May 2012
3 tags
“Introduction to OpenVAS. Open Source Vulnerability Scanner http://t.co/yKvBf4cR...”
– via @WebUpd8 - http://bit.ly/JO9JEI
3 tags
“[Video] Spying the network with Backtrack 5 http://t.co/mbHqEx9G by...”
– via @SecurityTube - http://bit.ly/JzeU4M
3 tags
“Get Rich or Die Trying - Black Hat 08072008: http://t.co/cgdcktfb”
– via @ZeroDayLab - http://bit.ly/JNERE5
3 tags
WatchMusic video by Kat Graham performing Put Your Graffiti On Me (Digital Dog Remix). (C) 2012 A&M/Octone Records. Like me: http://on.fb.me/KO2S9G
1 tag
WatchKat Graham - Put Your Graffiti On Me (Digital Dog Remix) by Fun Furret
1 tag
WatchWoo-Hoo! by TimnEvan
3 tags
WatchFun with the Super Stearman and some GoPro HD Hero 2’s
3 tags
“Frogger - The VLAN Hopper script. Auto enumerates and assists with VLAN hopping....”
– via @commonexploits - http://bit.ly/Lrwizm
Blackbuntu for Security+ →
ghoulmann:
Blackbuntu is distribution for penetration testing which was specially designed for security training students and practitioners of information security.
Blackbuntu is Ubuntu base distro for Penetration Testing with GNOME Desktop Environment. It’s currently being built using the Ubuntu 10.10.
OpenVPN Authentication Using PAM and Duo Security
403labs:
It’s possible to configure OpenVPN with two-factor authentication utilizing PAM and Duo Security’s phone authentication on Ubuntu 10.04 LTS.
You just need to think like a hacker… By using password concatenation with OpenVPN’s PAM plugin and Duo Security’s plugin, your password will be comma-delimited, supporting both a PAM integrated password and Duo Security’s phone authentication.
...
$ cat /body/brain/left: Basic Malware Analysis →
forlackofacontingencyplan:
Blog Qualification: ultra amateur. I’d never done anything like this before, so there may be a number of things overlooked or just plain wrong, but it was a ton of fun.
For this piece, I attempted to analyze a real malware sample recently submitted to minotauranalysis.com.
Minotaur Sample…
$ cat /body/brain/left: Secure VNC without opening... →
forlackofacontingencyplan:
Another “SSH tunnel to the rescue” kind of thing… I despise having to open ports on internet-facing routers, but dang it if you just need more services sometimes.
The situation: SSH being forwarded to a Linux box, and VNC running on a Windows box (not to imply that this would go any differently…
WorkiLeaks: How to Be a Workplace Leaker Without...
jimsreading:
http://bit.ly/Ie9mvx May 06, 2012 at 03:50PM via Pocket
Backing up and Archiving Google Mail Accounts →
tachang:
The easiest way to backup Google Mail accounts is to enable IMAP on the account and download the messages using getmail. Once getmail is installed you need to create a file called getmailrc. If you plan to download multiple gmail accounts then you might want to create a directory for each…
At least 10,000 people have now died in the...
Black Cat Hacks: TURNING FIREFOX TO AN ETHICAL... →
blackcathacker:
Information gathering
Whois and geo-location
ShowIP : Show the IP address of the current page in the status bar. It also allows querying custom services by IP (right mouse button) and Hostname (left mouse button), like whois, netcraft.
Shazou : The product called Shazou…
Nice Blog Post on Tmux - A Screen Alternative →
Return Boolean True: Using Github Through... →
tachang:
Here is a pretty standard scenario at most corporations: - All access to the internet is restricted to a proxy - The proxy only allows connections out on port 80 and 443 - CONNECT method is only enabled for 443 - Proxy Authentication is required (NTLM or Basic) I like to use both Windows and…
RXGX: Cloud Server Security Checklist for Ubuntu... →
rxgx:
Update May 14: I’ve placed this content into it’s own Gist if you want to follow along with changes for 12.04 LTS.
The following is a checklist I keep in my Google Docs for firing off a new Ubuntu cloud server instance. I know I should be using Chef or Puppet by now but I only do enough system…
RANDOM AS: Virtual machines for testing IE →
seantindale:
(These instructions should work on Ubuntu or Linux Mint)
Today I found a great little script that makes testing on IE via virtual machines easy.
The script is here on github. This script will automatically download a collection of windows VMs that have the various versions of IE that you…
exploit-exercises.com →
codethiscodethat:
Welcome
exploit-exercises.com provides a variety of virtual machines, documentation and challenges that can be used to learn about a variety of computer security issues such as privilege escalation, vulnerability analysis, exploit development, debugging, reverse engineering.
OpHackStorm: Anonymity Networks. Don't use one,... →
ophackstorm:
Introduction
The 3 major anonymity networks on the Internet are Tor/Onionland, I2P and Freenet. If you feel confused on which one is the “best” one to use the answer is simple. Use all three!
Each anonymity network is designed for a different specific purpose. One network…
AntiSec Tutorials →
kroanon:
Some good tutorials here for #AntiSec http://bit.ly/J2jdsg :D
OpHackStorm: Secure Your Wireless Network from... →
ophackstorm:
Wireless networks. Nowadays, everyone uses ‘em, but most don’t secure ‘em. On average, I can drive up and down any block in my city and find at least one or two open or semi-open networks on any given day. With some changed MAC addresses for good measure, an attacker can use your network as…
35 Pentesting Tools Used for Web Vulnerability... →
whitedork:
Introducing 35 Pentesting Tools Used for Web Vulnerability Assessment
1. w3af
w3af or Web Application Attack and Audit Framework is an open source penetration testing tool for finding web vulnerabilities and an exploit tool that comes with cool plugins like…
How Germany’s Pirate Party is hacking politics —... →
sinshine:
Liquid Democracy lets party members delegate their votes to other people for everything, or only for certain policy areas, or not at all. It’s effectively a sliding scale between representative and direct democracy, with each voter choosing what level of responsibility and control they want to have.
Armory - Packet Life →
Really useful tools for every hacker or pentester
150+ tools for Unix and WIndows. (netcat, nessus, snort, Metasploit Framework, Scapy, GNS3, hping …)
3 tags
“Vistumbler is a wireless network scanner for Vista. WiFiDB is a database to...”
– via @sourceforge - http://bit.ly/LK9586
