The Ethical Hacker Network - Latest posts of: Dark_Knight

Latest Additions

EH-Net Login

Welcome Guest.

No account yet? Register

Who's Online
We have 42 guests online

Advertisement

You are here: Home

EH-Net

May 19, 2013, 08:29:28 PM

Welcome, Guest. Please login or register.
Did you miss your activation email?

News: Go back to The Ethical Hacker Network Online Magazine Home Page

Home

Help

Calendar

Login

Register

Show Posts
Pages: 1 ... 14 15 [16] 17 18 ... 20

226	Ethical Hacking Discussions and Related Certifications / Other / US looks to hackers to protect cyber networks	on: April 18, 2009, 04:44:18 PM
http://tech.yahoo.com/news/ap/20090418/ap_on_hi_te/us_cyber_security Quote Buffeted by millions of digital scans and attacks each day, federal authorities are looking for hackers — not to prosecute them, but to pay them to secure the nation's networks. General Dynamics Information Technology put out an ad last month on behalf of the Homeland Security Department seeking someone who could "think like the bad guy." Applicants, it said, must understand hackers' tools and tactics and be able to analyze Internet traffic and identify vulnerabilities in the federal systems.

227	Ethical Hacking Discussions and Related Certifications / Wireless / Re: ALFA AWUS036H Issues !!!	on: April 14, 2009, 12:27:50 PM
I am using the rtl8187 drivers. Now that you mention it I may have been using airmon when I tried to connect. I will try again. Thanks for the help. Appreciate it..........

228	Ethical Hacking Discussions and Related Certifications / Wireless / Re: ALFA AWUS036H Issues !!!	on: April 13, 2009, 10:15:36 PM
# iwconfig lo no wireless extensions. eth0 no wireless extensions. wmaster0 no wireless extensions. wlan0 IEEE 802.11bg Mode:Monitor Frequency:2.442 GHz Tx-Power=27 dBm Retry min limit:7 RTS thr:off Fragment thr=2352 B Encryption key:off Power Management:off Link Quality:0 Signal level:0 Noise level:0 Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0 Tx excessive retries:0 Invalid misc:0 Missed beacon:0 # iwconfig wlan0 mode managed Error for wireless request "Set Mode" (8B06) : SET failed on device wlan0 ; Device or resource busy. wlanconfig wlan0 destroy wlanconfig: ioctl: Operation not supported

229	Ethical Hacking Discussions and Related Certifications / Wireless / ALFA AWUS036H Issues !!!	on: April 13, 2009, 09:17:33 PM
I am running the ALFA AWUS036H on BT4 and I am able to crack WEP etc. However I cannot connect to my AP. I get the following: Error for wireless request "Set ESSID" (8B1A) : SET failed on device wlan0 ; Operation not supported. I have searched for the error over at remote-exploit and tried the suggestions without success. Any ideas?

230	Ethical Hacking Discussions and Related Certifications / GPEN - GIAC Certified Penetration Tester / Re: Sans Disappoints !!!!!	on: April 09, 2009, 06:03:09 PM
Thanks for the replies guys. Much appreciated.

231	Ethical Hacking Discussions and Related Certifications / Network Pen Testing / Re: To Pen Test or not to Pen Test (and how justify it where you work)	on: April 07, 2009, 09:54:38 PM
Nice find. Thanks for the link. I also found this http://isc.sans.org/diary.html?storyid=6133

232	Ethical Hacking Discussions and Related Certifications / GPEN - GIAC Certified Penetration Tester / Re: Sans Disappoints !!!!!	on: April 07, 2009, 08:39:41 PM
I am looking into the GPEN 560 OnDemand version. I went through the demos available and was SOLD from there on out....

