FOG FLAMES

WebSploit Toolkit 1.6 Released

noreply@blogger.com (H Z) — Sun, 29 Apr 2012 04:15:00 +0000

WebSploit Is An Open Source Project For Scan And Analysis Remote System From Vulnerability

Description :

Autopwn - Used From Metasploit For Scan and Exploit Target Service
wmap - Scan,Crawler Target Used From Metasploit wmap plugin
format infector - inject reverse & bind payload into file format
phpmyadmin - Search Target phpmyadmin login page
lfi - Scan,Bypass local file inclusion Vulnerability & can be bypass some WAF
apache users - search server username directory (if use from apache webserver)
Dir Bruter - brute target directory with wordlist
admin finder - search admin & login page of target
MLITM Attack - Man Left In The Middle, XSS Phishing Attacks
MITM - Man In The Middle Attack
Java Applet Attack - Java Signed Applet Attack
MFOD Attack Vector - Middle Finger Of Doom Attack Vector
USB Infection Attack - Create Executable Backdoor For Infect USB For Windows

UPDATE Joomscan 4.4.2012 Security Scanner

noreply@blogger.com (H Z) — Sun, 29 Apr 2012 04:07:00 +0000

New update joomscan that in its database reaches the number of 623 vulnerability.

If you already have “installed” joomscan to do the update:./joomscan.pl update

Otherwise:
wget http://web-center.si/joomscan/joomscan.tar.gz

Joomscan has been compiled for windows, here is the download

Download JoomScan for Windows

Official site project: Web-center.si

CIntruder: bypass captchas

noreply@blogger.com (H Z) — Sun, 29 Apr 2012 03:55:00 +0000

Introduction

Captcha Intruder is an automatic pentesting tool to bypass captchas.

Installation

Code runs on many platforms. It requires Python and the following libraries:

- python-pycurl - Python bindings to libcurl
- python-libxml2 - Python bindings for the GNOME XML library
- python-imaging - Python Imaging Library

On Debian-based systems (ex: Ubuntu), run:

sudo apt-get install python-pycurl python-libxml2 python-imaging

Usage

cintruder [OPTIONS]

Options:

--version show program's version number and exit
-h, --help show this help message and exit
-v, --verbose active verbose mode output results
--proxy=PROXY use proxy server (tor: http://localhost:8118)
--track=TRACK download a number of captchas from url (to: 'inputs/')
--train=TRAIN apply common OCR techniques to captcha
--crack=CRACK brute force using local dictionary (from: 'iconset/')
--xml export result to xml format

Advanced OCR (training):

--set-id=SETIDS set colour's id manually (use -v for details)
--editor launch an editor to apply image filters

Modules (training):

--list list available modules (from: 'core/mods/')
--mod=NAME train using a specific OCR exploiting module

Handlering (cracking):

--tool=COMMAND replace suggested word on commands of another tool. use
'CINT' marker like flag (ex: 'txtCaptcha=CINT')

CIntruderNet ('http://cintruder.sf.net/cinet'):

--send-net send resolved captcha to CIntruderNet
--view-net visit distributed online dictionary website

Examples

* Simple crack from file:

$ python cintruder --crack "captcha.gif"
-------------------
* Simple crack from URL:

$ python cintruder --crack "http://host.com/path/captcha.gif"
-------------------
* Simple crack, exporting results to xml file

$ python cintruder --crack "captcha.gif" --xml "test.xml"
-------------------
* Simple crack, with proxy TOR and verbose output

$ python cintruder --crack "http://host.com/path/captcha.gif" --proxy="http://127.0.0.1:8118" -v
-------------------
* Train captcha(s) from url, with proxy TOR and verbose output

$ python cintruder --train "http://host.com/path/captcha.gif" --proxy "http://127.0.0.1:8118" -v
-------------------
* Track 50 captcha(s) from url with proxy TOR

$ python cintruder --track "http://host.com/path/captcha.gif" "50" --proxy "http://127.0.0.1:8118"
-------------------
* List available modules (from core/mods/)

$ python cintruder --list
-------------------
* Launch an OCR module to train a specific local captcha

$ python cintruder --train "inputs/easycaptcha.gif" --mod easy
-------------------
* Launch an OCR module to crack a specific online captcha, with verbose output

