«
Expand/Collapse
121 items tagged "port"
Related tags:
nmap port scanner [+],
tatu ylonen [+],
openssh [+],
openbsd [+],
free version [+],
vulnerability [+],
shellcode [+],
denial of service [+],
bind [+],
web interface [+],
tool [+],
target system [+],
stealing [+],
ssh [+],
solaris [+],
ports [+],
fwknop [+],
authorization scheme [+],
authorization [+],
BackTrack [+],
x86 linux [+],
windows port [+],
windows [+],
tester [+],
stack overflow [+],
stack buffer [+],
serial [+],
routers [+],
python [+],
n wireless [+],
n gigabit [+],
media [+],
free software updates [+],
codebase [+],
cisco wrvs [+],
cisco security advisory [+],
cisco security [+],
cisco rvs [+],
bindshell [+],
avid media composer [+],
avid [+],
application level [+],
advisory [+],
Newbie [+],
Area [+],
xen [+],
x86 [+],
tar bz2 [+],
stagers [+],
siri [+],
service vulnerability [+],
server [+],
port 67 [+],
port 4444 [+],
peripherals [+],
os x x86 [+],
os x [+],
netcat [+],
misc [+],
hackers [+],
hacker [+],
eepayload [+],
dynamic delay [+],
denial [+],
communication methods [+],
black hat [+],
binding [+],
attacker [+],
archive [+],
android [+],
alpha [+],
Support [+],
Pentesting [+],
General [+],
script [+],
port scanning [+],
ruby [+],
badass [+],
beta [+],
zipit [+],
x port [+],
working [+],
wisdom [+],
wireless extensions [+],
windows xp [+],
webkit [+],
vm machine [+],
vinod [+],
usb to parallel port converter [+],
usb port [+],
usb devices [+],
usb [+],
usa [+],
unwanted visitors [+],
udp [+],
ubuntu [+],
type [+],
txt [+],
thumb drive [+],
thrustmaster formula 1 [+],
tdo [+],
stock condition [+],
stdin [+],
squirrelmail [+],
space text [+],
someone [+],
solution [+],
software description [+],
social engineering [+],
sniffer [+],
smple [+],
smd [+],
slides [+],
siri to [+],
shutter release [+],
shell code [+],
shell [+],
shared [+],
series [+],
serial ports [+],
serial port [+],
security [+],
screen space [+],
scannar [+],
sandwich [+],
safer use [+],
safari browser [+],
safari [+],
rolles [+],
rolf rolles [+],
risk factor [+],
remote [+],
read [+],
quot [+],
processing [+],
problem [+],
power over ethernet [+],
port sniffer [+],
port scanning tools [+],
port patch panel [+],
port numbers [+],
port expanders [+],
port expander [+],
port adapters [+],
port 31337 [+],
port 12345 [+],
pop3 servers [+],
poisoning [+],
poe [+],
plug [+],
pc [+],
payload [+],
parallel ports [+],
parallel port [+],
openwrt [+],
open port scanner [+],
open [+],
one man [+],
older [+],
obscurity [+],
network gateway [+],
necessary signals [+],
navigate [+],
mysql [+],
mini [+],
mike lu [+],
microcontrollers [+],
method [+],
meterpreter [+],
metasploit [+],
mac addresses [+],
mac [+],
logic analyzer [+],
logic [+],
linux kernel [+],
linux device driver [+],
line of defence [+],
level converter [+],
lcd [+],
knocking [+],
kinds of angles [+],
keyboard [+],
kernel [+],
julius [+],
jtag [+],
iwconfig [+],
irc [+],
ir communication [+],
iphones [+],
iphone [+],
ip ports [+],
interval [+],
interface processor [+],
integer overflow [+],
information disclosure vulnerability [+],
http [+],
host [+],
hardware portion [+],
handhelds [+],
hacking game [+],
hacking [+],
google [+],
game [+],
fpga chips [+],
forwarding [+],
formula 1 racing [+],
flake [+],
fernando [+],
fastrack [+],
fake website [+],
external pop [+],
exploit [+],
exhaustion [+],
ettercap [+],
ethernet connectors [+],
eth [+],
error [+],
economic sense [+],
dslr [+],
dockstar [+],
dns [+],
display software [+],
digital [+],
devilzc [+],
debutant [+],
david worth [+],
darkudpd [+],
darknet [+],
darklords [+],
custom kernel [+],
cryptography [+],
cryptographic [+],
cramped quarters [+],
cpld [+],
connector [+],
completeftp [+],
communication port [+],
