thing.
The zCodec software actually messes with your DNS settings.
Users looking for the latest and greatest video software may not just be in danger [...]
New versions of the ultracool tools pwdump (1.4.2) and fgdump (1.3.4) have been released.
Both versions provide some feature upgrades as well as bug fixes. Folks with really old versions of either program should definitely look at upgrading, since there are numerous performance improvements and full multithreading capabilities in both packages.
If you don’t know..what are pwdump6 [...]
Looks like Mozilla is toughening it’s stance on security, people have been putting it down lately, especially those from the Microsoft camp as there have been a few flaws.
But well, it’s still not part of the operating system, the flaws are generally fixed within a couple of days and the patching system is simple and [...]
It has happened quite a few times lately, politically tight situations, mistakes, data or information leaks and whoops damn…er…let’s blame it on hackers!
Case 1:
California Highway Patrol officials have opened a criminal investigation into “multiple” breaches and illegal downloads by outside hackers into the computers of Gov. Arnold Schwarzenegger’s office, after an embarrassing private taped conversation [...]
Odysseus is a proxy server, which acts as a man-in-the-middle during an HTTP session. A typical HTTP proxy will relay packets to and from a client browser and a web server. Odysseus will intercept an HTTP session’s data in either direction and give the user the ability to alter the data before transmission.
For example, during [...]
An interesting enough article, but if you work in infosec you could probably guess the topics anyway.
In a key step to help businesses better understand and protect themselves against the risks of fraud, Visa USA and the U.S. Chamber of Commerce announced the five leading causes of data breaches and offered immediate, specific prevention strategies [...]
LAPSE stands for a Lightweight Analysis for Program Security in Eclipse. LAPSE is designed to help with the task of auditing Java J2EE applications for common types of security vulnerabilities found in Web applications. LAPSE was developed by Benjamin Livshits as part of the Griffin Software Security Project.
LAPSE targets the following Web application vulnerabilities:
Parameter manipulation
SQL [...]
An interesting new twist on things, rather than using cookies to store information you can use perpetually cached files.
So clearing your cache and cookies isn’t enough, could be a privacy issue you say, indeed it could..
Clearing cookies may not be enough as you may think. Your browser’s cache is a valuable store of information. A [...]
If you are paranoid about people ARP spoofing or flooding on your network you can use ARPWatch-NG, ARPWatch-NG is a continue of the popular original ARPWatch from ftp://ftp.ee.lbl.gov/.
ARPWatch monitors MAC adresses on your network and writes them into a file, last know timestamp and change notification is included.
It can be used it to monitor for [...]
No surprise really? Microsoft and they monopoly strategies, anti-competitive behaviour, nothing new really is it?
Microsoft and its security rivals are feuding over a key piece of Windows Vista real estate.
The fight is over the display of technology that helps Vista owners manage the security tools on their PC. Symantec, McAfee, Check Point Software Technologies and [...]
BobCat is a tool to aid a security consultant in taking full advantage of SQL injection vulnerabilities. It is based on a tool named “Data Thief” that was published as PoC by appsecinc. BobCat can list the linked severs, database schema, and allow the retrieval of data from any table that the current application user [...]
Cyber and computer laws are always a grey area, they tend to be very vague and don’t cover specific technologies.
Spam is a good example, look at how long we’ve been getting spammed, and it’s been a SERIOUS problem for at least the last 5 years, spam legislation has only started coming in to effect in [...]
Continuing with the series of tools I’ve been posting on source code auditing and application security, here is PMD a Java Source Code Scanner.
PMD scans Java source code and looks for potential problems like:
Possible bugs – empty try/catch/finally/switch statements
Dead code – unused local variables, parameters and private methods
Suboptimal code – wasteful String/StringBuffer usage
Overcomplicated expressions – [...]
This has just been posted to Bugtraq.
For now you can test if your version is vulnerable, here. (will cause Firefox to close)
So far Firefox 1.5.0.7 and 2.0 (Linux) have been tested, and both vulnerable. Firefox 1.0.7 (Win32), not vulnerable.
The code used on the test page and the one submitted to Bugtraq can be found here.
Severity: [...]
Hackers are switching targets now, companies are getting too hard to break into due to the availability of decently configured perimeter kit like firewalls and IDS.
