|
Ethical Hacker Community Forums
|
|
December 01, 2008, 03:44:20 PM
|
 Show Posts
|
|
Pages: [1] 2 3 ... 14
|
|
4
|
Resources / Tools / Re: how it works???????
|
on: August 29, 2008, 08:42:06 AM
|
but I heared that we can hide messges behind the picture,but is this possible to hide any executable code behind the pic?  No, you cannot hide an executable inside a picture using steganography. Steganography can only be used to hide text, and encrypted it. If you want to hide an executable, use a "wrapper" instead. Check out the other thread about this topic And with the GIFAR presentation at BlackHat by Nate McFeters, et al. you'll find that pictures combined with Java will do exactly what you just said cannot be done. Apparently this garnered some attention at BlackHat this week. Rich Mogull gave a little write up about it over on Securosis, but I've been seeing a lot of others talking about it, too. |
|
|
|
|
6
|
Resources / Tools / Multi-Distro Live DVD
|
on: August 28, 2008, 02:14:44 PM
|
Just read on Rob Fuller's blog about the Multi-Boot Security Live DVD. Sounds pretty rad, gonna gave to grab it this weekend and put it on a thumb-drive. As Rob asks, "What's on YOUR keychain?" Contains: Backtrack 3 Damn Small Linux 4.2.5 GeeXBoX 1.1 Damn Vulnerable Linux (Strychnine) 1.4 Knoppix 5.1.1 MPentoo 2006.1 Ophcrack 1.2.2 (with 720 mb tables) Puppy Linux 3.01 Byzantine OS i586-20040404 |
|
|
|
|
7
|
Resources / Tools / PowerPoint Password Cracker
|
on: August 26, 2008, 02:05:20 PM
|
|
Does anyone know of a good (free) solution for cracking a MS PowerPoint password?
My company recently let someone in management go, only to find out after the fact that he password-protected several documents that upper management now needs.
I've found several through google, but they are all trial versions that apparently don't have functionality for a password as long as was created.
|
|
|
|
|
9
|
Resources / Tools / Spear-phishing tool
|
on: August 25, 2008, 12:58:50 PM
|
At next month's OWASP Conference, they'll be releasing a new version of their application testing LiveCD. Included on the CD will be Lunker, a new open-source spear phishing tool. Joshua Perrymon from PacketFocus will be presenting the tool at the conference. According to a recent DarkReading article: The new Lunker phishing attack and audit tool is aimed at the penetration tester, so it comes with some advanced hacking features, and doesn’t use canned scenarios, but rather templates that can be customized. “Spear phishing is a huge risk. You’ve really got to start testing for this,” says Joshua Perrymon, who developed the Lunker tool. “You’ve got to start measuring the effectiveness of your [organization’s] security awareness and policies.”
...Lunker is aimed at the in-house hacker or outside researcher, Perrymon, CEO of PacketFocus, says. It includes an email reconnaissance feature that crawls the major search engines for corporate email accounts, but can also use lists provided by the would-be targeted organization. It also probes the target for weak links and suggests the most effective template for an attack, based on the emails and other analysis it has conducted on the target. And it comes with monitoring features that analyze the phished user’s actions in response to the phishing email. |
|
|
|
|
13
|
Resources / Tools / Re: OpenVAS
|
on: August 19, 2008, 01:38:58 PM
|
Well now I feel like a tard for not reading down the list... I totally missed this post earlier. *hides his head* Right there with ya, buddy  |
|
|
|
|
Loading...
|
Forum 
Programming : not static?
Forensics : The Julie Amero Case: A Dangerous Farce
