-
l33t5h@rk replied to the topic WEF: Cyber Attacks are a Top Five Threat, Secure Systems Don't Exist in the forum Cyber Warfare 9 years, 1 month ago
This is pretty alarming yet can be considered almost a victory in some ways. Technology is finally being recognized.
-
l33t5h@rk replied to the topic Web Security Mailing List in the forum Web Applications 9 years, 1 month ago
@alucian wrote:
I think that the access to this courses and the fact that part of the money will go to support some OWASP projects justify the 50$ for membership.
I’ll join OWASP as a member.
Thanks!
Yeah huge value in my opinion, wealth of information for the cost!
-
l33t5h@rk replied to the topic Web Security Mailing List in the forum Web Applications 9 years, 1 month ago
@alucian wrote:
This courses/learning are offered to the members only, or they are offered to the public?
Hi Alucian – Don’t see that it is restricted, give it a shot:
-
l33t5h@rk replied to the topic Web Security Mailing List in the forum Web Applications 9 years, 1 month ago
@MaXe wrote:
There’s also the Owasp Mailing lists, that occasionally has “good” info too.
The webappsec.org mailing is however, heavily moderated and rarely contains the really cool stuff you would see on less heavily moderated lists. But it’s a good list to follow none the less. ~ My personal opinion hehe 🙂
I am a member of OWASP and wanted…[Read more]
-
l33t5h@rk replied to the topic [Article]-December 2011 Free Giveaway Winner – SANS in the forum News Items and General Discussion About EH-Net 9 years, 1 month ago
@don wrote:
Yes. The sponsor was a little behind in getting some details. Working out the kinks. Seems like everyone needs extra time after the holidays.
Amen to that, I’m still trying to get adjusted, 2 weeks vacation and 10 lbs later, I think I’m ready to get back after it in 2012 😀
-
l33t5h@rk replied to the topic [Article]-December 2011 Free Giveaway Winner – SANS in the forum News Items and General Discussion About EH-Net 9 years, 1 month ago
Congrats!
-
l33t5h@rk replied to the topic Nexpose issue in the forum Network Pen Testing 9 years, 1 month ago
@SephStorm wrote:
once I VPN in, I am considered on the local network right? All smb traffic would be going through the tunnel and not directly accessible?
Correct, it would all be tunneled and the cifs ports will not be exposed. It’s unlikely the ports are exposed externally as you would have to have explicitly defined this. Hope this helps!
-
l33t5h@rk replied to the topic Secure Password Storage in the forum Web Applications 9 years, 2 months ago
Are the other sites similar sites to this or common social networking sites and this is a portal to those? Just curious as to the goal.
-
l33t5h@rk replied to the topic Breaking In in the forum Opinions 9 years, 2 months ago
Interesting experiences, very good reads from both of you!
-
l33t5h@rk replied to the topic DHCP Lease time in the forum OS 9 years, 2 months ago
@lorddicranius wrote:
https://help.ubuntu.com/community/dhcp3-server
This page says the lease time is configured in /etc/dhcp3/dhcpd.conf.
Would think it is on srv side
-
l33t5h@rk replied to the topic Secure Password Storage in the forum Web Applications 9 years, 2 months ago
What does the master password do exactly?
I have written an app before that used a similar setup but the master password was more of the value of an encryption key that was stored (hashed) in a configuration file, with the keys residing at the OS level.
-
l33t5h@rk replied to the topic Merry Christmas & Happy New Year in the forum News Items and General Discussion About EH-Net 9 years, 2 months ago
Happy Holidays to all EH-Netters across the world!
-
l33t5h@rk replied to the topic Any chance of an EH-Net mobile app? in the forum Mobile 9 years, 2 months ago
@Jamie.R wrote:
Maybe EH should have a projects page where people can give back 😛
+1
-
l33t5h@rk replied to the topic Certification plans for 2012? in the forum General Certification 9 years, 2 months ago
@knwminus wrote:
At any rate that is my 18 month goal (CCNP:S,CCNP,CCIE:S) with OSCP possibly mixed in there.
Holy aggressive batman
-
l33t5h@rk replied to the topic Any chance of an EH-Net mobile app? in the forum Mobile 9 years, 2 months ago
-
l33t5h@rk replied to the topic Web page hacked. See if you can help? in the forum Web Applications 9 years, 2 months ago
That’s interesting I figured it was just a php vuln that was exploited.
Best of luck
-
l33t5h@rk replied to the topic tools ot Modify DACL of remote machine in the forum Tools 9 years, 2 months ago
If you’re just trying to add:
psexec srvName icacls.exe D:temp* /grant user-name:(D,GR,X)Obviously it will need a little tweaking w/ the switches but this should do you for a starter.
-
l33t5h@rk replied to the topic Web page hacked. See if you can help? in the forum Web Applications 9 years, 2 months ago
That’s good news, have you got any info on whether or not the db was backed up?
-
l33t5h@rk replied to the topic tools ot Modify DACL of remote machine in the forum Tools 9 years, 2 months ago
@dynamik wrote:
If you can’t use Powershell, psexec and icacls should do the trick.
Yep – these can all do it. If you don’t have powershell, figure out what the ACL should look like, write out the icacls.exe command & variables, then save it in a batch file and script it out to the other boxes.
What OS(es) are involved? All W2K3?
-
l33t5h@rk replied to the topic Web page hacked. See if you can help? in the forum Web Applications 9 years, 2 months ago
I (hesitantly) went to the site and it does look like they just defaced it instead of actually hacking the thing, likely somebody just found a leak in the vBulletin software and exploited it that way. I’d say if you can restore the database w/ the updated software that’s probably the most you can do for now.
FYI – this thing sadly happens a lot…[Read more]
- Load More