Plus the information they do get if they manage to break in is often worthless commercially and really not worth the effort.
So instead, they target the end user, home bankers, [...]
Wyd is a neat tool I found recently for Password Profiling.
In current IT security environments, files and services are often password protected. In certain situation it is required to get access to files and/or data even when they are protected and the password is unknown.
wyd.pl was born out of those two of situations:
A penetration test [...]
This is pretty funny, but frankly typical of McDonalds..act before they think, it’s cheap, it’ll get more customers, whack it out!
They gave out a bunch of flash drive mp3 players as a promotion, it turns out every single one was loaded with a fairly nasty piece of spyware!
McDonalds Japan has launched a recall after discovering [...]
The battle is heating up between the spammers e360 and the anti-spam warlords Spamhaus, some say the Internet may meltdown if Spamhaus stops its service..
Some estimates say 80% of spam is stopped by Spamhaus and e-mail could suddenly shoot to a server melting rate if their service is pulled.
The legal battle between antispam organisation Spamhaus [...]
Taof is a GUI cross-platform Python generic network protocol fuzzer. It has been designed for minimizing set-up time during fuzzing sessions and it is especially useful for fast testing of proprietary or undocumented protocols.
Taof aids the researcher during the data retrieval process by providing a transparent proxy functionality that forwards and logs requests from a [...]
This is the first part (of many others to come) consisting of basic a introduction to different viruses, some terminology and other aspects required before starting to understand or write viruses…
Definition
A virus is (taken from Windows XP’s Help And Support Center):
A program that attempts to spread from computer to computer and either cause damage [...]
Medusa is intended to be a speedy, massively parallel, modular, login brute-forcer. The goal is to support as many services which allow remote authentication as possible. The author considers following items as some of the key features of this application:
Thread-based parallel testing. Brute-force testing can be performed against multiple hosts, users or passwords concurrently.
Flexible user [...]
Now for once, this is a really neat use of technology, someone using their brains and a suitable tech to solve a problem that is very apparent.
PERL may be frowned upon by some as being old or outdated, but seriously for parsing data, pattern matching and trawling, it’s still excellent and you can get a [...]
With this simple tutorial I will explain how to install Nessus client (nessus) and Nessus Daemon (nessusd) and properly register it, so you don’t end up with the limitations of a non-registered version of the vulnerability scanner.
Installing:
I personally use apt-, however, you may choose any other package manager.
apt-get install nessus nessusd -y
This will install the [...]
This a very old article based on my tiny document “WinDOS tools” which was for a short while on Blackcode, before it was shutdown… It was an article to impres my friends, but found some usefull stuff two when writing it… so let’s take a look at some “hidden” Windows XP programs…
MAC Address (getmac)
It seems [...]
Data security giant McAfee has bought a young Tel Aviv startup, Onigma, for somewhere between $15 million to $25 million cash, surmise hi-tech circles.
McAfee will be integrating the Onigma technology in its enterprise security solution, and will be recruiting dozens more Israeli developers for the startup, which will become a local R&D center.
Onigma was founded [...]
w3bfukk0r is a forced browsing tool, it basically scans webservers (HTTP/HTTPS) for a directory by using HTTP HEAD command and brute force mechanism based on a word list. Features:
HTTP/HTTPS(SSL) support
Banner grabbing
User-Agent faking
Proxy support (HTTP/S)
Reports found and non-existend directories
Example output:
w3bfukk0r http://nion.modprobe.de
Starting w3bfukk0r 0.2
Scanning http://nion.modprobe.de/ with 76 words from words.txt
Found http://nion.modprobe.de/tmp/ (HTTP 200)
Found http://nion.modprobe.de/blog/ (HTTP 200)
Found http://nion.modprobe.de/img/ [...]
Hackers are developing new software that will help hide browser attack code from some types of security software.
The software, called VoMM (eVade o’ Matic Module), uses a variety of techniques to mix up known exploit code so as to make it unrecognizable to some types of antivirus software.
Using these techniques, VoMM “can create an endless [...]
AttackAPI provides simple and intuitive web programmable interface for composing attack vectors with JavaScript and other client (and server) related technologies. The current release supports several browser based attacking techniques, simple but powerful JavaScript console and powerful attack channel and associated API for controlling zombies.
