Information security articles related to Backtrack Linux, information gathering, Windows, exploitation tools, OSX, reverse engineering, Ubuntu, maintaining access, CentOS, vulnerability assessments, etc.
The past couple of days I have written a couple articles about how to view iPhone image GPS data on a Mac using Photoshop and Preview. Each of these articles included a mini warning at the bottom of the article noting that you should keep the GPS data in mind when uploading images to social…
Yesterday I wrote an article on viewing iPhone image GPS data via Photoshop on the Mac but since not everyone has the need to have Photoshop along with the fact that Photoshop is not cheap I also wanted to show a way to view iPhone image GPS data without having to install any third party…
Yesterday I read an article on location data that is included with all images taken on your iPhone. This type of location data, which is also known as Geo Data or GPS Data, is included behind the scenes on all sorts of media that you create on a day to day basis so while I…
The other day I had a wireless network packet capture file saved as a .cap file. The ESSID that was displaying via normal aircrack-ng output of the WPA/WPA2 wireless packet capture lead me to believe there was at least one space included in the beginning of the ESSID and likely after the ESSID since it…
Awhile back I installed a version of Metasploit Pro while juggling a couple other tasks and unfortunately I noted the password in an encrypted text document and forgot the location which in itself was a fail. Regardless of the mistake I made luckily Metasploit Express and Metasploit Pro make it easy enough to change the…
The sbd command is a netcat clone that offers decent encryption, allows for command execution, and will install on Linux or Windows. You are likely aware of netcat and all of the different ways you can use it including reverse shells, port scanning, etc. The sbd command is a great tool for opening up protected…
The bulk_extractor tool is one of the tools on Backtrack that a single article is not going to do it a lot of justice but hopefully after reading the below you will be able to see the benefits and understand basic usage of this amazing tool. The bulk_extractor actually reminds me of various tools such…
The ss command is not necessarily specific to Backtrack but is typically included in most Linux or UNIX distributions. This is definitely a core utility though that should be in any pen testers arsenal as it provides great information about any type of socket socket including DCCP sockets, RAW sockets, TCP sockets, UDP sockets and…
Backtrack includes a bunch of items that are not in the menu system such as the list-urls.py Python script. This script which has been enhanced by Muts simply queries a specific URL and extracts all of the URL’s from the page. These types of scripts really are handy and knowing your way around Backtrack can…