$ python cintruder --crack "http://host.com/path/captcha.gif" --mod easy -v
-------------------
* Replace suggested word by CIntruder after cracking, on input commands of another tool (ex: XSSer)

$ python cintruder --crack "http://host.com/path/captcha.gif" --tool "xsser -u http://host.com/path/param1=foo¶m2=bar&txtCaptcha=CINT"
-------------------
* Send online captcha cracked to distributed online dictionary (CInet)

$ python cintruder --crack "http://host.com/path/captcha.gif" --send-net
-------------------
* Visit distributed online dictionary (CInet) website (http://cintruder.sf.net/cinet)

$ python cintruder --view-net

WebSite : http://cintruder.sourceforge.net/

BackBox Linux 2.05 released!

noreply@blogger.com (H Z) — Sun, 29 Apr 2012 03:44:00 +0000

The BackBox team is proud to announce the release 2.05 of BackBox Linux. The new release include features such as Ubuntu 11.04, Linux Kernel 2.6.38 and Xfce 4.8.0. The ISO images (32bit & 64bit) can be downloaded from the following location: http://www.backbox.org/downloads
What's new

System upgrade
Bug corrections
Performance boost
Improved start menu
Improved WiFi driver (compat-wireless aircrack patched)
New Hacking tools: creepy, fern-wifi-cracker, joomscan, pyrit, reaver, xplico, etc.
Updated tools: crunch, fimap, hydra, magictree, metasploit, set, sipvicious, skipfish, w3af, weevely, wireshark, wirouterkeyrec, wpscan, zaproxy, theharvester, xsser, etc.

System requirements

32-bit or 64-bit processor
256 MB of system memory (RAM)
4.4 GB of disk space for installation
Graphics card capable of 800×600 resolution
DVD-ROM drive or USB port

Sqlmap- Automatic SQL Injection Tool

noreply@blogger.com (H Z) — Sun, 29 Apr 2012 03:31:00 +0000

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.

Features

Full support for MySQL, Oracle, PostgreSQL, Microsoft SQL Server, Microsoft Access, SQLite,Firebird, Sybase and SAP MaxDB database management systems.

Full support for five SQL injection techniques: boolean-based blind, time-based blind, error-based, UNION query and stacked queries.

Support to directly connect to the database without passing via a SQL injection, by providing DBMS credentials, IP address, port and database name.
Support to enumerate database users, users' password hashes, users' privileges, users' roles,databases, tables and columns.
Automatic recognition of password hashes format and support to crack them with a dictionary-based attack.
Support to dump database tables entirely, a range of entries or specific columns as per user's choice. The user can also choose to dump only a range of characters from each column's entry.
Support to search for specific database names, specific tables across all databases or specific columns across all databases' tables. This is useful, for instance, to identify tables containing custom application credentials where relevant columns' names contain string like name and pass.
Support to download and upload any file from the database server underlying file system when the database software is MySQL, PostgreSQL or Microsoft SQL Server.
Support to execute arbitrary commands and retrieve their standard output on the database server underlying operating system when the database software is MySQL, PostgreSQL or Microsoft SQL Server.
Support to establish an out-of-band stateful TCP connection between the attacker machine and the database server underlying operating system. This channel can be an interactive command prompt, a Meterpreter session or a graphical user interface (VNC) session as per user's choice.
Support for database process' user privilege escalation via Metasploit's getsystem command which include, among others, the kitrap0d technique ( MS10-015).

Download

sqlmap can be downloaded from its SourceForge File List page. It is available in two formats:
Source gzip compressed.
Source zip compressed.

You can also checkout the latest development version from the subversion repository:$ svn checkout

https://svn.sqlmap.org/sqlmap/trunk/sqlmap sqlmap-dev

Website : http://sqlmap.sourceforge.net/

Backtrack Menu in Your Ubuntu [ Video ]

noreply@blogger.com (H Z) — Thu, 03 Mar 2011 03:18:00 +0000

Download

Hexjector 1.0.7.5 Rev34 Latest Version Download

noreply@blogger.com (H Z) — Thu, 03 Mar 2011 02:53:00 +0000

“Hexjector is an open-source, multi-platform PHP script to automate site penetration tests for SQL Injection Vulnerabilities.”

