Archive for August, 2009
Linux/UNIX hardening guides
by dominee on Aug.28, 2009, under HOWTO, security
Hardening Guides
Center for Internet Security (CIS)
Red Hat Enterprise Linux 4 Security guide
Red Hat Enterprise Linux 4 SElinux Guide
Securing Debian Manual
IASE : Security Technical Implementation Guides
NSA: Current Security Configuration Guides
Red Hat Enterprise Linux 5 Hardening guide
Hardening Tools
Bastille linux/UNIX
TRUSTED : Security Blanket
yet another webtools
by dominee on Aug.27, 2009, under security
Httpry – HTTP Traffic sniffer
Httpry, is a sniffer specializing in sniffing http traffic. Httpry is used to log and display http traffic by capturing, parsing and logging the traffic for further analysis.
http://www.lifedork.net/httpry-http-traffic-sniffer.html
http://dumpsterventures.com/jason/httpry/httpry-0.1.5.tar.gz
Firefox Addons own ya – Keylogger POC
My small POC consists of a keylogger written in javascript and embedded into Firefox browser in form of extension. This code can be injected into any known/famous addon without even noticing it since it creates no warnings at Antiviruses (it’s just legal javascript) and no warning from Firewalls since the logs of the keystrokes are sent through Firefox on port 80 to a malicious server.
http://blogs.hackerscenter.com/2008/04/firefox-addons-threat.html
http://www.hackerscenter.com/public/Firefox_poc/poc_keylogger.zip
RHEL diagnostic tool configuration and recommendations
by dominee on Aug.25, 2009, under HOWTO, for geeks
RHEL diagnostic tool configuration and recommendations
- Kdump/Netdump
- Sysstat
- Hangwatch
- Ksar
utf8_decode bypass
by dominee on Aug.21, 2009, under security
Security risks associated with utf8_decode and XSS filters
BlackHat USA 2009; Eduardo Vela Nava (sirdarckcat) and David Lindsay presented a paper entitled “Our Favorite XSS Filters and How to Attack Them”. Very interesting paper, you should definitely take a look at it.
In this paper, besides other things, they presented a very interesting way to bypass XSS filters using Unicode charcters.
XSS : vuln.php?input=%F6%3Cimg+onmouseover=prompt(/xss/)//%F6%3E
SQLi : index.php?username=test%FC%27%27+or+1=1+–+&password=a
outch.
yet another websec reading..
by dominee on Aug.19, 2009, under for geeks, security
An article from nessus team about attacks and securing php +ref
Configuration Auditing php.ini To Help Prevent Web Application Attacks
—
Joomla! auditing tool? yeah
OWASP Joomla Vulnerability Scanner Project
The following features are currently available.
* Exact version Probing (the scanner can tell whether a target is running version 1.5.12)
* Common Joomla! based web application firewall detection
* Searching known vulnerabilities of Joomla! and its components
* Reporting to Text & HTML output
* Immediate update capability via scanner or svn
hacking PSP 2000 with TA-088v3
by dominee on Aug.04, 2009, under PSP
When i was saying i’ll never buy a psp … i was wrong =]
I just got one, ordered from PGS. But because of my bad luck i got one with the new motherboard, which is baaad .
Checking for motherboard version
1. checking for serial number on the box hmm.. G series.. baaad but not lost..
2. checking for FW .. 4.01 .. foooook
3. pandora test .. sad but true
it is an TA-088v3 =[
but i want to run homebrew and ISOs !!
chcecking for possibilities on psp-hacks.com forums
-- ChickHEN
-- CFW Enabler
yeah!
now get the right and working version of the expoit and the lastes loader
exploit ChickHEN R2 mod v2 - R2 worked best, no need to format the memory stick, just reset to defaults, wait for "options" to fade away, and fast scroll down to the TIFF.. boom
CFW enabler 3.60 by Xenogears a Becus25 - working without problems, don't worry to write to flash, it only adds files
enjoy! =]
