So earlier today I noticed a discrepancy in traffic to question-defense.com and because of a previous incident I knew exactly where to look. Sure enough a similar attack had been performed which we are coining Search Engine Click Jacking. In this case we are sure that a single files permissions were left open and the…
Details
When testing websites it may be beneficial to spoof the referer URL. I have used these methods in the past to locate bugs in code or files that have been infected with forms of search engine click jacking. The two easiest methods that I have found are using the Google Chrome extension called Spoofy or…
Details
Typically you don’t need to install more because it is always already installed. The other night while researching something on a Windows 7 computer that had Cygwin installed we were looking to use more but it wasn’t installed. I am not sure if all default Cygwin installations don’t include more but in this case it…
Details
I have put together some previous articles on upgrading the firmware on your Linksys WRT600N wireless router using various versions of DD-WRT. One thing I have not included in the articles is the specific DD-WRT download location for the firmware branch that I prefer which is called BrainSlayer. So below is a brief explanation of…
Details
It is possible to crack WPA/WPA2 wireless network credentials using any number of open source tools available now including oclHashcat+, aircrack-ng, or pyrit to name a few. If you are having trouble cracking a password it is possible that the network uses RADIUS authentication instead of pre-shared keys(PSK). Now you could see this when if…
Details
Expanding on this article previously written regarding launching Gnome Terminals from Ubuntu menu items would be if you want to set the size of the Gnome Terminal. The terminal window is launched using gnome-terminal as shown in more detail below. You can use the –geometry switch to set the size of the Gnome Terminal window…
Details
Tonight I was working on creating some some listeners that run automatically on boot in Ubuntu. Not only should they run automatically but there should be scripts to start, stop, and watch the status of the listeners for incoming traffic. I also decided to add the items to the Ubuntu Applications menu and thought it…
Details
It is very common when obtaining wireless network handshakes to end up with a huge capture(.cap or .pcap typically) file. Previously purehate wrote this article on filtering out SSID specific EAPOL packets from a capture file but if you wanted to keep any and all packets related to a specific SSID including data packets, beacon…
Details
Installing SSLScan on OSX is documented numerous other places as well but you may not find the answer immediately when searching via the error output during an attempted install. Below is the output from attempting to install SSLScan on OSX without using the ports version of OpenSSL. Follow the directions below to get SSLScan working…
Details