This is the updated change log:

* Error_Check, HexDorker, HexaFind, HexDumper, HexaCurD, Hexdumpfile, Hexoutfile, Hexloader, and WAF_Detector have all been updated.
* HexaFind is now multithreaded(Credits tDavid Hopkins for his CURL Class).
* HexacURL removed.
* Information.php is not used anymore.
* Code is refined and organized for better view.
* Output Buffering removed.
* WAF Bypass Module Added.
* HTTP Requests are now available.
* POST
* Interface of Hexjector is changed thanks tJohnburn, and mods from me.
* A nonpersistent XSS is patched in HexDorker.
* Codename Added.
* RCE Test added.
* Troubleshoot section added taid users in solving problems.
* A new Manual Updater is added.
* News Feeds Retriever.
* Patch Retriever.
* SQL Injection Type Detection is recoded tbe more precise.
* Another Series of SQL Injection Type Detection are added.
* Single Quotes with Parenthesis
* Double Quotes
* Double Quotes with Parenthesis
* Local Md5 Cracker, Hexcracker added.
* Scripts with functions have Mod_ Prefix in the filename.
* All htmlspecialchars() are changed thtmlentities().
* Back Button now available.
* Many E_NOTICE errors are fixed.

Download Hexjector v1.0.7.5 Rev34

WireShark 1.4.4 Latest Version Released

noreply@blogger.com (H Z) — Thu, 03 Mar 2011 02:42:00 +0000

What is Wireshark?

Wireshark is the world's most popular network protocol analyzer. It is used for troubleshooting, analysis, development and education.

What's New

Bug Fixes

The following vulnerabilities have been fixed. See the security

advisory for details and a workaround.

o Huzaifa Sidhpurwala of the Red Hat Security Response Team

discovered that Wireshark could free an uninitialized pointer

while reading a malformed pcap-ng file. (Bug 5652)

Versions affected: 1.2.0 to 1.2.14 and 1.4.0 to 1.4.3.

CVE-2011-0538

o Huzaifa Sidhpurwala of the Red Hat Security Response Team

discovered that a large packet length in a pcap-ng file could

crash Wireshark. (Bug 5661)

Versions affected: 1.2.0 to 1.2.14 and 1.4.0 to 1.4.3.

o Wireshark could overflow a buffer while reading a Nokia DCT3

trace file. (Bug 5661)

Versions affected: 1.2.0 to 1.2.14 and 1.4.0 to 1.4.3.

CVE-2011-0713

o Paul Makowski working for SEI/CERT discovered that Wireshark

on 32 bit systems could crash while reading a malformed

6LoWPAN packet. (Bug 5661)

Versions affected: 1.4.0 to 1.4.3.

o joernchen of Phenoelit discovered that the LDAP and SMB

dissectors could overflow the stack. (Bug 5717)

Versions affected: 1.2.0 to 1.2.14 and 1.4.0 to 1.4.3. (Prior

versions including 1.0.x are also affected.)

o Xiaopeng Zhang of Fortinet's Fortiguard Labs discovered that

large LDAP Filter strings can consume excessive amounts of

memory. (Bug 5732)

Versions affected: 1.2.0 to 1.2.14 and 1.4.0 to 1.4.3. (Prior

versions including 1.0.x are also affected.)

The following bugs have been fixed:

o A TCP stream would not always be recognized as the same

stream. (Bug 2907)

o Wireshark Crashing by pressing 2 Buttons. (Bug 4645)

o A crash can occur in the NTLMSSP dissector. (Bug 5157)

o The column texts from a Lua dissector could be mangled. (Bug

5326) (Bug 5630)

o Corrections to ANSI MAP ASN.1 specifications. (Bug 5584)

o When searching in packet bytes, the field and bytes are not

immediately shown. (Bug 5585)

o Malformed Packet: ULP reported when dissecting ULP SessionID

PDU. (Bug 5593)

o Wrong IEI in container of decode_gtp_mm_cntxt. (Bug 5598)

o Display filter does not work for expressions of type BASE_DEC,

BASE_DEC_HEX and BASE_HEX_DEC. (Bug 5606)

o NTLMSSP dissector may fail to compile due to space embedded in

C comment delimiters. (Bug 5614)

