Saturday, August 29, 2009

@cktricky ‘s DirSnatch

This is one of those tools that doesn’t quite cross your mind until you see it’s power. DirSnatch is a one stop executable that you can give a customer of a web app sec test, they run it, and you get back a perfectly formatted text file for your testing needs of all their directories and files.

http://cktricky.blogspot.com/2009/08/source-code-of-dirsnatch.html

Saturday, August 22, 2009

Microsoft Word Auto-Close Prank

This little stunt remaps the 'e' key to close Word without saving:
http://www.iambetterthanu.com/2007/11/22/microsoft-word-prank/

I wonder what other evil remapping can be done ;-)

Friday, August 21, 2009

Convert VirtualBox VMs to VMware VMs

So I found this and thought it an awesome one liner:
Source: http://ubuntuforums.org/showthread.php?t=772419

How to convert VBox machine to VMware

I figured it out!! YAY!!

"sudo qemu-img convert /home/emil/.VirtualBox/VDI/WindowsXP.vdi /home/emil/Desktop/XP.vmdk"

I'm not sure if need to be executed with "sudo" but that worked for me. Now I can switch to Vmware Virtual Machine from Virtual Box.

Stream your screen via VLC

I’ve seen this before, and I think I’ve done this before, but it’s still awesome and I’m thinking about it’s use for doing training. Nothing says you can do it over the net. Haven’t tried.. yet:

http://www.nerdlogger.com/2008/01/stream-your-linuxwindowsmac-desktop-as.html

Thursday, August 13, 2009

Decoding eval(gzinflate(base64_decode(

Trying to fix it so that my site didn’t say it was sponsored by “Car Dealers” I ran across an eval(gzinflate(base64_decode( encoded message. Google came up with this 2006 post:

http://danilo.ariadoss.com/decoding-eval-gzinflate-base64-decode/

But that didn’t work for me for some reason, but the online one I found later worked like a charm:

http://www.tareeinternet.com/scripts/decrypt.php

Monday, August 3, 2009

RFID Security - Free ID Cards Anyone?

This is definitely not my normal link. But it's something that I am going to print off and shove in a couple peoples faces to read. Don't discount it because of it's title as I almost did. Please read it. (Hence my titles vagueness, I didn't want the same thing to happen)

http://www.wired.com/threatlevel/2009/08/fed-rfid/

Blackhat US 2009 (Vegas) Archives

Some videos are already posted!
http://blackhat.com/html/bh-usa-09/bh-usa-09-archives.html

UDP Tunneling over SSH

http://zarb.org/~gc/html/udp-in-ssh-tunneling.html

Credit:
Singe tweeted: How to tunnel UDP through SSH, http://is.gd/20fja The socat example worked like a charm for me. A quick hack for when OpenVPN is overkill.