communication [+],
command [+],
com port [+],
com [+],
classic [+],
cisco xr [+],
chris [+],
card [+],
cameras [+],
bugtraq [+],
bt4 [+],
bsdi [+],
browser [+],
blind [+],
backdoor [+],
authors [+],
assembly line [+],
arp [+],
arduino [+],
apache [+],
Topics [+],
Tools [+],
Specialist [+],
Espace [+],
Ecke [+],
Countermeasures [+],
Anfnger [+],
ARM [+],
tcp [+],
linux [+],
reliability features [+],
nmap [+],
ip fragments [+],
fin [+],
hacks [+]
-
-
21:00
»
Packet Storm Security Recent Files
Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.
-
21:00
»
Packet Storm Security Tools
Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.
-
21:00
»
Packet Storm Security Misc. Files
Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.
-
-
13:00
»
Hack a Day
[Vinod] sent in a very cool build he says is somewhat of a ‘mad project’: he mounted an MMC and SD card under Linux using the parallel port on his computer. Even though parallel ports are getting rarer these days, we absolutely love [Vinod]‘s dedication and willingness to dig around the Linux kernel. The hardware portion of the [...]
-
-
12:49
»
Hack a Day
[Fernando] wrote in to share his take on building a logic analyzer. He’s using the parallel port to capture data and feed it to the display software of your choice. The method depends on a custom kernel which alters the way the parallel port works. The kernel he compiled includes a method of intercepting the [...]
-
-
9:01
»
Hack a Day
Text LCD’s are handy for any occasion, a printer port on your PC is also darn handy as well. Mix together and add in a splash of linux and you get a very handy Linux device driver for a 16×2 LCD connected to the parallel port. Electrically the LCD is wired up in a typical [...]
-
-
15:50
»
Packet Storm Security Recent Files
P0f is a tool that utilizes an array of sophisticated, purely passive traffic fingerprinting mechanisms to identify the players behind any incidental TCP/IP communications (often as little as a single normal SYN) without interfering in any way. Version 3 is a complete rewrite of the original codebase, incorporating a significant number of improvements to network-level fingerprinting, and introducing the ability to reason about application-level payloads (e.g., HTTP).
-
15:50
»
Packet Storm Security Tools
P0f is a tool that utilizes an array of sophisticated, purely passive traffic fingerprinting mechanisms to identify the players behind any incidental TCP/IP communications (often as little as a single normal SYN) without interfering in any way. Version 3 is a complete rewrite of the original codebase, incorporating a significant number of improvements to network-level fingerprinting, and introducing the ability to reason about application-level payloads (e.g., HTTP).
-
15:50
»
Packet Storm Security Misc. Files
P0f is a tool that utilizes an array of sophisticated, purely passive traffic fingerprinting mechanisms to identify the players behind any incidental TCP/IP communications (often as little as a single normal SYN) without interfering in any way. Version 3 is a complete rewrite of the original codebase, incorporating a significant number of improvements to network-level fingerprinting, and introducing the ability to reason about application-level payloads (e.g., HTTP).
-
-
15:22
»
Packet Storm Security Tools
fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
-
-
7:00
»
Hack a Day
Depending on the scope of your requirements, Power over Ethernet (PoE) components can get pretty pricey. [Fire] wrote in to share a 4-port PoE solution he put together for under 20 euros (Ignore any SSL errors – we’ve checked it out, it’s safe). The most expensive part of the build was the 8-port patch panel he [...]
