ramblings on various information security topics
From the category archives:
Woot. Offensive Security has released Backtrack 4 Pre-Final to the public.
I updated my Backtrack 4 USB/Persistent Changes/Nessus How-to a couple weeks ago with instructions, but a public link was not available. The how-to has been updated with download locations and links to the md5sum and sha256sums.
Have fun.
-Kevin
{ 0 comments }
Well folks, I made a rather stupid mistake in my Backtrack 3 how-to. Instead of writing ">>" to append information to a file, I wrote ">" which overwrites the file.
Bad things happen when you overwrite the /etc/ld.so.conf file.
Thank you very much to David who left a comment pointing out my mistake. The how-to has been [...]
{ 0 comments }
I just finished reading Cory Doctorow's Little Brother. You can buy a copy here or read it for free here. Don't let its classification as young adult deter you. I really enjoyed it. If you are interested in privacy and government and how "it's for your own good" can escalate out of control, I highly [...]
{ 1 comment }
We all know and love Nessus. Well today, Tenable made it even better. Nessus now fully supports su and sudo for audit and patch compliance checks. This is very cool.
Next, in response to the ssh key bruhaha this week, there are now a couple of plugins that will check for weak keys [...]
{ 0 comments }
Neohapsis just created a lot of pain for those who are trying to stop folks who able to execute arbitrary code on a host, but unable to get a reverse shell. Used to be you could remove netcat, wget, ftp, etc... and make it much more difficult for a reverse shell to be started. Enter [...]
{ 1 comment }
What I believe it means to serve on a Red Team during a Cyber Defense Competition.
{ 1 comment }
The folks over at Darknet do a great job of pointing out interesting tools for use in penetration testing and web app security testing among other things. I won't be duplicating their feed here, but when I see something that I want to test for myself, I will be posting about it.
One such tool [...]
{ 0 comments }
Sometimes it is nice to have a quick tool that will scan a site for basic XSS or SQL Injection vulnerabilities. It is even nicer if you don't have to go through some long drawn out setup procedure just to see if a field has any tasty morsels to chew on. Enter a [...]
{ 1 comment }
You may all be aware of this, but I was not. Last night I was looking for a LiveCD to use for testing some web app testing tools against. A couple of fine folks, Craig and Wesley suggested I check Damn Vulnerable Linux. So I did.
After a couple hours of download time, [...]
{ 0 comments }
I am a big fan of Seth Godwin's blog which can be found here:
http://sethgodin.typepad.com/
If you are not familiar with Mr. Godwin, I highly recommed perusing his blog. While not an infosec blog, his insights into marketing and perception are useful in many ways.
He had a post that pointed to this YouTube video. Watch [...]
{ 1 comment }
