Passwords | Attack Vector

Posts Tagged ‘passwords’

Vendor Response to Backdoor in Accton Switches Post

Posted: 10th September 2010 by Matt in news, security
Tags: Accton, Accton-based, attack, backdoor, fix, hack, hacked, lan, network, owned, password, passwords, risk, secure, security, SNMP, vlan, vulnerable, workaround

A few days ago I posted an article that was circulating regarding a backdoor in to Accton based switches. You can read that post here. Shortly after, a person by the name of “CK”, who apparently works for the vendor, responded with the company’s side of the story. I then issued my response, and CK [...]

Backdoor Password in Accton Based Switches

Posted: 2nd September 2010 by Matt in code, hacks, security
Tags: Accton, Accton-based, backdoor, concept, Dell PowerConnect, EdgeCore, Edwin Eefting, Erik Smit, Erwin Drent, exploit, firmware, Foundry, passwords, perl, PoC, proof, SNMP, vulnerability

This just came across and it’s pretty interesting. I haven’t heard of/seen this before, so I figured I’d repost it here. I don’t usually like to regurgitate stuff, but if I have nothing to write myself and I come across something that I consider to be valuable, interesting, insightful, or whatever, I will. [BEGIN REGURGITATION [...]

How your passwords get hacked.

Posted: 28th June 2010 by Matt in code, hacks, security
Tags: cracking passwords, encrypted passwords, hack, john the ripper, password crackers, password list, passwords, perl, Ripper, usernames, Weak

I realize that this is about as close to plagerism as I can get without literally scraping his website, but I’m essentially reposting it because I think people really, honestly, need to pay attention to this. I hear a lot of whining from people when I tell them that their password is weak, or they [...]

Brute Force with THC Hydra

Posted: 17th June 2010 by Matt in code, hacks, security
Tags: Administrator, administrator password, brute force, cisco, Conficker, denial of service, denial of service attack, enum, htpasswd, http, hydra, imap, mysql, ncrack, nmap, parallel connections, passwords, pcanywhere, pop, smbnt, thc, THC Hydra, userlist, vnc

Sometimes the only way in is to resort to password cracking (or, “brute forcing”). I would consider this to be another one of those last resort methods that I use when all else has failed. I don’t like to use brute force methods because they’re noisy and can break stuff. There’s actually a fine line [...]

Invasion of Privacy.

Posted: 11th May 2010 by Matt in code, hacks, news, security, social engineering
Tags: anonyminity, email address, facebook, fraud, identity, information gathering, Intelius, invasion, linkedin, owned, passwords, privacy, profile

UPDATE (1/12/2011): I received an email from Steve regarding this post. He sincerely apologized for his actions and realized now that what he did was wrong and simply asked that I modify the post to protect the identities of his family. I felt that this was a fair request, considering that his family had nothing [...]

Old school Google hacking++

Posted: 21st April 2010 by Matt in code, hacks
Tags: crack, google, hack, john, passwords, service.pwd

So, this is a very, very well known Google hack that I’ve automated to make life easier. It’s the simple ‘inurl:service.pwd‘ hack. Here’s the code: ?View Code PERL1 2 use LWP::UserAgent; use HTTP::Cookies;

ARP Poisoning and Man in the Middle Attacks [part 2]

Posted: 3rd April 2010 by Matt in code, hacks, security
Tags: crack, hacking, key, network, passwords, WEP, wiress, wpa

Well, we’re on to part two. For part two of this post, I’d like to talk about wireless vulnerabilities and how the Man in the Middle (MitM from now on) attack comes in to play on a wireless network. Most of us have, or have used, a wireless network. There are, essentially, two different types. [...]

Sponsored Links

Archives

Recent Posts

Blogroll

matt@attackvector.org