Information Security

dnschef – Backtrack – Privilege Escalation – Spoofing Attacks – Network Spoofing – dnschef

If you want to spoof some DNS requests then dnschef is the tool to do it. I can never get enough of redirecting innocent Internet surfers to random locations. The main key for dnschef to be extremely useful is the fact that you will have to somehow get the traffic to the Backtrack Linux server running dnschef which could be done by gaining access and modifying DNS entries on a single server or by poisoning the real DNS server on a network. Below we show a couple examples of dnschef in action but overall it is really easy to use and the hard part will be figuring out the method you use to get the DNS (Domain Name Server) traffic to the Backtrack server running dnschef.

Information Security

How To Remove GimmieAnswers Spyware Virus, TDLS Alias Alureon

Earlier today a client called and said he had a virus or some spyware on his computer that could not be removed. The client was remote so I had to login to his computer to investigate. I used the typical tools such as Malwarebytes and Microsoft Security Essentials but the issue still existed. It seemed as if the computer had a proxy server configured but the proxy did not show underneath Internet Explorer connection settings or any of the other browsers. It didn’t happen all of the time but every now and then a pop up window would appear for the site GimmieAnswers.org and some other pop ups regarding “Daily Giveaway Contests” were also displaying. Below is more information on how the issue was resolved.

Technology Insights

How to Stop Google from Redirecting to Whatever Country You Are In.

I have been on vacation for the past few weeks and every country I go to, when I open my home page which is Google, it goes to the Google page of that particular country. I have found this to be really annoying. The browser I am using is Google Chrome however I experienced the same behavior in Firefox. I looked through all the options and setting but it seems that the language settings only cover the text of the actual browser and not the language settings of the pages in the browser. After a little searching I found a simple fix.

Technology Insights

Set Up a SPA-2000 With Gizmo5 and Google Voice for Free VoIP Service

Recently Gizmo5 added the ability to configure your Google Voice account within the Gizmo5 interface which allows for you to configure any SIP device (soft or hardware) to have free voice. I happened to have a SPA-2000 around so the below describes how to configure a Sipura SPA-2000 using Gizmo5 and a Google Voice account for free voice. For this howto you will need a SPA-2000, a Gizmo5.com account, and a Google Voice account.

Technology Insights

Trillian Secure ICQ And AIM Messages With Off-The-Record Messaging

One thing most people do not realize is the fact that sending Instant Messages over the Internet is not secure. Every time you speak with someone you risk the chance of someone listening in on those conversations. Especially now a days with so many wireless networks hackers can easily join networks and grab all of the data off those networks. There is any easy way to encrypt your AOL Instant Messenger and ICQ by using a plugin for Trillian. You can also encrypt either one if not using Trillian which is briefly discussed below. Follow these steps to install Off-The-Record Proxy and configure Trillian to use it to encrypt your messages to other users who also have the software installed. The below steps were performed on a laptop running Windows XP Professional 32-Bit.