The standalone components of the library can be found at the [...]
A dream come true, would I say… recently found this article on securityfocus, it’s awesome… all that you need (beside Firefox) is pointed out in the article, so go on, what are you waiting for…
http://www.securityfocus.com/infocus/1879
Here is a newly released VA methodology, the author believes it to be more focused, and thus cost effective VA process. It may map to internal work, but it is probably more suited to external sites.
It’s gone through a couple of revisions so it’s a bit more polished now.
You can find the notes on the [...]
Oracle in its very own style recently published a mega patch, it could be called the mother of all patches.
Actually 101 bugs…the scary part is 45 can be exploited remotely.
Oracle published the mother of all security patches containing 101 fixes for flaws in its database, application server, E-Business Suite and PeopleSoft and JD Edwards applications.
Almost [...]
The Metasploit Framework is an advanced open-source exploit development platform. The 2.7 release includes three user interfaces, 157 exploits and 76 payloads.The Framework will run on any modern operating system that has a working Perl interpreter. The Windows installer includes a slimmed-down version of the Cygwin environment.
Windows users are encouraged to update as soon [...]
In this part we will discuss the basic framework of a computer virus… The basics of a virus consists of two elementary procedures (others will tell you three). These are:
a search routine
a infection routine
[anti-detection routines]
The search routine
This routine will have to be a more delicate one [but not hard to analyze at all], because as [...]
It seems finally someone has found a flaw in the way Tor works, a way to beat it and find out who is using the system.
Perhaps an end to the most anonymous system on the Internet?
I got this info fresh from SANS.
One of our readers sent in a very worrying analysis of what appeared to [...]
0×00: Preface
Media, kindly supported by AV “experts”, drawn apocalyptical vison of desctruction caused by stupid M$ Outlook / VisualBasic worm, called “ILOVEYOU”. Absurdal estimations – $10M lost for “defending the disease”, especially when you take a look at increasing with the speed of light value of AV companies market shares, made many people sick. Lame [...]
This was a while back, but with Microsoft’s security record it’s pretty much inevitable..
Even before release (as with Vista) flaws were found.
Introduction
A vulnerability has been discovered in Internet Explorer, which can be exploited by malicious people to disclose potentially sensitive information.
Please use the test below, to see an example of how this vulnerability can be [...]
The Metasploit Framework is an advanced open-source exploit development platform. The 3.0 tree represents a complete rewrite of the 2.0 codebase and provides a scalable and extensible framework for security tool development. The 3.0 Beta 3 release includes support for exploit automation, 802.11 wireless packet injection, and kernel-mode payloads.
Windows users are now presented with a [...]
(IN)SECURE Magazine is a freely available digital security magazine discussing some of the hottest information security topics. It can be distributed only in the form of the original non-modified PDF document.
The 9th issue of (IN)SECURE magazine was recently released, in this issue you can find the following:
Effectiveness of security by admonition: a case study of [...]
The first round results of the Linux Reverse Engineering Hacker Challenge are out!
http://www.hackerchallenge.org
It was expected that an intermediate hacker with Linux experience should be able to defeat the protection(s) in less than 10 hours. Participants may earn up to $4100 USD.
A total of 93 individuals registered to participate in the first Hacker Challenge. Individuals were [...]
This is just a simple warning to all NMAP users out there. If you’re registered on the announcement mailing list you already now this, otherwise, heads up.
NMAP 4.20 has been released with something that looks promising. 2nd generation OS detection. The changelog is available here.
Enjoy!
UK Police have uncovered a fairly massive data theft operation with a total close to 8,500 victims.
It’s quite worrying when things like this are uncovered as if 1 is uncovered or discovered…imagine how many aren’t found out about, just like exploits.
British electronic-crime detectives are investigating a massive data theft operation that stole sensitive information from [...]
There has been a recent release of Backframe (Formerly Backweb) Attack Console.
Backframe Attack Console was started as an experiment to create a full featured attack console for exploiting web browsers, web users and remote applications. Those who are familiar with XSS Proxy or even BEEF might already be familiar with the core principles of the [...]
When things like this happen it’s kinda of scary, like a while back when someone managed to get into a highly secure power station network through a stupid contractors laptop that was connected to the net via dialup and to the uber ’secure’ power station LAN.