-
-
18:24
»
Packet Storm Security Recent Files
fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
-
18:24
»
Packet Storm Security Tools
fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
-
18:24
»
Packet Storm Security Misc. Files
fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
-
-
12:01
»
Hack a Day
Since most DSLR cameras now have an IR communication port, [Julius] thought it would be a good idea to build an IR shutter release remote. He has released the plans for two versions; a single sided hand etched one, and a double sided one to have made professionally. He notes that it should have a [...]
-
-
10:34
»
Packet Storm Security Exploits
This Metasploit module exploits a stack buffer overflow in process AvidPhoneticIndexer.exe (port 4659), which comes as part of the Avid Media Composer 5.5 Editing Suite. This daemon sometimes starts on a different port; if you start it standalone it will run on port 4660.
-
10:34
»
Packet Storm Security Recent Files
This Metasploit module exploits a stack buffer overflow in process AvidPhoneticIndexer.exe (port 4659), which comes as part of the Avid Media Composer 5.5 Editing Suite. This daemon sometimes starts on a different port; if you start it standalone it will run on port 4660.
-
10:34
»
Packet Storm Security Misc. Files
This Metasploit module exploits a stack buffer overflow in process AvidPhoneticIndexer.exe (port 4659), which comes as part of the Avid Media Composer 5.5 Editing Suite. This daemon sometimes starts on a different port; if you start it standalone it will run on port 4660.
-
-
13:22
»
Carnal0wnage
Need to check a few specifc nessus plugins against a host?
$ sudo ./nessuscmd 192.168.1.92 -p80,443 -v -V -i 38157,10107
Starting nessuscmd 4.4.0
Scanning '192.168.1.92'...
Host 192.168.1.92 is up
Discovered open port http (80/tcp) on 192.168.1.92
[i] Plugin 10107 reported a result on port http (80/tcp) of 192.168.1.92
[i] Plugin 38157 reported a result on port http (80/tcp) of 192.168.1.92
+ Results found on 192.168.1.92
+ - Port http (80/tcp) is open
[i] Plugin ID 38157 Synopsis :
The remote web server contains a document sharing software Description : The remote web server is running SharePoint, a web interface for document management. As this interface is likely to contain sensitive information, make sure only authorized personel can log into this site See also :
http://www.microsoft.com/Sharepoint/default.mspx Solution : Make sure the proper access controls are put in place
Risk factor : None
Plugin output : The following instance of SharePoint was detected on the remote host :
Version : 12.0.0.6327
URL : http://192.168.1.92/
looks like the functionality has been there for awhile:
http://blog.tenablesecurity.com/2007/07/nessus-32-beta-.html
-
-
18:04
»
SecuriTeam
A Shared Port Adapters Interface Process Vulnerability was identified in Cisco XR 12000 Series.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!
-
-
6:15
»
Packet Storm Security Recent Files
This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.
-
6:15
»
Packet Storm Security Misc. Files
This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.
-
-
14:01
»
Hack a Day
Need to use that antiquated hardware that can only be connected via a parallel port? It might take you some time to find a computer that still has one of those, or you could try out this USB to Parallel port converter. It’s not limited to working with printers, as the driver builds a virtual [...]
-
-
6:25
»
Packet Storm Security Recent Files
Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.
-
6:25
»
Packet Storm Security Tools
Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.
-
6:25
»
Packet Storm Security Misc. Files
Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.
-
-
7:08
»
Hack a Day
There are times when you don’t need much processing power for your project but you do need a lot of I/O pins. It often doesn’t make economic sense to choose a larger microcontroller just to get extra pins so the answer is to use a port expander chip. [Raendra] posted a guide for using one [...]
-
-
18:48
»
Packet Storm Security Advisories
Cisco Security Advisory - Cisco RVS4000 4-port Gigabit Security Routers and Cisco WRVS4400N Wireless-N Gigabit Security Routers have several web interface vulnerabilities that can be exploited by a remote, unauthenticated user. Cisco has released free software updates that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are available.