233	EH-Net / Special Events / Re: Q&A for Pen Testing Perfect Storm Part III: Network Reconstructive Surgery	on: April 07, 2009, 08:00:14 PM
Thanks for the link been searching for this

234	Ethical Hacking Discussions and Related Certifications / GPEN - GIAC Certified Penetration Tester / Sans Disappoints !!!!!	on: April 07, 2009, 07:43:36 PM
Having read all the great reviews about the GPEN 560 I decided to go ahead and sign up(or attempt to). However I am not impressed with Sans and their Customer Service or whatever you call it so far. Responses to queries are slow in coming or none at all. The reps who answer the phone dont seem to know just whats happening. I requested info on the formats of the labs like how they would be accessed etc and the person I spoke to could not give me a definitive answer. The same rep went on to say that she would send an email with the info I requested. Well that request was made some time ago and I am still waiting. Then I tried changing the address the materials should be shipped to in effort to save on shipping charges and it was almost like pulling teeth. I expected a lot better from Sans seeing that they are so popular and also that the course is so expensive. Maybe I expected too much but there are Sans man..........know what I mean? My .02

235	Ethical Hacking Discussions and Related Certifications / Network Pen Testing / Re: Nmap - Identifying Viable Zombies	on: April 06, 2009, 10:28:30 PM
Quote from: ChrisG on April 06, 2009, 08:28:03 PM actually it says to use -sI not -O but to answer your question. look for boxes that are probably getting low or no traffic. when you do your reverse dns lookups see if any names jump out as probably dev or old boxes. printers are discoverable on the net, use google dorks to find them. that being said, its still pretty difficult to detect a system that has a routable IP that is just sitting there doing nothing. http://nmap.org/book/idlescan.html to test: Attacker# nmap -sI Zombie -PN -p20-25,110 -r --packet-trace -v Target Starting Nmap ( http://nmap.org ) SENT (0.0060s) TCP Attacker:51824 > Zombie:80 SA id=35996 SENT (0.0900s) TCP Attacker:51825 > Zombie:80 SA id=25914 SENT (0.1800s) TCP Attacker:51826 > Zombie:80 SA id=39591 RCVD (0.1550s) TCP Zombie:80 > Attacker:51824 R id=15669 SENT (0.2700s) TCP Attacker:51827 > Zombie:80 SA id=43604 RCVD (0.2380s) TCP Zombie:80 > Attacker:51825 R id=15670 SENT (0.3600s) TCP Attacker:51828 > Zombie:80 SA id=34186 RCVD (0.3280s) TCP Zombie:80 > Attacker:51826 R id=15671 SENT (0.4510s) TCP Attacker:51829 > Zombie:80 SA id=27949 RCVD (0.4190s) TCP Zombie:80 > Attacker:51827 R id=15672 RCVD (0.5090s) TCP Zombie:80 > Attacker:51828 R id=15673 RCVD (0.5990s) TCP Zombie:80 > Attacker:51829 R id=15674 Idlescan using zombie Zombie (Zombie:80); Class: Incremental Hey Chris thanks for the response. I appreciate all the replies. I think though that you may have misinterpreted what I was trying to say or maybe I wasn't clear. I was referring to Section 5.10.2 Finding a Working Idle Scan Zombie Host : "Performing a port scan and OS identification (-O) on the zombie candidate network rather than just a ping scan helps in selecting a good zombie. As long as verbose mode (-v) is enabled" It is that -O that I speak of.So I am familiar with the -I option if you see where I am coming from. So I just wanted some clarification on that. Timmedin I don't find the question insulting at all. I just wanted some clarification on this particular section of the book is all. Even though its authorized what if I wanted to test trust relationships, firewall rules etc a zombie could prove useful.

236	Ethical Hacking Discussions and Related Certifications / Network Pen Testing / Nmap - Identifying Viable Zombies	on: April 03, 2009, 09:13:21 PM
I am currently reading Fyodors book on nmap and have a question the nmap idle scan. I understand the principles behind it but don't quite get how to find a good zombie over the web. According to the book u basically use the -O(OS scan) option along with -v and watch the IP ID's. Printers etc are recommended as good zombies but if u were doing an external pen test how would one go about finding a viable zombie?