An infected laptop PC gave hackers access to computer systems [...]
This is the one and only (and first article) which will present you the source code of a virus on Darknet, and a lame one too
Theory again…
First should mention a couple of things which haven’t been specified till now. This virus is going to be an appending virus:
An appending virus is a virus [...]
SinFP is a new approach to OS fingerprinting, which bypasses limitations that nmap has.
Nmap approaches to fingerprinting as shown to be efficient for years. Nowadays, with the omni-presence of stateful filtering devices, PAT/NAT configurations and emerging packet normalization technologies, its approach to OS fingerprinting is becoming to be obsolete.
SinFP uses the aforementioned limitations as a [...]
This is a pretty interesting idea and for once it addresses a real requirement. A lot of stories have hit the press about people getting fired or ‘dooced’ because of stuff online or not even getting jobs because of something found on MySpace.
So up pops a company that is willing to protect your reputation online.
The [...]
XSS Shell is a powerful XSS backdoor which allows interactively getting control over a Cross-site Scripting (XSS) vulnerability in a web application. Demonstrates the real power and damage of Cross-site Scripting attacks.
WHAT IS XSS SHELL ?
XSS Shell is powerful a XSS backdoor and zombie manager. This concept first presented by XSS-Proxy (http://xss-proxy.sourceforge.net/). Normally in XSS [...]
A new worm is spreading fast on the Skype network, it’s activated by a malicious Skype Chat link and it has been seen in the wild in numerous places.
Apparently the dangerous link starts with “Check this!” pointing to a .org/.biz address, if you click the link you’ll become infected.
There have been no reports of unpatched [...]
Today while browsing I suddenly came across projectBypass, which is a very useful website which acts as a proxy, and assures us 100% anonymity:
Make ProjectByPass your homepage for 100% secure web surfing! Keep your online activity free from potential attackers.
…of course I have my doubts about this because…
ProjectByPass.com is a FREE Web Based CGI Proxy [...]
It’s been a good year for Darknet since the relaunch in February and I’d like to take this chance to thank you for your readership, with over 2300 RSS subscribers during the week the readership has grown into a solid base.
I’d like to thank you all for reading, commenting and linking to Darknet and supporting [...]
It seems like phishers are changing their tactics to those similar to spammers, rather than going for big targets and mass mails they are turning to more wealthy customers and fewer but larger bounties.
Imagine if they can nail a few big ones, they are set.
Online fraudsters are turning their attentions away from large banks and [...]
Grab the new Firefox now, 2.0.0.1! 8 Security Vulnerabilities have been fixed in this last release of the year 2006.
I’m glad to see Firefox upholding their quick turnaround and rapid fixing of issues that spring up during development and improvement of their product.
Mozilla has released the first update for the Firefox 2.0 browser to fix [...]
TXDNS 2.0.0 has been released.
TXDNS is a Win32 aggressive multithreaded DNS digger. Capable of placing, on the wire, thousands of DNS queries per minute. TXDNS main goal is to expose a domain namespace trough a number of techniques:
Typos
TLD rotation
Dictionary attack
Brute force
This new version features a distributed model which further boosts TXDNS’s parallelism and performance. This [...]
There seems to be have been some slight relaxation on the DMCA regulations lately, which is a good thing for the majority of people!
There have been many grey cases and sadly most have fallen on the side of the big corporations, finally something on our side!
The U.S. Copyright Office specified new rules Wednesday allowing cellphone [...]
GoldenEye is a brute-force hacking program and was written for web-masters to test the security of their own sites. This is an oldskool file, a lot of people are still looking for this.
It should not be use by others to hack sites – this would be illegal! Under no circumstances should the author or any [...]
It seems the recent fake login flaw effects both Internet Exploder and Firefox.
Good to keep alert and with the new update mechanism it’s very simple to update your Firefox installation.
The latest versions of both Firefox and Internet Explorer are vulnerable to an unpatched flaw that allows hackers to snaffle users’ login credentials via automated phishing [...]
WWWhack is a brute force utility that will try to crack web sites guarded by an web access password. This utility can use a word file or try all possible combinations, and by trial-and-error, will attempt to find a combination of username/password that is accepted by the web server.
This shows the weakness in securing sensitive [...]