-
18:48
»
Packet Storm Security Recent Files
Cisco Security Advisory - Cisco RVS4000 4-port Gigabit Security Routers and Cisco WRVS4400N Wireless-N Gigabit Security Routers have several web interface vulnerabilities that can be exploited by a remote, unauthenticated user. Cisco has released free software updates that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are available.
-
18:48
»
Packet Storm Security Misc. Files
Cisco Security Advisory - Cisco RVS4000 4-port Gigabit Security Routers and Cisco WRVS4400N Wireless-N Gigabit Security Routers have several web interface vulnerabilities that can be exploited by a remote, unauthenticated user. Cisco has released free software updates that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are available.
-
-
16:45
»
Hack a Day
If you’re planning to do some hacking with CPLD or FPGA chips you’ll need a way to program them. JTAG is one of the options and here’s a cheap method that uses the serial port (translated). This method requires only four signals (TDI, TMS, TCK and TDO) plus ground. But the problem is that an RS232 [...]
-
-
8:30
»
Packet Storm Security Recent Files
This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.
-
8:30
»
Packet Storm Security Misc. Files
This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.
-
-
5:47
»
Hack a Day
[Atiti] has a bad habit of hanging on to old things. Some people call this sort of behavior “hoarding”, but around here we understand his affliction. It turns out that in his collection of old computer peripherals, he located a Thrustmaster Formula 1 racing wheel he used back in the day. Analog racing wheels can [...]
-
-
13:23
»
Packet Storm Security Exploits
Solaris 10 suffers from a port stealing vulnerability that can be leveraged to enable denial of service and man-in-the-middle attacks.
-
-
11:53
»
Packet Storm Security Recent Files
Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.
-
11:53
»
Packet Storm Security Tools
Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.
-
11:53
»
Packet Storm Security Misc. Files
Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.
-
-
6:28
»
Hack a Day
This very informative talk given at Shmoocon 2011 has been posted over at IronGeek. Covering all kinds of angles that a person could attack someones computer through the USB port, this should be read by anyone who is security minded at all. No matter which side of the port you tend to be on, this [...]
-
-
5:11
»
Packet Storm Security Recent Files
This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.
-
5:11
»
Packet Storm Security Misc. Files
This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.
-
-
9:00
»
Hack a Day
[Mike Lu] likes to add serial ports to his routers to use for debugging but he didn’t want to drill holes in his new RT-N12. After a bit of head-scratching he thought about repurposing the four unused wires on one of the RJ45 Ethernet connectors. This would allow him to interface with the necessary signals [...]
-
-
13:31
»
Packet Storm Security Recent Files
This archive contains a collection of WAR and EAR compatible stagers that use a variety of communication methods to communicate back to the attacker - even if the only open port is the HTTP/JNDI port, or even if no incoming ports are open but the victim can call back (which can be tricky as usually WARs and EARs are initialized on demand).
-
13:31
»
Packet Storm Security Misc. Files
This archive contains a collection of WAR and EAR compatible stagers that use a variety of communication methods to communicate back to the attacker - even if the only open port is the HTTP/JNDI port, or even if no incoming ports are open but the victim can call back (which can be tricky as usually WARs and EARs are initialized on demand).
-
-
1:01
»
Packet Storm Security Misc. Files
ARM shellcode that will bind to port 68 on any local address and plug a UDP shell onto port 67 on 192.168.0.1.
-
-
8:03
»
Hack a Day
If you don’t look close you might think this Seagate Dockstar is in stock condition. But look at the three holes in the white case just above the thumb drive which act as a serial connection for the Dockstar. [Firestorm_v1] posted the instructions after see our post about installing OpenWRT on the device. He did [...]
-
-
17:55
»
Packet Storm Security Tools
Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.
-
17:54
»
Packet Storm Security Recent Files
Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.
