Friday, October 31, 2008

MetaSploit Timeline

Ever wanted to know what exactly changed? Check out the following link:

Thursday, October 30, 2008

10 Linux Desktop Themes

These are pretty sweet. I know I have been slacking on the security links and I swear this is the last frufru for a while.

Tuesday, October 28, 2008

Malware Challenge Answer

More than you ever wanted to know about what you can do with Malware without executing it:

Hosting Co. 2.0 - Sevo

Pretty awesome small company that treats their customers personally.

CD Burning on the Road

Who still burns CDs? Well, if you do, keep this program handy on your USB stick. It does DVDs and CDs alike and can handle most formats:

Thursday, October 23, 2008

Fail Whale

Nothing can compare the the level of "Fail" shown here:

Terry Tate is back and ANNNGGRRRY

The PAIN TRAIN was coming, you didn't believe me, but now it's HERE and you better be ready! 'cause it's coming for YOU

Wednesday, October 22, 2008

The Zone-H of XSS

And if you don't know what Zone-H is:
It's an archive, but some would say a "leader board" of defaced web sites.

Fonera Hacks

For all your Fon Hacking needs

Tuesday, October 21, 2008

Chuck Norris - THIS IS TEXAS

A little something for iPhone fanboys

Yes, I am one of them and I still thought this was hilarious:

Infinity Exists

An interesting video blog that goes into some pretty deep topics. They are a bit young and are into the "underground", but great content.

Monday, October 20, 2008

Synergy on Steroids

Yup, that's right, someone made a better virtual KVM. Here is the problem, it's only for Winders

Sunday, October 19, 2008

SQL Injection for the Boss

I asked the question on twitter a while ago and Daniel Miessler posted about it (There are some really good comments):

Michael Mcintyre

Wednesday, October 15, 2008

Tuesday, October 14, 2008

Don't Use Default Passwords

You tell your users to not use default passwords. Now you can check to see if they are doing as you asked.

Thursday, October 9, 2008

Wednesday, October 8, 2008

Doing great things

These are a bunch of leading edge guys doing great things. Check out Episode 11 of Securabit to get filled in.
Defcon Group 949


Try running all of your traffic for the day through this baby. You will be surprised how many sites you no longer trust with your information.
ratproxy - Google Code

Security / Tech RSS feeds on crack: is Keepin ya updated!

List of useable bluetooth dongles

Give Me Too!

Imagine Cain and Able's arp spoofing coupled with Network Miner's ability to reconstruct packets. - spy software free download page - Family Key Logger, Home Free Keylogger download, Internet Spy, network sniffer.

Ignore the rest of the crap on the page.

Not exactly sure that I like the idea of sharing what apps I have on my system but it a great resource ;-)
Share My Apps ( Home )

Latest and greatest Linux wireless stuff

Right here, go dev if you dare.
Documentation - Linux Wireless

Netbook that is hacker ready

The HP 2133 tweaked to be a pentester/hackers dream. BUY TODAY!
iPwn Mobile Security - Products

Network Security Toolkit VM

Haven't had the chance to play with this but it looks sweet. Network Security in a box, what could go wrong.
Network Security Toolkit (NST) Virtual Machine | Virtual Appliance Marketplace

Smoothwall for the WRT Family

Well not exactly, but it's pretty awesome none the less. Does a lot more than OpenWRT as far as a real firewall/ips/ids. security solution for wireless routers

RSS Change

Don't know if ya'll will see a difference, but I am now on feedburner at

So if you are here because you stopped getting the feed, this is why.

Tuesday, October 7, 2008

Clickjacking finally revealed

Alex Eckleberry's Keynote

Alex's keynote which was basically a state of the union address via the virus world. Horrible video quality but content is what you are watching for.