o Allow for name resolution of link-scope and multicast IPv6

addresses from local host file. (Bug 5615)

o DHCPv6 dissector formats DUID_LLT time incorrectly. (Bug 5627)

o Allow for IEEE 802.3bc-2009 style PoE TLVs. (Bug 5639)

o Various fixes to the HIP packet dissector. (Bug 5646)

o Display "Day of Year" for January 1 as 1, not 0. (Bug 5653)

o Accommodate the CMake build on Ubuntu 10.10. (Bug 5665)

o E.212 MCC 260 Poland update according to local national

regulatory. (Bug 5668)

o IPP on ports other than 631 not recognized. (Bug 5677)

o Potential access violation when writing to LANalyzer files.

(Bug 5698)

o IEEE 802.15.4 Superframe Specification - Final CAP Slot always

0. (Bug 5700)

o Peer SRC and DST AS numbers are swapped for cflow. (Bug 5702)

o dumpcap: -q option behavior doesn't match documentation. (Bug

5716)

New and Updated Features

There are no new features in this release.

New Protocol Support

There are no new protocols in this release.

Updated Protocol Support

ANSI MAP, BitTorrent, DCM, DHCPv6, DTAP, DTPT, E.212, GSM

Management, GTP, HIP, IEEE 802.15.4, IPP, LDAP, LLDP, Netflow,

NTLMSSP, P_Mul, Quake, Skinny, SMB, SNMP, ULP

New and Updated Capture File Support

LANalyzer, Nokia DCT3, Pcap-ng

Getting Wireshark

Wireshark source code and installation packages are available from

http://www.wireshark.org/download.html

Update Nmap to Version 5.51 in Backtrack 4 r2 [ for Newbie ]

noreply@blogger.com (H Z) — Wed, 02 Mar 2011 05:11:00 +0000

Nmap ("Network Mapper") is a free and open source (license) utility for network exploration or security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. It was designed to rapidly scan large networks, but works fine against single hosts. Nmap runs on all major computer operating systems, and official binary packages are avalable for Linux, Windows, and Mac OS X. In addition to the classic command-line Nmap executable, the Nmap suite includes an advanced GUI and results viewer (Zenmap), a flexible data transfer, redirection, and debugging tool (Ncat), and a utility for comparing scan results (Ndiff).

How to Update Nmap to Version 5.51 in Backtrack 4 r2

Download Nmap in http://nmap.org/download.html and than Extract to desktop

tar -xf nmap-5.51.tgz

And now locate to directory nmap-5.51 and type :

./configure && make

Wait until finish complie and with no error and type again :

make install

And now u have new version from nmap

Nikto v.2.1.4 Released

noreply@blogger.com (H Z) — Tue, 22 Feb 2011 07:18:00 +0000

Nikto is an open source web server scanner which performs comprehensive tests against web servers for multiple items, including over 6400 potentially dangerous files/CGIs, checks for outdated versions of over 1000 servers, and version specific problems on over 270 servers.

This release contains a number of important bug fixes, as well as new functionality and improvements, including:

New interactive feature: press N to skip current host and move to next

Updated XML schema

Check for private IP addresses in cookies

Report certificate CN which doesn't match hostname

Allow multiple cookies to be set in the config file

Regular expressions in test database allow more accurate checks

More data in XML and HTML reports

For a full list of updates, see the CHANGELOG.txt

Download: https://cirt.net/nikto

Nmap v.5.51 Released

noreply@blogger.com (H Z) — Sat, 12 Feb 2011 04:24:00 +0000

NiX Brute Force – Parallel Log-in Brute Forcing/Password Cracking Tool

noreply@blogger.com (H Z) — Thu, 03 Feb 2011 13:42:00 +0000

NiX Brute Forcer is a tool that uses brute force in parallel to log into a system without having authentication credentials beforehand. This tool is intended to demonstrate the importance of choosing strong passwords. The goal of NiX is to support a variety of services that allow remote authentication such as: MySQL, SSH, FTP, IMAP. It is based on NiX Proxy Checker.

Features

Basic Authorization & FORM support in both standard and HTTPS (SSL) mode
HTTP/SOCKS 4 and 5 proxy support
FORM auto-detection & Manual FORM input configuration.
It is multi-threaded
Wordlist shuffling via macros
Auto-removal of dead or unreliable proxy and when site protection mechanism blocks the proxy
Integrated proxy randomization to defeat certain protection mechanisms
With Success and Failure Keys results are 99% accurate
Advanced coding and timeout settings makes it outperform any other brute forcer

The full changelog including the latest version is here.