-
-
13:00
»
Hack a Day
[Geordy] added a serial port to his Zipit. It uses a 3.5mm jack as the connector. He managed to include an RS232 level converter inside the case. Both components were hard to fit into the cramped quarters but he did it and he kept the hacker-friendly device looking nice too.
-
-
1:01
»
Packet Storm Security Advisories
Mandriva Linux Security Advisory 2010-120 - A vulnerability was reported in the SquirrelMail Mail Fetch plugin, wherein (when the plugin is activated by the administrator) a user is allowed to specify (without restriction) any port number for their external POP account settings. While the intention is to allow users to access POP3 servers using non-standard ports, this also allows malicious users to effectively port-scan any server through their SquirrelMail service (especially note that when a SquirrelMail server resides on a network behind a firewall, it may allow the user to explore the network topography (DNS scan) and services available (port scan) on the inside of (behind) that firewall. As this vulnerability is only exploitable post-authentication, and better more specific port scanning tools are freely available, we consider this vulnerability to be of very low severity. It has been fixed by restricting the allowable POP port numbers. The updated packages have been patched to correct this issue.
-
-
4:20
»
remote-exploit & backtrack
Ok, upon testing Metasploit and not getting sessions when I should have been, I have concluded it may have something to do with Port forwarding not being enabled.
I know how to forward ports, type 192.168.xx.x into my browser, supply my login details, and then go to port forwarding and configure, however my only unsurity is, officly i have two different Ip's between my primary OS machine and my VM machine when I switch onto backtrack, example my OS ip is 192.168.xx.xx and my BT IP is 10.0.2.xx so when i Type 192.168.xx.x into my primary OS browser and forward ports will the changes apply when I boot my Backtrack also, or is a different process required for that?Hope you can provide some clarity.
-
-
18:31
»
remote-exploit & backtrack
I have a reverse-connect binary that connects back to my server on a port, let's say 2020. Because of how things work, I need to be able to monitor this port for the connecting binary, and if it occurs, i.e., the port becomes "active" send commands to the screen as if typed on the server's keyboard (I think you would call that stdin or is it stdout?).
Anyway, the binary cannot be changed, it is hard-coded to connect back to this port and this port alone. Anyone have an idea on how I can do this through an existing BT4 program or otherwise?
Thanks.
-
-
0:49
»
remote-exploit & backtrack
In a PEnTest Scenario we have found a open port for for "3306/tcp open mysql port unauthorized" service .
How we can try to connect it remotely.What more further information we can gain using this information
-
-
11:16
»
remote-exploit & backtrack
Everytime I want to create a java based fake website with this tool, in the last phase the following error has been occured :[*] Error : you have something running on port 80 ...
i have checked it out, but there's no such a thing running on port 80 like apache . anyone knows where's the problem?
-
-
3:57
»
remote-exploit & backtrack
Bonjour à tous ! (je suis en cd live)
je poste même si je vais bientôt l'installer....oui ça m'embête d'être coincé ! Alors j'ai beaucoup log, ça devrait être intéressant lol
je précise avant que j'ai lu/vu les vidéos d'installation
(et je pense que je suis con :/ )
Mon problème de base est :
Quote:
root@bt:~# iwconfig
lo no wireless extensions.
eth0 no wireless extensions.
|
Maintenant, retournons à la source :
j'ai fait les commandes dans l'ordre : fix-splash, dhclient, sshd-generate et netstat
Maintenant je pense que j'ai 2 erreurs dans les réponses que j'aurai du avoir :
Quote:
*] Fixing Initrd[*] Extracting Initrd
22304 blocks
23374 blocks[*] Reboot and bask in the joys of BootSplash
|
si je comprends bien il me demande de reboot ? or je suis en cd live...je ne vois pas l'intérêt ?
Quote:
root@bt:~# dhclient eth0
Internet Systems Consortium DHCP Client V3.1.1
Copyright 2004-2008 Internet Systems Consortium.
All rights reserved.
