“…that we all feared might happen someday…”? Where has this chick been? ANYWAY….. Whenever I hear about an email worm going around an infecting people left and right, I kind of chuckle to myself. These are absurdly easy to block, yet no one seems to do it. I’m in charge of all the network operations [...]
Posts Tagged ‘perl’
0day “Here you have” Worm – Prevention at the Gateway
Posted: 10th September 2010 by Matt in code, hacks, news, securityTags: gateway, infect, INPUTMSG, mimedefang, perl, Prevention, protect, rule, rules, script, sendmail, spam, virus, worm
6
Backdoor Password in Accton Based Switches
Posted: 2nd September 2010 by Matt in code, hacks, securityTags: Accton, Accton-based, backdoor, concept, Dell PowerConnect, EdgeCore, Edwin Eefting, Erik Smit, Erwin Drent, exploit, firmware, Foundry, passwords, perl, PoC, proof, SNMP, vulnerability
This just came across and it’s pretty interesting. I haven’t heard of/seen this before, so I figured I’d repost it here. I don’t usually like to regurgitate stuff, but if I have nothing to write myself and I come across something that I consider to be valuable, interesting, insightful, or whatever, I will. [BEGIN REGURGITATION [...]
UPDATED: Picpaste & Filename Enumeration. Or, How To Get Free Porn.
Posted: 16th August 2010 by Matt in code, hacks, securityTags: automate, body, code, Enumeration, Free, fusker, image, LWP::UserAgent, naked, nude, perl, picpaste, picture, pictures, PoC, polipo, Porn, proxy, script, sex, sexy, socks, tor, wget
[UPDATE]: So, after I released this, Picpaste decided to try blocking access based on the user agent. One of my readers (Thanks Mark!) supplied updated code that used a different LWP module to manipulate the user agent and changed the ‘wget’ command to supply a fake user agent. Well, they caught on to that as [...]
p0f and (mostly) Passive Finger Printing
Posted: 30th June 2010 by Matt in code, hacks, securityTags: access, ACK, detection, dns, file, file server, fingerprint, firewall, gateway, IDS, interface, network, nmap, os detection, p0f, packet, perl, ports, raw, RawIP, root, routing, RST, sniff, source port, spoof, SQL, steal, syn packet, traffic
Today I was tasked with doing some passive OS detection on a network where I actually had to be somewhat stealthy. I had gotten into the gateway, but I actually needed one of the other boxes on the network in order to get to the file server due to firewalling/routing. I knew they were running [...]
How your passwords get hacked.
Posted: 28th June 2010 by Matt in code, hacks, securityTags: cracking passwords, encrypted passwords, hack, john the ripper, password crackers, password list, passwords, perl, Ripper, usernames, Weak
I realize that this is about as close to plagerism as I can get without literally scraping his website, but I’m essentially reposting it because I think people really, honestly, need to pay attention to this. I hear a lot of whining from people when I tell them that their password is weak, or they [...]
Enumerating email addresses using search engines (the return!)
Posted: 27th May 2010 by Matt in code, hacksTags: addresses, altavista, email, employees, enumerate, google, hack, harvest, harvest.pl, information, linkedin, owned, perl, security, yahoo
About a month ago I wrote a post going over some code that I wrote that basically went out and grabbed email addresses after doing search queries. I’ve since updated the code and was asked to post it, so I decided to just recreate the entire post. Here’s the new code.
Perl SYN flooder
Posted: 14th May 2010 by Matt in code, hacksTags: denial, DoS, oldschool, perl, service, synflood
Yet another oldschool script that I found today. This, again, was written out of necessity. After I wrote this, I wrote a version of it in C as well. Speed wise, the C version was mildly faster, but on todays processors, you probably wouldn’t see a difference. Again, this was prior to frameworks like Scapy, [...]
Perl Password Generator
Posted: 13th May 2010 by Matt in code, securityTags: generator, password, perl, random, strong
This is another one of those things that I found in this repository that I came across today. I actually still use it almost on a daily basis because the passwords it generates are easy to remember and they’re very strong. Feel free to copy and use this.. let me know if you find it [...]