Comments on: unmask.py - Statistical E-mail & Blog Profiling http://www.darknet.org.uk/2007/10/unmaskpy-statistical-e-mail-blog-profiling/ Ethical Hacking, Penetration Testing & Computer Security Thu, 04 Dec 2008 17:24:30 +0000 http://wordpress.org/?v=2.6.5 By: Sir Henry http://www.darknet.org.uk/2007/10/unmaskpy-statistical-e-mail-blog-profiling/#comment-83590 Sir Henry Fri, 14 Dec 2007 19:34:16 +0000 http://www.darknet.org.uk/2007/10/unmaskpy-statistical-e-mail-blog-profiling/#comment-83590 Darknet, have you tried this tool yet? What are your thoughts on it? It would be interesting to see any results from a test. Darknet, have you tried this tool yet? What are your thoughts on it? It would be interesting to see any results from a test.

]]> By: dre http://www.darknet.org.uk/2007/10/unmaskpy-statistical-e-mail-blog-profiling/#comment-69334 dre Thu, 25 Oct 2007 23:07:16 +0000 http://www.darknet.org.uk/2007/10/unmaskpy-statistical-e-mail-blog-profiling/#comment-69334 watch as <a href="http://the-mathclub.net" rel="nofollow">christopher abad</a> explains how <a href="http://the-mathclub.net/site/survey/4.html" rel="nofollow">behaviorial analysis can be applied to user fingerprinting</a> in his <a href="http://the-mathclub.net/index.php/A_Survey_of_Novel_Approaches_to_Network_Security" rel="nofollow">slides from Toorcon 2004</a>. the <a href="http://the-mathclub.net/site/survey/4-2.html" rel="nofollow">winner</a> of a selected set of words can be predicted based on their use of the command line (bash shell in this case). i just saw chris abad speak again at toorcon 9 this past weekend. he is an excellent speaker, and usually "you have to be there" to understand - his work can' really be explained. i imagine that with abad's techniques (and dave aitel's techniques in umask.py) - along with hdm's <a href="http://www.metasploit.com/research/misc/decloak/" rel="nofollow">decloak</a>... and a little Google Analytics <a href="http://www.tssci-security.com/archives/2007/09/12/using-google-analytics-to-subvert-privacy/" rel="nofollow">cookie saving</a> and <a href="http://www.tssci-security.com/archives/2007/10/17/more-on-google-analytics-now-with-stolen-search-queries/" rel="nofollow">search query stealing</a> - you can gather tons of information on random bloggers or other website users. watch as christopher abad explains how behaviorial analysis can be applied to user fingerprinting in his slides from Toorcon 2004. the winner of a selected set of words can be predicted based on their use of the command line (bash shell in this case).

i just saw chris abad speak again at toorcon 9 this past weekend. he is an excellent speaker, and usually “you have to be there” to understand - his work can’ really be explained.

i imagine that with abad’s techniques (and dave aitel’s techniques in umask.py) - along with hdm’s decloak… and a little Google Analytics cookie saving and search query stealing - you can gather tons of information on random bloggers or other website users.

]]>