For info, please visit
Listening on LPF/eth0/-----------
Sending on LPF/eth0/----------------
Sending on Socket/fallback
DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 7
DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 11
DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 11
DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 8
DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 11
DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 13
No DHCPOFFERS received.
No working leases in persistent database - sleeping.
|
(j'ai remplacé les tirets...)
sinon là je pense que ya un problème... c'est peut être lié ?
Et après ça... toujours pas de eth0 pour iwconfig :/
J'ai ensuite utilisé les commandes lspci, lsmod, airdriver-ng, airdriver-ng installed
et toutes ces fonctions marchent très bien, identique à la doc du forum... donc mes drivers sont bien installé non?!
Voilàa mes questions.....Merci beaucoup x) [si vous avez pas le temps c'est pas grave ;)]
-
-
9:18
»
remote-exploit & backtrack
I read the man pages of ettercap and it said the target can be in form of
MAC/IP/PORTS
Ok...
to all my dear darklords ...I have 2 basic questions..which , I request some help to :
<> I specify mac addresses /MAC/ /MAC2/ it says Invalid IP range. So how do you specify them or that's not allowed.
<>More imp one : I would like to SNIFF NOT ALL BUT JUST PACKETS OF PORTS # 80 AND 443 FOR SPECIFIC IP RANGE.
I thought his would convey the information :
ettercap <options> /IP:port1,port2/ /IP2:Port1,port2/
but it does not like that format too.
Can someone please lemme know if that is poss and how .
MANY THANKS
S
-
-
15:36
»
remote-exploit & backtrack
Hello all, this is the first post I have created, however I have been soaking up information from here for a long time. I searched the forum and google first so I hope this is not a dupe question in any way. With that said on to the question.
I am trying to use the windows/meterpreter/reverse_tcp payload across the internet. I have configured the payload to connect to my external ip on port 31337. I have forwarded the port in my router to a workstation running a exploit/multi/handler listening on port 31337. The handler never receives any traffic coming from the victim. After executing the exploit/payload on the victim computer looking at netstat I see a connection to the external ip on the correct port. Do you guys know what I am doing wrong or have any suggestions on how I can make this successful?
Thanks
-
12:48
»
remote-exploit & backtrack
hello one and all
I am new to all of this but I have got about 15 years of IT experience behind me, so hopefully this will be easier to get my head around.
my question is this:
I have install Backtrack 3 within VMware on my PC
I have watched a few Tutorials on YouTube, as I would like to monitor my network gateway. for unwanted visitors on different ports like port 21, 20, 8888, or any over port I wish to monitor.
I think the follow command will allow me to monitor the ARP on ports 80 and 8080 on a target IP address. but I would like to added additional ports.
ettercap -T -Q -M arp:remote -i wlan0 /10.10.10.23/ // -P remote_browser
and then save that information into a text file.
is this possible.
regards
Chris
-
11:57
»
remote-exploit & backtrack
Hi,
das ist jetzt mal die typische anfängerfrage...
Wo finde ich eine Wissensdatenbank zu dem Theme welche Tools für welches OS und bei welchen offenen Ports?
OK Fastrack Interaktiv war bei meimen ersten Testsystem Windows XP SP2 ohne Firewall erfolgreich.
Aber schon die Windowsfirewall stellt mich bei Fastrack hilflos hin.
Wär cool wenn ihr ne seite wüsstet.
*** will euch net mit jedem Sch... nerven***
Besten Dank im Vorraus
-
-
21:00
»
Packet Storm Security Tools
Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.
-
21:00
»
Packet Storm Security Recent Files
Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.
1337day (was: Inj3ct0r, 1337db)
OSVDB Vulnerabilities
Exploit-DB
SecurityFocus Vulnerabilities
Bugtraq
XSSed
Sophos security news
Penetration Testing
BackTrack Linux Forums
Threatpost
SecDocs
carnal0wnage.attackresearch.com
Darknet
The Exploitant
Wirevolution
19:00