Sweet Windows mod

Work in progress as of now to get my desktop to look like this except for the wallpaper.

shell fu

This is definitely something you want in your RSS feed and probably a weekly site visit:

Monday, October 6, 2008

New Registry Analysis Tool

I have no idea why this guy is so excited about this tool but I'm sure someone out there will benefit from it.
Windows Incident Response: New Registry Analysis Tools

Another Google Chrome binge - SSL Indexing

Seriously, and I just read a article by a Google employee stating that it holds up better than any other browser while surfing malicious sites. (Great, but what if one gets through and can now access my clear text passwords and indexed SSL surfing)

Firewall and IDS Testing Tool

This was mentioned on a PaulDotCom blog post, I haven't tried it out yet.

Chrome stores password in clear text

Do no evil my ass, next we'll find out that they index it as well.

Capture Filters for Wireshark

Great resource for capture filters

The State of the Union

You will be surprised at what people said and searched for during the VP debates... Wow.. just wow..
Official Google Blog: The VP debate: Candidates, questions, and queries

Sunday, October 5, 2008

Usefull Wallpapers 2

CoinStar Hacking

Sticking it to the man and his 9% cut: ;-) Disclaimer, this may be illegal, don't do it.. seriously, don't... really.. no... stop..
The ultimate users guide to hacking a CoinStar machine

Please check your phone at the door

Metasploit on the iPhone doesn't hold a candle to this ubergadget. Might have to get your company to pay for it at the prices they are asking. (I can't blame them though, it's awesome)

It would be great if they would send me a demo! ;-)

Saturday, October 4, 2008

Don't Vote

Believe it or not this video pushed me to put the registration in the mail.

AppleTV as Boxee and XBMC

If you don't have a Boxee invite already just ping me and I will get one for ya, but I really wish I had a AppleTV now:

Wednesday, October 1, 2008

Richard Mogull - his site.. currently talking about a huge TCP flaw that could DoS anything that uses TCP.. interesting.

Presentation Zen

So before you send you stuff to you might want to check out

Web App Guru

Remember I asked for a Web App Sec Guru (WASG? Sounds like a stupid Cert), well this guy is one that finally decided to start posting to a blog. Don't hate on him yet. Let him get his feet wet in the blogisphere first.
Definitely worth adding to your RSS feed reader. (Just in case he posts ever again...)

Greasemonkey Text Area Backup script

This awesome little script keeps your text area from disappearing into /dev/null when Firefox decides to crash in the middle of an extremely long post that you had been working on for weeks and didn't save anywhere else other than in that stupid text area..... but I'm not mad..|-Greasemonkey-User-Scripts/1682268

Blackhat Forums

Another one of those, if you don't know you don't need to be there:

let me add Ryan1918 to the mix to so I don't have to post again.

EC-Council Portal

Even though I have a C|EH now, this place still alludes my grasp as it takes them forever to do ANYTHING except take your money:

Any good webapp sec gurus out there wanna help me out ;-)

SurftheChannel is still there

Great way to stur up media guys, but they are still here, and still a great site to watch TV at work.. I mean, online..

Great PDF on Clientside attacks via milw0rm


No description needed:


If have had the unfortunate luck of not coming across Mr. McGrew's website yet, then I am here to help in the fulfillment of your life. You can either google for "Killer Coding Ninja Monkey looks like Ulysses S. Grant" or simply click the link below:

T-Shirt Search engine

Got a shirt idea, want to know if it is original, search it first:

Great non-govvie Security Site

Great site that tells it like it is, most of the time:

If you can't figure out what it's about, you don't need to be on it:

Department of Homeland Stupidity

90 Day Botnet Count from Shadow Servers

Finally decreasing. People getting smarter or are dumb bot hearders getting caught?

John McCain

No, I am not a McCain hater, but damn is this funny:

Mozilla Ubiquity

Still don't know exactly what this does:


Real-time packet processor - In other words it drumps useable STUFF from dumps.

Installing XP from USB

Fived - A Layer Five Daemon

If anyone can tell me what this actually does, that would be great.... mmmkay..

Malware Challenge

See if you have the stuff of LEGEND: