ADtool is a neat tool to help you list all the machines that are part of an Active Directory driven domain or network. It is intended to help pentesters and admins in their day to day work, there are some other tools that can accomplish the work for listing domain servers, but unfortunately all other […]
Archives for 2007
Defense Workers Warned About Spy Coins for Espionage
[ad] This is a pretty cool new development, something straight out of a Tom Clancy thriller or a spy/hacker movie. Introducing Spy Coins! People are actually being warned about picking up stray coins as they might have surveillance devices inside. Can the coins jingling in your pocket trace your movements? The Defense Department is warning […]
LFT – Layer Four Traceroute and WhoB
[ad] LFT LFT, short for Layer Four Traceroute, is a sort of ‘traceroute’ that often works much faster (than the commonly-used Van Jacobson method) and goes through many configurations of packet-filters (firewalls). More importantly, LFT implements numerous other features including AS number lookups through several reliable sources, loose source routing, netblock name lookups, et al. […]
Serious XSS Flaw in Google Desktop Allows Data Theft
[ad] Google has fixed a security flaw in its desktop search software that created a means for hackers to rifle through personal files on users’ PCs. A failure in Google Desktop to “properly encode output containing malicious or unexpected characters” created a means for hackers to cross from the web environment to the desktop application […]
Why Blurring or Mosaicing Important Information is a BAD Idea
[ad] I saw a pretty interesting article a few days attempting to reverse engineer the mosaic tool used often online to obscure sensitive or confidential information. The article shows that the mosaic isn’t actually very random, and in a way you can brute force reverse engineer the mosaic to reveal the contents before they were […]