Has anyone tried SPIKE on BT5 yet? I'm getting errors trying to run ./generic_send_tcp

Just wondering if others are having the same issue.

-C

**Update**

Just found a very old list item that discusses this, the solution is to go to the src directory and do:


. ld.sh

Then you can use the generic's. I've found a couple of problems in BT5 already

He's just talking about loading up a netbook with some sort of metasploit payload or in HD's case, probably a super awesome magical payload that no one knows about. More than likely he just adds it to a startup folder on the box so that it runs every time they boot the netbook up. From there, he just pivots throughout the new network.

Depending on how fortified your client is would depend on how stealthy you need to be. Usually a reverse connect payload over 80 or 443 will get you what you want. If there is a real need to hide the payload from AV, you might want to look at a new post from scriptjunkie. I helped him get a payload 100% undetectable:

http://www.scriptjunkie.us/2011/04/why-encoding-does-not-matter-and-how-metasploit-generates-exes/

AHAHAHAH

I love my mac but have never had delusions of "superior security" and have always ran AV on it.

Hopefully this will change your mind if you think your mac is more secure than a PC.

http://www.networkworld.com/news/2011/051211-mac-malware-goes-from-game.html?source=nww_rss

Same exact for me. Interesting they didn't offer the KDE as a VM...

Already 6.1% done .... torrent is moving nicely!

Are you interested in any specific area? What is your job role right now?

It obviously depends what your target is but a good place to start is hydra.

I like the idea of white listing and in a static environment, it works well. However, unless you have a very good grip on your environment you may break a number of apps if you implement the policy without capturing every one-off app that some gal in accounting needs to use.

In the energy industry white listing works quite well because (gasp) AV can break the old software that our power plants run on. A great way to get around that is with white listing software.

I suppose a very slow and methodical roll out would definitely help you catch things you miss in your planning phase. It would be a monumental effort I think, so good luck!

@R3B005t

How are you handling the iTunes issue? With the iOS exploit that is now in Metasploit, we can now pull all that juicy info right from the device, as long as itunes is installed on the box.

I understand limiting exposure by only allowing folks with a business reason to have phones. That I totally agree with.

My problem with iPhone is that now there is another 3rd party app that you have to introduce to the environment (Itunes) and now you have to worry about patching another 3rd party product.

With Android you get some notification of what an app will do after you install it, however I know that no regular user is every thwarted by that information.

So here we are again, back to the point where its almost even in my mind. And at the point where you might earn some points with users giving them an option..... please tell me I'm crazy and please shoot me down. I want more of your opinions....

I need your opinions on Android vs iPhone in the enterprise. In my situation, we have to take Blackberry out, even though they still maintain the tightest control via BES. Don't ask questions, it is what it is.

It seems that iPhone does a better job vetting apps in the appstore, but I don't really have any solid proof. I know there was news in the last few months of a bunch of Android apps having security issues, but what is the real impact here?

I would love to hear what everyone thinks, put on all your hats here: security, admin, user.

Thanks,
C

certainly

msf> search "windows" -t exploit

You'll have to familiarize yourself with the different exploits by selecting one and looking at the info.

I cant stand Unity either!