I am posting a link to the talk I presented at PAKCON III, Pakistan’s Largest Underground Hacking Convention, at Pearl Continental, Karachi, on the evening of 26 July. The talk is titled How Attackers Go Undetected.
Woah. This zapped in like lightening.
iDefense is putting up the biggest bounty ever for individuals to detect critical holes in as many as six different major software systems that form the backbone of the Internet’s infrastructure. There are six bounties of $16′000 each for any remote hole detected in latest stable versions of the [...]
Those of you who write proof of concept exploit code in Python might have run into trouble trying to interpolate some hex value in between NOP sleds in Python. Consider the following code as an example:
code = “%X” % (130 + length(var), )
shellcode = ‘\x00\x00\x00\x00′ + ‘\x%s’ + ‘\x00\x00′ % (code, )
Python won’t let [...]
Backdoor PHP shells are receiving a lot of attention from script kiddies. Unless you know what PHP backdoor shells do, they provide a web-based interface to execute shell commands on systems on which they have been maliciously setup.
A friend once asked me to write him a script to upload files from a server [...]
28 February, 2007 – 4:30 pm
If you need an all-in-one great penetration testing kit, look at Backtrack. If you need a test bed to try out your penetration testing skills, look at Damn Vulnerable Linux. Yes. There actually is something with that snazzy name. It is a small Linux distribution, based on Damn Small Linux, which provides a vulnerable platform [...]
3 February, 2007 – 7:21 am
syslog-ng is a flexible, scalable, easy-to-use logging system that works on Unix and Linux platforms. syslog-ng does what the stock syslog does and much much more. It is syslog enhanced in terms of functionality (I don’t know if it works on the codebase of syslog). I wouldn’t do justice to it if I described it [...]
14 December, 2006 – 2:29 pm
For my Wireless Mobile Communications course’s semester presentation, I presented today on WEP, its flaws, attacks that exploit those flaws, and its more secure replacements. The stuff is pretty technical, and I can bet hardly a couple of people actually understood what I was talking about. I’ve made the presentation available online here.
16 September, 2006 – 7:14 am
Logflusher is a dirty little tool to clean login traces on a Linux box. I needed a tool that could conveniently and quietly clean login information from WTMP and UTMP files (under Linux). There were a few tools around, but I wasn’t satisfied. Thus, I wrote logflusher.
I released version 1.1 of logflusher last week (I [...]
Two female students have been sentenced each a year in prison for breaking into one of their professors’ system, assigning grades to nearly three-hundred students, and using professor’s personal information to send empty CDs and magazine subscriptions to the professor’s home. Interesting!
It reminded of a brief conversation I had with a then-friend and now colleague [...]
listps detects hidden processes on *nix-based operating systems which support the /proc filesystem. It is important to clarify what is meant, here, by hidden processes. If a process, in any defined process state, on a system is hidden from view of the standard ps utility, it is, in effect, a hidden process.
listps detects hidden processes [...]
