-
jinwald12 replied to the topic 12 Steps to a malware free existence in the forum Malware 8 years, 3 months ago
@ajohnson wrote:
Why is everyone saying BackTrack is outdated? It’s based off an LTS version of Ubuntu and is still completely supported: https://wiki.ubuntu.com/LTS
it’s based off of 10.04 (lucid) which while in theory is still LTS but does not get nearly as much attention as other releases and BT uses different repos then normal lucid for most…[Read more]
-
jinwald12 replied to the topic 12 Steps to a malware free existence in the forum Malware 8 years, 3 months ago
Are you crazy? It’s never a good idea to run as root the hole point of sudo/levels of privilege is to allow for “security in layers” so that way if they compromise the signed in user an attacker does not have free reign of the system they have to find a way to escalate privileges. And it does not matter if it’s a forensics boot or not backtrack…[Read more]
-
jinwald12 replied to the topic Learning lock picking in the forum Physical Security 8 years, 3 months ago
this is probably the best progressive lock out there http://learnlockpicking.com/
-
jinwald12 replied to the topic Learning lock picking in the forum Physical Security 8 years, 3 months ago
Like the guy above said the best way to get good really fast at lock picking is to get a progressive lock and practice. Lock your self in a room (no pun intended) for a day or so and do nothing but pick locks. And be sure to change up the configuration of the practice lock you are using, switch pins based on weight, size and type until you can…[Read more]
-
jinwald12 replied to the topic 12 Steps to a malware free existence in the forum Malware 8 years, 3 months ago
But to be honest use specific VMs are better and more cost efficient. Assuming your virtualization software is up to date its really unlikely that malware will “jump the petri dish” as it where. Also Backtrack 5 runs as root on a outdated version of ubuntu with tons of after market modifications i would not use it to do banking under most circumstances
-
jinwald12 replied to the topic 12 Steps to a malware free existence in the forum Malware 8 years, 3 months ago
he forgot to mention the tin foil hats and vpn chaining
-
jinwald12 replied to the topic Web App Pen Testing training in the forum Web Applications 8 years, 3 months ago
for practicing and learning SQL injection i reccomend this lab on a LAMP server: https://github.com/Audi-1/sqli-labs and if you get stuck the developer of these labs has video tutorials on Security Tube
-
jinwald12 replied to the topic dns2geoip.py in the forum Tools 8 years, 3 months ago
Against a modern IDS i am not so sure they would not notice and do you really want to risk ending a pen test during the recon phase, because you got caught? I would rather deal with a slightly slow stealthy scan then a fast loud and noticeable scan.
-
jinwald12 replied to the topic dns2geoip.py in the forum Tools 8 years, 3 months ago
I would have made it multi-threaded, but the thing with brute forcing DNS is it’s noisy-ish, not as noisy as a Zone-transfer but even a half-assed IDS would pick up multi-threaded DNS brute force. also in my Experience python does not do multi-threading well.
-
jinwald12 replied to the topic Student RFID tracking… in the forum News from the Outside World 8 years, 4 months ago
i found a book on exploiting these systems:http://tinyurl.com/cq6r869
-
jinwald12 replied to the topic network adapter for packet injection in the forum Hardware 8 years, 4 months ago
Don’t get the H it does not support 802.11N or many advanced features that is why the Hakshop no longer sells it they now sell the NHA which is far superior DO NOT I REPEAT DO NOT GET the H
-
jinwald12 replied to the topic network adapter for packet injection in the forum Hardware 8 years, 4 months ago
the Alfa AWUS036H has the shitty reltek chipset and can not do 802.11N so go for the Alfa AWUS036NHA and the hakshop no longer sells the Alfa AWUS036H they sell the NHA so regardless of what vivek will tell you it is shit go for the NHA
-
jinwald12 replied to the topic tool to dissociate wireless clients? in the forum General Certification 8 years, 5 months ago
Mdk3 will suit your needs if scripted, or you can look into http://openwips-ng.org/index.html however it is immature at this time.
-
jinwald12 replied to the topic OSINT footprinting in the forum Network Pen Testing 8 years, 5 months ago
I wrote a article on this with a focus on wifi pen testing, it may be of help to you.
http://resources.infosecinstitute.com/wlan-penetration-test/ -
jinwald12 replied to the topic crack wep wireless and wpa video in the forum Wireless 8 years, 5 months ago
There may be a few maverick networks out there, but generally you will be dealing with EAP and WPA2-PSK so focus on that and get a good GPU rig.
-
jinwald12 replied to the topic crack wep wireless and wpa video in the forum Wireless 8 years, 6 months ago
Cracking wep is not that useful for pen testers, as most of the companies that can afford AND want a legitimate penetration test are not using wep. WPA- enterprise attacks are essential and so are physical attacks on routers and access points as well as a good GPU rig.
-
jinwald12 replied to the topic network adapter for packet injection in the forum Hardware 8 years, 6 months ago
be sure to get the alfa card with the atheros chipset as atheros is the gold standard for wifi hacking it has the best compatibility with linux
-
jinwald12 replied to the topic wireless card help in the forum Wireless 8 years, 6 months ago
this is a newer alfa card then the one vivek recommends which in my opinion is shit it can not go into master mode which is vital for EAP attacks on modern kernels but if you can’t get one from a store near where you live i recommend ace hackware they sell this particular card and ship to pretty much anywhere domestically (U.S.) for 10$ and…[Read more]
-
jinwald12 replied to the topic ace hackware in the forum Hardware 8 years, 6 months ago
your welcome i hope this helps you guys get more exposure
-
jinwald12 replied to the topic network adapter for packet injection in the forum Hardware 8 years, 7 months ago
alfa makes a newer that can use 802.11N and has an atheros chipset the advantage the atheros chipset has is that it can go into master mode for EAP attacks the problem with the rtl8187 chipset is it can not go into mastermode to be used as a soft ap on modern linux kernels (regardless of the outdated label on the box it comes in) and it also can…[Read more]
- Load More