Remote Exploit Forums - General IT Discussion

programming selection

Habanos Cohiba — Fri, 20 Nov 2009 05:53:05 GMT

I'm new to programming and was wondering the best language to start with. After searching I've read to start with python. However, I was wondering if there is a valid enough reason to start somewhere else.

Getting Started in the Forensics side

pozer69 — Fri, 20 Nov 2009 04:12:43 GMT

Hi everyone. Ok I did some searching and now I think I am ready for some advice from some experts in the field.

I am interested in the Forensic Side of security. I am almost done with my Masters in Information, Network & Computer Security, and I have a Bachelors Degree in Computer Science.

I am currently looking into the following certifications and I am curious on what you guys think I should do first, what order to achieve them, and not do at all.

Network+ <- thinking about skipping this one altogether.
Security+ <- same information that was in my Masters program

OSCP & OSWP <- I want to be able to think like a criminal to beat a criminal

CCFE, GCFA, & EnCE <- Forensics side

and possibly;
GPEN,
CEH <- not too sure about
CISSP <- not too sure about

I want to work for a government agency, local police departments or federal government and maybe do some consultant work on the side.
This is my long term goals and I know it wont happen overnight. I am thinking about doing Security+, OSCP, & OSWP just to get my foot in the door and gain experience. Please let me know what you think my best bet is. Thanks.

Cisco AP as WireShark Remote-Tap

BOFH139 — Thu, 19 Nov 2009 12:18:27 GMT

I�m playing with the advanced features of the new LWAP { Lightweight Access Point} system, All our AP�s are controlled by a Cisco 4400 Series Wireless Lan Controller.

The main features I�m trying to get working is the AP Sniffer mode with is listed as been compatible with Wireshark.

Quote:

The controller enables you to configure an access point as a network "sniffer," which captures and forwards all the packets on a particular channel to a remote machine that runs packet analyzer software. These packets contain information on timestamp, signal strength, packet size, and so on.

But they are not playing nice together, I can get Wireshark to connect but it reports that it can�t find any interfaces.

Has anybody here used or configured this type of setup?

how to test Alfa AWUS036H is 500mW or 1W?

ken-ywk — Thu, 19 Nov 2009 11:06:30 GMT

anyone know how to test this adapter whether is 500mW or 1000mW?
coz i bought this adapter yesterday curious whether im being cheated or not..
thx

So is there a list of some sort of all OS and what their special uses are?

emran2626 — Thu, 19 Nov 2009 03:18:01 GMT

I played around with BT3 and now I want to know what other OS I should play with and how to get started. Ubuntu for example, what are the pros of this OS and what are its uses? Thats just one example. I want to know about other OS' too

Hacking into my router settings?

sean9461 — Wed, 18 Nov 2009 19:12:48 GMT

Hi, i was recently browsing the net as i lost my router settings password after browsing all day i had no luck on finding a way to get it back. So i reset my router and spent all night changing the settings again.

Then i remembered about backtrack and the forums, i have not been here in well over a year and i wondered, is it possible to hack the router settings login of my router? i would like to try this so i can learn how its done and maybe change some settings to prevent it, and for curiosity.

If its possible with backtrack if possible could you point me in the right direction, i havnt used backtrack in a while and i wasnt exactly very good at it when i was here before so any help will be greatly appreciated.

Also, if backtrack cant do this, if someone knows of another possible way (any other software etc.) please could you let me know.

Oh also i know of bruteforce but it wont work as after 10 attempts my router blocks everything out from it for a certain amount of time.

Thanks.

Boot back On Os X after live CD BT4 impossible

Beemz — Wed, 18 Nov 2009 00:56:55 GMT

Hello there,

I'm having huge troubles...

I've burn a Live CD of BT4 in order to install it on a USB device.
Thoses steps are Ok but I can't boot back on my Os X (macbook pro 5,2)

I ve tried :

- alt on starting computer to prompt Booting devices. My Os X doesn't appears and I have the damn Folder and "?" icone.
- C key to boot my Os X install DVD. Works fine, I can choose my Os X install for boot. But result in Folder and ? icone...
- alt-p-r to zap... no effect...

I didn't back up weeks of work, and I'm really depressed.

Please help me !

Is this even possible??

Shad0w99 — Mon, 16 Nov 2009 20:53:47 GMT

Hi there,

I hope I will get some insight regarding this from you guys. The scenario is simple. Two houses, we want to connect to each others network, Distance between the two is 4.2 miles!!

It's countryside and there are not many houses between us but there are lots of trees, pine trees too! Both of our houses are in an elevated area in relation to the land in between. As with any new thing, we bought these "wifi antennas" online and from here and there. We are now thinking that we probably need to build something massive!

We are pretty sure there are no other wireless networks between us. So we don't have to worry about knocking out anyone. We are not worried about frying the balls either. We just want a stable connection between us!

We are not very technical but we are confident that we can build and setup anything even if it takes lot of time. We are willing to spend money on any hardware that is required! I have been researching and lot of it pointed to this site and that's why I'm asking here. Is there any other place I should go to?

What can we do? Is there anything that can be done at this distance? If it's possible, what kind of hardware setup are we looking at? If any of you guys have any experience with this and would like to share, don't hesitate!

Thank you

Book: Professional Penetration Testing

SephStorm — Sun, 15 Nov 2009 19:39:30 GMT

Professional Penetration Testing: Creating and Operating a Formal Hacking Lab
Thomas Wilhelm
ISBN13: 9781597494250

With this text, readers can conduct controlled attacks on a network through real-world examples of vulnerable and exploitable servers. The DVD includes instructional videos that replicate classroom instruction and live, real-world vulnerability simulations of complete servers.