237	Ethical Hacking Discussions and Related Certifications / Other / Re: Sharpening the Saw	on: March 25, 2009, 07:09:29 PM
Quote from: Jhaddix on March 23, 2009, 04:43:28 AM Quote from: timmedin on March 22, 2009, 06:40:51 PM Quote from: Manu Zacharia (-M-) on March 21, 2009, 12:49:10 PM Come here daily and interact in the forums / posts . Well duh... but what else do you guys do? I listen to 30 podcasts and follow a bunch of blogs. What else do you guys do? 1) Well, 30 blogs is good, but there are many more. I have a custom OPML file which includes mine, most of my instructors from SANS, the security bloggers network, and tons of other feeds. 2) I also stay up on podcasts, as you do, i'm sure i don't have to name the big ones. 3) TWITTER... man i have to say.. TWITTER. Create a separate non personal account, and follow everybody. I follow most of the SANS instructors, podcast makers, security bloggers, AV companies, everyone. You will be surprised how often people release cool stuff early or exclusively on twitter. 4) Stay up on CORE's and SANS Webcasts, also the SANS reading room and ISC. 5) Follow sites such as Dojosec.com, Learnsecurityonline.com, theacademypro.com, mubix's links, etc. 6) Go to Cons and training obviously. 7) Follow Syngress, Wiley, McGraw-Hill, publishing and check their new releases. if i think of more ill reply =) Thanks for that Jhaddix

238	EH-Net / Special Events / Re: Q&A for Pen Testing Perfect Storm Part III: Network Reconstructive Surgery	on: March 25, 2009, 07:02:26 PM
Quote from: Jhaddix on March 25, 2009, 06:49:40 AM Is the recording up for this yet? X2

239	Ethical Hacking Discussions and Related Certifications / General Certification / Re: CCNA Opinions	on: March 23, 2009, 06:54:11 PM
Quote from: timmedin on March 23, 2009, 10:51:46 AM I came up through networking so it helped me a bunch. Now working on the security side it helps when assessing network devices. I would say it wouldn't hurt, but it depends on your career goal. What are you wanting to do? Thanks all for the responses there are much appreciated. The goal is to be a well rounded security professional. I am coming from a programming background and have always been weak on the networking side. I also need to be able to speak to the networking guys and be able to identify when I am being fed crap.

240	Ethical Hacking Discussions and Related Certifications / General Certification / CCNA Opinions	on: March 22, 2009, 07:49:30 PM
Guyz, Having obtained the the CEH and OSCP would it make sense to pursue the CCNA as a means of solidifying networking principles? What are your thoughts on this?

Pages: 1 ... 14 15 [16] 17 18 ... 20

Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com

Page created in 0.074 seconds with 21 queries.

Exclusive Deal

SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format! Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013

Polls

Compared to this year, 2013 will be:

	Great!
	Better.
	About the same.
	Little worse.
	FUBAR!

Recent Forum Topics

OSCP - Offensive Security Certified Professional : OSCP exam scheduled (6) by gbhat
Incident Response : LinkedIn Forensics (0) by AFENTIS_Forensics
General Certification : Red Team/Blue Team (1) by ajohnson
OSCP - Offensive Security Certified Professional : Class Scheduled 6/8 - Linux n00b (6) by Grendel
Career Central : Starter cert? (3) by Grendel
Network Pen Testing : Beginner Ethical Hacker (1) by m0wgli
General Certification : CPT Practical Submission (0) by z28power4u
Web Applications : Nessus and Nikto (4) by Seen
Tutorials : Need guidance (7) by impelse
Malware : EICAR? (2) by SephStorm
Network Pen Testing : Cracking salted MD5 hash (4) by n37sh@rk
CEH - Certified Ethical Hacker : Passed my C|EH (3) by n37sh@rk
Mass Media : EC-council hacked, irony at his best? (0) by j0rDy
Web Applications : SQL Injection into an INSERT statement. (6) by eyenit0
Network Pen Testing : Solution for sipXtapi INVITE Message CSeq Field Header Remote Overflow (1) by m0wgli
Web Applications : dns (2) by H1t M0nk3y
Other : BSides Boston (0) by 3xban
Career Central : InfoSec in Central, FL (2) by tturner
Web Applications : Web vulnerability scanner (4) by H1t M0nk3y

EH-Net News Feeds
Latest Additions

Privacy Notice
for TDCC & All Properties

Advertisement

© 2013 The Ethical Hacker Network

Joomla! is Free Software released under the GNU/GPL License.