You can download NiX Brute Force here: NIX_BruteForce.bz2

Blackbuntu CE 0.2 Released

noreply@blogger.com (H Z) — Thu, 03 Feb 2011 13:10:00 +0000

Blackbuntu is distribution for penetration testing which was specially designed for security training students and practitioners of information security.
Blackbuntu is Ubuntu base distro for Penetration Testing with GNOME Desktop Environment. It's currently being built using the Ubuntu 10.10 and work on reference Back|Track.

Changelog
-------------------------
- Remove acroread
- Added Start/Stop Service Menu like <- Added Videosnarf
- Added Xplico
- Added fragrouter.
- Added Nemesis.
- Added Bizploit
- Added weevely
- Added Matahari
- Added Plecost
- Added Pynject
- Added SAP script from phenoelit.de
- Added numlockx (Credit to anidear).
- Recompile Kismet-new core to support Linux Netlink(LibNL/nl80211).
- Kernel modules patched it all up for packet injection/fragmentation/channel hopping, etc for wireless(Credit to Alex Ploiter)
- Upgrade dradis 2.4.1 to 2.6
- Update and integration of all the tools previosly available in Release 0.1
- Fixed 0trace - usleep not found on the system(credit Bruno Criado)
- Fixed Pentbox menu error and directory permission.
- Fixed menu wireshark doesn't run as root.
- Enable "ctrl+alt+backspace" Key Sequence to kill the X server (Credit to anidear).
- Removed unnecessary service on statup

Download
Source : http://www.blackbuntu.com/

Inguma Is Back – The Penetration Testing & Vulnerability Research Toolkit

noreply@blogger.com (H Z) — Sun, 30 Jan 2011 13:58:00 +0000

A new version has just been released almost 3 years later with some major changes and a big GUI revamp. Inguma is a penetration testing toolkit entirely written in python. The framework includes modules to discover hosts, gather information about, fuzz targets, brute force user names and passwords and, of course, exploits. While the current exploitation capabilities in Inguma may be limited, this program provides numerous tools for information gathering and target auditing.

There are some good docs to get you up and running too:

The announcement from the developers blog is here: We are back

Download Inguma 0.2 here: inguma-0.2.tar.gz

Or read more here.

Nmap v.5.50 Released

noreply@blogger.com (H Z) — Sun, 30 Jan 2011 13:34:00 +0000

A primary focus of this release is the Nmap Scripting Engine, which has allowed Nmap to expand up the protocol stack and take network discovery to the next level. Nmap can now query all sorts of application protocols, including web servers, databases, DNS servers,FTP, and now even Gopher servers! Remember those? These capabilities are in self-contained libraries and scripts to avoid bloating Nmap's core engine.

The actual NSE engine became more powerful as well. Newtargets support allows scripts like dns-zone-xfer and dns-service-discovery to add discovered hosts to Nmap's scan queue. We also added a brute forcing engine, network broadcast script support, and two new script scanning phases known as prerule and postrule.
This release isn't just about NSE. We also added the Nping packet probing and analysis tool (http://nmap.org/nping/) in 5.35DC1.Version 5.50 improves Nping further with an innovative new echo mode (http://bit.ly/nping-echo).

Download: http://nmap.org

Acer Concept Laptop Features No Keyboards, Two Touchscreens

noreply@blogger.com (H Z) — Mon, 17 Jan 2011 06:32:00 +0000

Acer introduces a concept product that they think could lead the next level of laptops. The Iconia features two capacitive touchscreens, both with 1,366 x 768 resolution, and no keyboard as it is replaced by the second touchscreen. The idea behind this creation is that having two touchscreens increases what users can do with the device.
Despite having dual screens, the Iconia is still supposed to function as a laptop. This means that there is only one way to view it, with one screen functioning as the navigator and keyboard, and that it cannot be unfolded in such a way that it becomes a giant tablet.
By design, the insides of this concept device include a Core i5 processor, integrated graphics set, 4GB of DDR3, a 2.5-inch HDD, 3G connectivity, and a USB 3.0 port. Expect this spec list to change, however, as it nears mass production. That is, if it comes to that.
Software-wise, the Iconia features a suite of touch-based apps such as a journal, a scrap book, and a social stream. The main feature of the second screen is the “Acer Ring” and gesture editor, which enable users to utilize the device by “grabbing” the screen or putting their palms on it. However, the device is supposed to run on Windows 7, which is not that friendly when it comes to touch-based navigation.
The Acer Iconia has promise. Let’s see if that holds true once the actual product is out.

