jinwald12

Forum Replies Created

Viewing 14 reply threads
  • Author
    Posts
    • #51031
      jinwald12
      Participant

      @ajohnson wrote:

      Why is everyone saying BackTrack is outdated? It’s based off an LTS version of Ubuntu and is still completely supported: https://wiki.ubuntu.com/LTS

      it’s based off of 10.04 (lucid) which while in theory is still LTS but does not get nearly as much attention as other releases and BT uses different repos then normal lucid for most of it’s programs which have out dated versions (with the exception of firefox and a few others) and they slapped on a kernel version that is no where near what lucid was designed to work with.

    • #51022
      jinwald12
      Participant

      Are you crazy? It’s never a good idea to run as root the hole point of sudo/levels of privilege is to allow for “security in layers” so that way if they compromise the signed in user an attacker does not have free reign of the system they have to find a way to escalate privileges. And it does not matter if it’s a forensics boot or not backtrack still is based off of an outdated platform.

    • #49362
      jinwald12
      Participant

      this is probably the best progressive lock out there http://learnlockpicking.com/

    • #49361
      jinwald12
      Participant

      Like the guy above said the best way to get good really fast at lock picking is to get a progressive lock and practice. Lock your self in a room (no pun intended) for a day or so and do nothing but pick locks. And be sure to change up the configuration of the practice lock you are using, switch pins based on weight, size and type until you can pick anything that’s thrown at you.

    • #51020
      jinwald12
      Participant

      But to be honest use specific VMs are better and more cost efficient. Assuming your virtualization software is up to date its really unlikely that malware will “jump the petri dish” as it where. Also Backtrack 5 runs as root on a outdated version of ubuntu with tons of after market modifications i would not use it to do banking under most circumstances

    • #51019
      jinwald12
      Participant

      he forgot to mention the tin foil hats and vpn chaining

    • #50849
      jinwald12
      Participant

      for practicing and learning SQL injection i reccomend this lab on a LAMP server: https://github.com/Audi-1/sqli-labs  and if you get stuck the developer of these labs has video tutorials on Security Tube

    • #50813
      jinwald12
      Participant

      Against a modern IDS i am not so sure they would not notice and do you really want to risk ending a pen test during the recon phase, because you got caught? I would rather deal with a slightly slow stealthy scan then a fast loud and noticeable scan.

    • #50810
      jinwald12
      Participant

      I would have made it multi-threaded, but the thing with brute forcing DNS is it’s noisy-ish, not as noisy as a Zone-transfer but even a half-assed IDS would pick up multi-threaded DNS brute force. also in my Experience python does not do multi-threading well.

    • #50459
      jinwald12
      Participant

      i found a book on exploiting these systems:http://tinyurl.com/cq6r869

    • #44856
      jinwald12
      Participant

      Don’t get the H it does not support 802.11N or many advanced features that is why the Hakshop no longer sells it they now sell the NHA which is far superior DO NOT I REPEAT DO NOT GET the H

    • #44851
      jinwald12
      Participant

      the  Alfa AWUS036H has the shitty reltek chipset and can not do 802.11N so go for the  Alfa AWUS036NHA and the hakshop no longer sells the  Alfa AWUS036H they sell the NHA so regardless of what vivek will tell you it is shit go for the NHA

    • #49869
      jinwald12
      Participant

      Mdk3 will suit your needs if scripted, or you can look into http://openwips-ng.org/index.html however it is immature at  this time.

    • #49883
      jinwald12
      Participant

      I wrote a article on this with a focus on wifi pen testing, it may be of help to you.
      http://resources.infosecinstitute.com/wlan-penetration-test/

    • #48830
      jinwald12
      Participant

      There may be a few maverick networks out there, but generally you will be dealing with EAP and WPA2-PSK so focus on that  and get a good GPU rig.

Viewing 14 reply threads

Copyright ©2021 Caendra, Inc.

Contact Us

Thoughts, suggestions, issues? Send us an email, and we'll get back to you.

Sending

Sign in with Caendra

Forgot password?Sign up

Forgot your details?