We all have to surf to different sites we do not trust.

Good to have a general idea what the site might have installed for you:

http://zulu.zscaler.com/

Cheers,

Matti

PS: We are benign: http://zulu.zscaler.com/submission/show/70f1d1dc97d2b6e291e2f7c4f63a9c1d-1337103508

This is a really interesting read:

http://group-ib.com/images/media/Group-IB_Report_2011_ENG.pdf

page 5 if you do not like to read. The numbers are impressive.

Also I like it that this is not just numbers but also has some stories at the end.

Really good write up—

Cheers,

Matti

Just putting this out in the Internet so that when someone faces the same problem that I do this will, hopefully, give them a solution.

You’re using wicd-client to connect to wireless networks, you click Connect, the usual sequence appears… “Putting interface up”, “Validating Authentication”, “”Obtaining IP Address”, “Done connecting…” but then wicd says “Not connected”.  Your wicd.log file ends in something like this:

DHCP connection successful

not verifying

Connecting thread exiting.

Sending connection attempt result success

The solutions are either:

• Kill your dhcpcd process, either simply with “killall dhcpcd” or “/etc/init.d/dhcpcd stop“.
• Less reliably, just keep trying the connect button, sooner or later dhcpcd gets the idea, and will grab an IP address for you.

Came across a nice tool for uploading to a compromised system:

http://blog.gentilkiwi.com/mimikatz/inject

There is a nice method of getting the local password, without cracking any hashes or passing on hashes.

All to do with the SSO implementation in windows. Really nice and works in seconds.

Also cool to inject DLLs into all processes and get it to communicate with the process.

So no reason not to put it into once arsenal…

Cheers,

Matti

There is an  interesting change in the last half of 2011 on DDoS attacks.

A good read up can be found here:

http://www.securelist.com/en/analysis/204792221/DDoS_attacks_in_H2_2011

Cheers,

Matti

There are a lot of IT security certificates out there.

But I believe one of the best you can get is:

http://www.ces-approved.org/

Check it out.

Cheers,

Matti

It might be worth to test your applications for SQL Injection.
Here a list of tools:

Sqlninja ( http://sqlninja.sourceforge.net/ )
sqlmap ( http://sqlmap.sourceforge.net/ )
Pangolin 3.2.3 free edition ( http://down3.nosec.org/pangolin_free_edition_3.2.3.1105.zip )
Havij v1.14 Advanced SQL Injection – free version ( http://www.itsecteam.com/files/havij/Havij1.14Free.rar )
SQL Power Injector ( http://www.sqlpowerinjector.com/ )
Marathon Tool ( http://www.codeplex.com/marathontool )
Absinthe ( http://www.0×90.org/…inthe/index.php )
pysqlin ( http://code.google.c…source/checkout )
BSQL Hacker ( http://labs.portcull…on/bsql-hacker/ )
SQL Injection digger (SQLID) ( http://sqid.rubyforge.org/#download)
WITOOL ( http://witool.sourceforge.nSQL, Oracle, Microsoft SQL Server and Microsoft Access.et/ )
sqlus ( http://sqlsus.sourceforge.net/ )
DarkMySQLi16.py ( http://vmw4r3.blogspot.com/ )
mySQLenum ( http://sourceforge.n…ects/mysqlenum/ )
PRIAMOS ( http://www.priamos-project.com/ )
FJ-Injector Framework ( http://sourceforge.net/projects/injection-fwk/files/)
Bobcat SQL Injection Tool ( http://www.northern-…pub/bobcat.html )
SQLIer 0.8.2b  ( http://bcable.net/releases.php?sqlier )
bsqlbf-v2 ( http://code.google.com/p/bsqlbf-v2/ )
Safe3 Sql Injector ( http://sourceforge.net/projects/safe3si/)
ExploitMyUnion ( http://sourceforge.n…exploitmyunion/ )Laudanum ( http://sourceforge.n…jects/laudanum/ )
WebRaider ( http://code.google.com/p/webraider/ )
Toolza 1.0 ( http://bug-track.ru/prog/toolza1.0.rar )
SCRT Mini-MySqlat0r (http://www.scrt.ch/attaque/telechargements/mini-mysqlat0r)
SFX-SQLi ( http://www.kachakil.com/ )
DarkMySQL ( http://vmw4r3.blogspot.com/ )
ProMSiD Premium ( http://forum.web-def…02&postcount=15 )
yInjector ( http://y-osirys.com/…-softwares/id10 )
Hexjector ( http://sourceforge.n…ects/hexjector/ )

Happy hacking…

Cheers,
Matti

Live CDs

Avira AntiVir Rescue System
http://www.avira.com/de/support-download-avira-antivir-rescue-system

F-secure Rescue-cd
http://www.f-secure.com/en/web/labs_global/removal/rescue-cd

BitDefender Rescue CD
http://www.heise.de/software/download/bitdefender_rescue_cd/56298dl_7469f31745ca2bd873d8a959cd9bf6ef_1328034493

Kaspersky Rescue Disk
http://rescuedisk.kaspersky-labs.com/rescuedisk/updatable/

G Data BootCD
http://www.gdata.de/support/downloads/tools.html

Dr.Web LiveCD
http://www.freedrweb.com/livecd/

Trinity Rescue Kit
http://trinityhome.org/Home/index.php?content=TRINITY_RESCUE_KIT_DOWNLOAD&front_id=12&lang=en&locale=en

Tools

Malwarebytes
http://www.malwarebytes.org/

Spybot - Search & Destroy 2.0
http://www.safer-networking.org/de/spybotsd2/index.html

Hijackthis
http://www.trendsecure.com/portal/de/tools/security_tools/hijackthis

Keep it clean…
Cheers,
Matti

1. Provide the fastest means of training novices about complex social engineering concepts.
2. Provide penetration testers with a methodology that minimizes their effort while increasing their chance of success.

The truth is far from this, and the detail is unnecessary - I started writing references and in the end realised I was referencing at least every page, if not every paragraph.

In summary, the document is an “eighties text file” style rant about the author’s personal irritants; it doesn’t really detail a methodology at all, and concentrates on how to attack a single person rather than an organisation or other goal.  For example as part of a Social Engineering engagement the author appears to advocate the exploitation of phobias, use of lighting to induce migraines in the target, gaining rapport with the target through mutual use of illegal drugs, and torture.  I strongly suggest reading for entertainment purposes only.

In stating the above I’m presuming that Penetration Testers all obey the law, their job being to simulate the effect of criminal acts rather than commit them; also their intention is to show the customer that they are can be trusted with the information and access they’ve been granted. Also that as part of the engagement a Penetration Tester is not permitted nor willing to cause permanent physical and/or psychological damage to their client’s employees. The legal liability incurred by trying out many of the techniques listed would be “interesting.”

We did it!!!
We are now an official hacking site.
You do not believe us? … Well, see for yourself

Yea baby

Cheers,
Matti