Saturday, January 30th, 2010 This is just a quick example of how you can quickly and easily modify the HOSTS file on a compromised Windows system using the meterpreter script called hostsedit. As always, we start off with a basic exploit to gain a meterpreter session back from the victim's machine:msf > use windows/smb/ms08_067_netapi
msf ...
Posted in Internet, Privacy, Security, Windows | 1 Comment
Thursday, January 28th, 2010 This is a tool for security researchers. It allows you to search for either an IP address or a DNS name and display all associated domain names known to Bing.Download:
http://bingprobe.codeplex.com/
Posted in Internet, Networking, Privacy, Software | No Comments
Thursday, December 17th, 2009 Secure64, which specializes in products designed to support the domain name system (DNS), has released the product to help prevent a condition in which the server's local list of domain name mappings is corrupted. Attackers create this condition by pretending to be another DNS server responding to a DNS query.One ...
Posted in Hardware, Internet, Networking, Security | No Comments
Tuesday, December 1st, 2009 Here is a great video from Robert "RSnake" Hansen explaining what DNS Rebinding actually is and shows some various attacks that may be performed as a result of it. RSnake also explains what can be done to fix the problem and explains why it might not happen any time soon.DNS ...
Posted in Internet, Networking, Privacy, Security | No Comments
Sunday, June 7th, 2009 The Nessus vulnerability scanner, is the world-leader in active scanners, featuring high speed discovery, configuration auditing, asset profiling, sensitive data discovery and vulnerability analysis of your security posture. Nessus scanners can be distributed throughout an entire enterprise, inside DMZs, and across physically separate networks.Fixes:Fixed memory & register leaks in NASL
nessus-fetch ...
Posted in Internet, Linux, Networking, Privacy, Security, Software, Windows | No Comments
