n1p

@j0rDy wrote:

Congrats MaXe! impressive score for sure ;D any new developments/plans yet?

Thanks j0rDy! If I had trusted my own opinions more, (I was thinking in “GIAC terms” on occasion), I probably would’ve scored a little bit higher. But it was a nice score that I found acceptable  🙂 Nothing new currently, well, besides a few projects, etc.…[Read more]

@n1p wrote:

What’s your fuzzer of choice?

Depends on what I’m fuzzing 😉 Peach is an all around awesome tool and straightforward. You can’t beat Commraider for ActiveX. Protos is a good framework to edit on your own. Commercially… Klocwork rocks. I’ve heard the world about Codenomicon but I’ve yet to purchase a copy or see it demo’d although I…[Read more]

@n1p wrote:

Thanks! That is no problem. I might try make it a monthly thing, so if you have any suggestions let me know.

Article was cool. Corelan (since you linked it) has some very thorough works as does OpenRCE. I’d personally like to see more ‘weaponization’ articles, e.g. ActiveX anyone. It’s surprising I didn’t see mention of WinDBG in…[Read more]

@n1p

Have you taken Lenny’s SANS GREM course?

Just curious on your thoughts if you have.

@n1p wrote:

Audio and VM issues are a known issue and appear quite a bit in the forum. It also comes quite a bit in the IRC channel!

May be slow to fix it. I highlighted a bug with Hydra and HTTP-Post that was 1 year old and raised in Pre-Final, but still appears in final.

i understand that some bugs wont get fixed fast cause of the nature of…[Read more]

@n1p wrote:

I find Liferea for *nix quite simple and nice.

http://liferea.sourceforge.net/

n1p

+1

RSSOwl is nice too.

@n1p – Thanks. Didn’t know ED makes post on that blog, I’ll bookmark it.

@hayabusa – Thanks again. Was just looking for it for a pentest.

@chrisj – I’ll have to look into that, thanks for the link.

@pizza1337 wrote:

@n1p wrote:

I would also like to do Cracking the Perimter or OSCP.. but lack of money is preventing me! Some day though 🙂

one of my friends told me the test for CTP is like 48 hours of living hell.

but things you learn from that course are probably very useful.

amen to the 48 hours of hell, but my guess would be that you…[Read more]

@n1p wrote:

I would also like to do Cracking the Perimter or OSCP.. but lack of money is preventing me! Some day though 🙂

one of my friends told me the test for CTP is like 48 hours of living hell.

but things you learn from that course are probably very useful.

@n1p wrote:

As was stated previously, this is the way it is meant to operate. you will also require this to run as you kick of aireplay-ng. It will show you the amount of IV data fragments collected and as such provide an indicator as to when you crack the key. By the sounds of it, you are working from the command line environment with a single…

[Read more]

@n1p wrote:

A great way for beginners is also to start compiling simple hello world examples and viewing them in a debugger. Then improving on this with inclusion of functions, pointers and structs etc to see how these are represented in disassembly. This can also be used to code vulnerable apps and view how buffer overflows look in…

[Read more]