|
Ethical Hacker Community Forums
|
|
October 12, 2008, 04:34:01 AM
|
|
334
|
Resources / News from the Outside World / Re: firefox 3.0
|
on: March 24, 2008, 04:09:23 AM
|
|
Shawal,
thanks for the link and snippet, looks like Firefox will start protecting against a lot of things out the box with extra features so you don't need a laundry list of add-ons. Should make setting up 'regular' users PC's simpler.
I'm with iSmith though as I'll wait for the stable release, looking good.
|
|
|
|
|
335
|
Resources / Tools / Re: crypto testing...could use some help
|
on: March 23, 2008, 03:08:10 AM
|
|
ATC,
welcome to EH-Net.
if I get a few minutes I'll try to have a crack at your encryption, however as my crypto-fu is weak and you've gone to the effort of creating your own I'm guessing (hoping) this is more advanced that anything I can break easily.
For me crpyto and crypto-analysis is definitely more of an interest than something I have an aptitude for. (I've read Simon Singh's Code Book many times but still couldn't implement a basic algorithm) As most encryption systems are only accepted as being secure after large scale analysis and long term testing by the crpyto community a lot of 'secure' systems only remain secure whilst no-one is interested in breaking them. (Same as the arguement by the Windows community to explain why there are less exploits for *nix, but thats another thread)
Are you able/willing to provide more information related to your encryption methods? Basically I would be interested to know what you are doing differently from anything else that makes your system more secure than X.
|
|
|
|
|
336
|
Ethical Hacking Discussions and Related Certifications / Other / Re: Add CLI tools to Ubuntu App Menu
|
on: March 22, 2008, 11:38:56 AM
|
I noticed that everything was 'command;sudo -s'. Sure enough, tried this on Kubuntu and it worked with no problem.
Knew there would be a neater way of doing it. I've left my linux machine at work as I'm meant to be in holiday mode for Easter weekend. Let me know if you have any more luck and I'll try a few things once I get mty hands on one of my linux boxes |
|
|
|
|
337
|
Resources / Tools / Re: Russix The Wireless Auditing Live Linux
|
on: March 22, 2008, 04:08:12 AM
|
|
I've looked at Russix before (actually have a burned CD sat on my desk now).
Problem that I've had is that I can't get it to find my wi-fi device on my laptop with an atheros chip and can't boot on my laptop with an Intel chip. Has anyone else had similar issues or do I just seem to buy strange hardware combinations? Think I'm a little behind, version wise, so if everything is looking stable I'd be interested in taking another look.
|
|
|
|
|
338
|
Ethical Hacking Discussions and Related Certifications / Other / Re: Add CLI tools to Ubuntu App Menu
|
on: March 22, 2008, 04:00:39 AM
|
|
Bill,
I'm sure it's a nasty hack and someone will be able to provide a better solution. For the same issue I just set the command to pipe it's output through more/less/<chooseYourPoison>, that way the terminal should remain open waiting for interaction.
I've only tried this under KDE so your mileage may vary, but I'm assuming the principal should be the same.
|
|
|
|
|
339
|
Columns / Gates / Re: Metasploit Toolkit Book Review
|
on: March 22, 2008, 03:56:14 AM
|
Chris, looks like you've done it again. Was out shopping with the missus (again), came across a new security book I hadn't seen and went 'ooh'. Glad I decided to wait till I got back home to read some reviews. Are you my financial guardian angel?  |
|
|
|
|
342
|
Ethical Hacking Discussions and Related Certifications / Network Pen Testing / Re: hacking adware.
|
on: March 19, 2008, 07:58:24 AM
|
Just had this link from ThinkGeeks http://www.thinkgeek.com/gadgets/electronic/a11e/ and it reminded me of this thread. Basically it plugs in a free USB port and randomly sends fake keyboard and mouse input. My first thought was, 'oohhhh cool prank' but thinking about it a bit more, I'm sure this could end up being nasty in many cases. Don't think I'd want to find someone had added this to my machine whilst I'm in config mode of a live Cisco device for example. Has anyone done or seen pranks that have gone wrong in similar ways? It's all fun an games until someone loses their job... |
|
|
|
|
343
|
Ethical Hacking Discussions and Related Certifications / Network Pen Testing / Re: Social Engineering
|
on: March 18, 2008, 04:02:05 PM
|
I would suggest starting to do presentations to your work colleagues about topics you have confidence in. This will get you comfortable speaking in front of people.
...
If you're not comfortable in front of people how do you present to a room full of clients about the results of the pentest? That aspect of being a pentester is as important, if not more so than being technically proficient.
I think you hit the nail on the head, confidence for me (or lack of it) is the key to doing whats needed. Stick me in a room full of suits and directors and I'll quite happily discuss a vulnerability in layman's terms. Stick me on the phone to a security guard to convice him that "the BLT drive on my computer just went AWOL" and it's a whole different ball park |
|
|
|
|
Loading...
|
Forum 
Show Posts
Malware : New to Computer Exploits
News Items and General Discussion About EH-Net : [Article]-MS Blue Hat Hackers Headline Chicago Security Con