Has anyone read this? The book is expensive as heck, but with the book and a DVD containing BT, Herot live CDs and a bunch of other thing, i have a good feeling about it.

Windows 7 Remote Kernel Crash

Snayler — Sat, 14 Nov 2009 01:10:49 GMT

Code:

Windows 7 / Server 2008R2 Remote Kernel Crash

Quote:

This bug is a real proof that SDL #FAIL
The bug trigger an infinite loop on smb{1,2}, pre-auth, no credential needed...
Can be trigered outside the lan via (IE*)
The bug is so noob, it should have been spotted 2 years ago by the SDL if the SDL had ever existed:

netbios_header = struct.pack(">i", len(''.join(SMB_packet))+SMB_packet
(The netbios header provide the length of the incoming smb{1,2} packet)
(...)

Opt Out of Behavioral Advertising

PeppersGhost — Fri, 13 Nov 2009 22:23:18 GMT

After noticing lots of idle traffic on my Beta Win7 box I became annoyed enough to look into it further.

Netstat a96.17.164.75:http CLOSE_WAIT
tcpview a96.17.164.75.deploy.akamaitechnologies.com

An idle http session? I have nothing running. This cannot be! Yes it is clearly running, as seen on my network traffic at PC idle. The trick here is, it does not show up on every netstat, so do not think just because you don't see it the first time that you're good (Hint: check when you're idle).

Registrant: Akamai Technologies, Inc. Whom two years ago was hosting with Tucows, now is apparently the Supreme Being(echo) of data mining.

What I found in the dark bowels of some obscure Internet link makes me sick. Vomit found here effective as of August 11, 2008 Section III.consumer choice:

Privacy Statement

Geo targeted behavioral advertising of all things. Pattern matching? And, I suspect, using my box as an ad server by Akamai Technology to dish up a tasty smorgasbord of delicious chicken finger adds at my expense. I am sure many of you have run into this little gem already. I do use ad/spy remover's occasionally but I don't really worry about cookies that much. However, I have never seen results like this. The thing is I only use a hand full of sites, so I don't know how much cookie gathering is really needed for that. Clearly not at this level. Not even sure how I signed up for all of these. Apparently at some point I �agreed� to this. When? No idea. Perhaps it was a �third party� agreement.

You will see just how many cookies you really have. If you have them, you are running it. Run every spy and destroy you have first, then go here and see what was missed.

You are going to want to bookmark this little puppy right here:

Network Advertising Initiative

*Disclaimer*
Please do not try to educate me, you wont like me when I'm educated.

flash-origin-policy-issues

Jac01 — Fri, 13 Nov 2009 12:45:45 GMT

This is a wee bit on the scary side... this breaks probably about 70% of the web sites out on the tubes (if it is indeed, what I understand it to be).

Although I'm sure this is a dream come true for pen-testers doing webapp/site security tests.

Flash Origin Policy Issues

Need networking assistance.

Andy_R — Thu, 12 Nov 2009 22:25:00 GMT

I work at a parts store and one of our programs we use to order parts from a supplier all of the sudden quit working. Doing some testing we cannot ping the the supplier's server. Doing a tracert, it times out after 15 hops. Visualroute shows firewalled.

Ok, at my house I can ping the server. So we are using my laptop at my house and using logmein to order parts. The problem is my upload speed is so slow, looking up parts is just awful, not to mention my computer disconnects the remote access very often.

So I have another idea and in theory it should work.

But I need you guys to help me figure it out:

The program uses port 2010. Can I forward all traffic on port 2010 to my home router and then forward it to the server?

I need a software based solution to use at work, because I have no access to the features of our router. Only tech support can change settings and they won't help. If it comes down to it I can install my 2nd router at work and do away with the stores router. Both routers run dd-wrt.

Remember this is a legit cause and we need to get our suppliers program back working. Using visualroute shows we are firewalled at hop 15.

Mentor in the NY/NJ area for VoIP ?

cgeller — Thu, 12 Nov 2009 17:49:15 GMT

I have a small company that does TSCM work � which is essentially sweeping homes and offices for eavesdropping devices. More and more businesses are starting to switch their phone systems over to VoIP - which obviously has it�s own set of eavesdropping risks. I can still do my regular checks on the phone device as well as wire pairs � but also need to be able to examine the computer-side of the phone system. In my opinion, an eavesdropping attack in a VoIP environment will most likely be at a software level as opposed to hardware.
I�m looking for someone who can provide some one-on-one instruction to address the following:
- what tools are needed to examine a network (I know that BT has things like UCSniff)
-how and where do you physically connect to a phone network for examination
- how do you examine ports on switches to see if someone is allowing traffic to flow where it shouldn�t be allowed to go
- what configurations need to be implemented (and how are they audited) to create a safe and eavesdropping-free environment

Please note that I am NOT looking to learn how to eavesdrop..... Also not looking for a free education.

All the best - and thank you.

OpenSolaris on Toshiba Laptops

radioraiders — Mon, 09 Nov 2009 20:59:10 GMT

Nice to see Linux being shipped pre-installed by OEM laptop mfgrs. Interesting why did Toshiba choose OpenSolaris tho? I thought Ubuntu would be the logical first choice...? :confused:

Toshiba OpenSolaris Laptops

.