Category ArchivePenetration Testing
Filed under: Exploits, Penetration Testing, Security Tools
posted by D1m on 21 Aug 2007
TXDNS v2.1.5 – A Multithreaded Digger/Brute Forcer For DNS
Arley Silveira has released the 1 year anniversary version of TXDNS. Very soon he will release the version 2.2 of TXDNS.
This release implements DNS queries against multiple DNS servers, a more efficient threading algorithm and some minor bug fixes.
Filed under: Exploits, Penetration Testing, Security Tools
posted by D1m on 21 Aug 2007
SSHatter v0.2 – A Password Brute Forcer For SSH
Tim Brown from Nth Dimension has coded a cool password brute forcer for SSH called SSHatter.
It is multi threaded and can audit more than one system and account in a given session.
Filed under: Defacements, Hacktivism, Penetration Testing, Personal Opinions, Security Articles
posted by D1m on 09 Aug 2007
How Crackers Deface Websites? Why They Do It?
Through the following post I am not purposing to influence you to start defacing, but to briefly give you a better understanding of how and why it is done.
Almost everyday I visit Zone-H’s archive of special digital attacks, I find that at least 1 or 2 attacks were done against US governmental web servers. The domain suffix of the defaced websites was *.gov. Does this fact means that they are totally secure? I don’t think so… Obviously the web servers may host very confidential data. In this case the web server administrators seemed to have allowed threats against governmental assets. Any unwanted consequences that a breach of security can lead to, are mainly caused by the irresponsibility and lazyness of system administrators and web developers.
Filed under: Exploits, Penetration Testing, Security Articles
posted by D1m on 17 Mar 2007
Pen-Test Paper: How An Internal Network Becomes External
My friend SuRGeoN from Greece wrote a very interesting pen-test paper which explains how easy is to convert an internal network into an external with the port redirection technique. He demonstrates the attack scenarios – including network architecture diagrams – and goes into great technical details about them.
Filed under: Penetration Testing, Security Tools
posted by D1m on 08 Feb 2007
NMapView v0.5 – Windows GUI Frontend For NMap Security Scanner Released
Vito Antico from CraftySoftwares.com, has recently released NMapView v0.5. NMapview provides the GUI frontend for the free NMap security scanner made by Fyodor. It is compatible with Windows 2000, XP, 2003 and Vista. It works with NMap v4.x, which you can download from Insecure.org.
Note: It requires Microsoft .NET Framework 2.0 and Winpcap.