SynJunkie

After setting up macports the apps i use seem to download and work pretty good.  But i an see myself having a Linux VM to hand just in case.

Rather than VM Fusion i opted for Parallels though, being a total Mac newb could you tell me if VM Fusion is preffered and why?

Cheers

Syn

Kris

Regarding tools on Helix, there is a tool for file recovery called PC Inspector thats on the Helix CD.  I cover it’s usage (in a basic way) in a blog post I made a while back.

http://synjunkie.blogspot.com/2008/12/story-of-insider-part-3-playing-at-csi.html

This might be of interest for the future.

Regards

Syn

Thanks, i aim to please 🙂

Bazpaul

Not sure if its any use to you but did a blog post on bypassing mac address filtering a while back.

i’m sure there are better guides but it might be of use.

http://synjunkie.blogspot.com/2007/12/bypass-hidden-ssid-mac-address-filter.html

Regards

Syn

Kris

in answer to your question “When will they get it?” in regards to securing the networks.  I don’t think the masses ever will.  It’s something the majority of people will never understand and that’s why the vendors and the manufacturers should be putting more effort into selling devices that are secure by default.  But that means that a fe…[Read more]

If your interested, a recent HAK.5 episode talks about a bootable ophcrack usb setup.

There is a guide here

Creat a bootable USB Ophcrack in Windows

Regards

Syn

I ‘ve been looking forward to this tool since he spoke about it on pauldotcom a while back.  I can’t wait to get my grubby little mits on it.

Cheers for the links.

Syn

Malware

Why do you choose linux rather than OS X, is it familiarity or a shortcoming with OS X as a pentest platform?

After getting the mac I too am poor, and my family are pretty hungry!

Welcome outsourcethis, and well done on the CEH.

Syn

sgt_mjc

in answer to your question, there’s a few ways you could do this as i see it.  You could move the AP onto the LAN and arp poison between that and the gateway, however this does place your LAN at risk if not done properly.  An approach I like which worked well for me in the past was to set up an old box with PFSense on and 3 network i…[Read more]

oh, one last thing from me on this.  I believe that there are ways of disabling the SSID broadcast altogether (if your router supports it), but be aware that any clients connecting will likely broadcast it initially. So you might want to be aware of that point.

Cheers

Syn

Thanks for the compliment on my blog, i appreciate it.

one other thing, you could play around with the DHCP scope, can you limit the leases handed out and move the subnet to something other than 192.168.1.x

This, along with your other measures makes an attackers job a little harder.

Regards

Syn

P.S or you could be plain evil, by securing it…[Read more]

Put it this way.  You’ve done enough for someone like me to move on and find another wifi access point!

i know you would have but i’ll ask anyway. 

Have you changed the default password, disabled wireless administration and upgraded the firmware?

Syn

from what i hear the timeout (i actually heard it was a capture???) acts differently depending on how you access the account, i.e the wbsite locks you out, fine you can get in using your blackberry! a little more work needs to done it would seem.

I can only echo Don’s comments, but also I use my blog to keep my mind on track and to help me focus, otherwise i’m like “oh nmap upgrade gotta give that a look” and “wow i didn’t know hping could do that, let me try”, then “metasploit can do that too. let me see”.  And all this happens in the space of a few minutes so the result is nothing gets…[Read more]

Bruteforcing a waste of time?  Can anyone say “Twitter”!!!

http://blog.wired.com/27bstroke6/2009/01/professed-twitt.html

Syn

Think I heard Brett and Ovie talking about that a few weeks ago on CyberSpeak, it had gone right out of my head but i’m chuffed to see it put into play perfectly.

🙂

Cheers Chris.  I was thinking of tools to gather information that I can enumerate through a null session on Linux.