Windows | Attack Vector

Posts Tagged ‘Windows’

An Open Letter to Microsoft

Posted: 8th September 2010 by Matt in news, security
Tags: Apache, Blaster, Boink, Bonk, code, Code Red, company, computer, Conficker, crash, denial of service, denial of service attack, exploits, Frag, IIS, ILOVEYOU, irc, Land, Linux, Microsoft, MyDoom, Nestea, NewTear, Nimda, Sandmind, Sasser, Sircam, Slammer, SoBig, Sping, spyware, SQL, TearDrop, vulnerability, vulnerable, Windows, WinNuke, worm

Dear Microsoft, I have watched you develop as a company, starting with Windows 3.1. It was most peoples first experience with a PC and considering that there was really no other marketed OS (Linux was brand new and not really totally “usable” yet. I ran it, but it was not for the faint of heart. [...]

DLLHijackAuditKit v2

Posted: 25th August 2010 by Matt in hacks, news, security
Tags: 0day, automated, dll, DLLHiJackAuditKit, exploit, hack, hd moore, hijack, metasploit, own, vulnerable, webdav, Windows

HD Moore (Metasploit) has just released an update to his original DLLHiJackAuditKit which further automates the process of discovering programs which are vulnerable to this attack. You can find his post here And here is the direct link to the zip file.

New DLL Hijacking Exploits (many!)

Posted: 24th August 2010 by Matt in code, hacks, news, security
Tags: Administrator, attack, demo, demonstration, dll, example, examples, exploit, hijack, metasploit, Meterpreter, msf, msfconsole, network security audit, payload, tutorial, vulnerability, webdav_dll_hijacker, Windows, windows/browser/webdav_dll_hijacker

So, for those of you who do not follow the Metasploit project as closely as others, there was a new module included in the 10125 revision which came out on Monday. This module is kind of a huge deal, because it affects many, many Windows programs. I’ll demonstrate one in this post, but if you [...]

File Server LNK Protection

Posted: 22nd July 2010 by Matt in hacks, news, security
Tags: bat, block, dll, exe, file, file screening, file server, Linux, LNK, NAS, protect, Protection, Samba, screen, share, spread, Stuxnet, Veto, vulnerability, Windows

I figured I’d throw this out there.. I wanted to make sure that in the event that somehow my network were infected by something that used this vulnerability that it would be limited to an individual machine. Basically, I didn’t want it on my file server. Also, at the bottom of this post I give [...]

Windows ‘LNK’ Exploit Demonstration

Posted: 20th July 2010 by Matt in hacks, news, security, social engineering
Tags: automated, browser, Command, exploit, LNK, metasploit, Microsoft, msf, msfconsole, network security audit, payload, remote, shell, Stuxnet, Temphid, URIPATH, victim, VirusBlokAda, vulnerable, W32.Stuxnet, W32.Temphid, Windows, wireless

Ok, so with all the hype surrounding this vulnerability, I figured that I would do a write up and give an example of how it works. Metasploit, as usual, makes it really simple. I really consider this to be a social engineering attack, because you need the victim to access a share. Yes, in the [...]

Top 10 Ways To Protect Yourself Online

Posted: 1st July 2010 by Matt in hacks, security, social engineering
Tags: address phone number, AntiVirus, exploits, facebook, firefox, firewall, hackers, human nature, identity theft, infection, linkedin, Linux, myspace, privacy settings, risk, security, social engineering, social networking, spyware, spyware malware, SSID, virus, virus software, vulnerability, webcam, WEP, Windows, Women, wpa

Never thought I’d be writing a “Top 10″ list, but I get asked this question often enough that I figured I’d just list off a few ways that people can better protect themselves from hackers, identity theft, and the random mayhem that takes place on the internet. I’m going to try to order it according [...]

Sponsored Links

Archives

Recent Posts

Blogroll

matt@attackvector.org

Posts Tagged ‘Windows’

An Open Letter to Microsoft

DLLHijackAuditKit v2

New DLL Hijacking Exploits (many!)

Social Connections

Admin