Source: CrunchGear

Victorinox Slim Flight USB Drive

noreply@blogger.com (H Z) — Mon, 17 Jan 2011 06:28:00 +0000

Victorinox is more widely known for its quality pocket knives and watches. But it has recently moved on to develop other products that are just as known for their quality. Victorinox has even upgraded its line of pocket knives to include the now essential flash drive. And just recently, the company has announced a new airplane-friendly version called the Victorinox Slim Flight USB Drive.

The Victorinox Slim Flight USB Drive is designed to look like just one of its more popular pocket knives. But since sharp objects have become prohibited object to bring into airports. The Victorinox Slim Flight is bladeless and only contains a 64GB USB Flash Drive. The Victorinox Slim Flight USB Drive provides a secure back up drive since it comes with secure data encryption technology and is also waterproof and durable. The drives can also be removed and swapped with a higher capacity USB drive later on. The Victorinox Slim Flight is set to be available any time this month. No word yet on its pricing.

Image Source: Victorinox

Moovida Core media player

noreply@blogger.com (H Z) — Sun, 16 Jan 2011 04:15:00 +0000

Immersed Media Center view

Two big changes have landed since our last, albeit acerbic, look at the player: a new ‘theme’ and the introduction of ‘Moovida Immersed’ – a beautiful 3D interface for browsing your video library.

Having ditched its buff gray and familiar Banshee layout for something a bit different Moovida has moved away from looking like nothing more than ‘Banshee for Windows’. The players controls have been moved to the bottom of the app window, a ‘genre’ pane has wiggled into the filter pane and a deadly black colour scheme tries to exude ‘slickness’ but, in all honestly, just looks naff.

The gold is in the ‘Moovida Immersed’ view. This super slick 3D animated view runs full screen and is designed to be used with an apple remote (of all things), although navigation with a keyboard still works if you’re wanting a quick play around. The screenshot below doesn’t quite capture just how fluid the interface is when browsing – if you have Windows knocking about on a partition I highly suggest giving Moovida a whirl.

Moovida is currently in Beta for Windows. Download from moovida.com

Filesystem Hierarchy Standard

noreply@blogger.com (H Z) — Sun, 16 Jan 2011 03:58:00 +0000

The Filesystem Hierarchy Standard (FHS) defines the main directories and their contents in Linux operating systems. For the most part, it is a formalization and extension of the traditional BSD filesystem hierarchy.

Directory structure

In the FHS all files and directories appear under the root directory "/", even if they are stored on different physical devices. Note however that some of these directories may or may not be present on a Unix system depending on whether certain subsystems, such as the X Window System, are installed.
The majority of these directories exist in all UNIX operating systems and are generally used in much the same way; however, the descriptions here are those used specifically for the FHS, and are not considered authoritative for platforms other than Linux.

Directory	Description
`/`	Primary hierarchy root and root directory of the entire file system hierarchy.
`/bin/`	Essential command binaries that need to be available in single user mode; for all users, e.g., cat, ls, cp.
`/boot/`	Boot loader files, e.g., kernels, initrd; often a separate partition
`/dev/`	Essential devices, e.g., `/dev/null`.
`/etc/`	Host-specific system-wide configuration files There has been controversy over the meaning of the name, but in early versions of the UNIX Implementation Document from Bell labs, the section for /etc is clearly commented as etcetra directory, as this directory historically held everything that did not belong elsewhere (though in FHS it is clearly restricted to static configuration files and may not contain binaries)Alternative meanings that have been suggested, such as "Editable Text Configuration" or "Extended Tool Chest" are almost certainlybackronyms that were introduced much later on
`/etc/opt/`	Configuration files for `/opt/`.
`/etc/X11/`	Configuration files for the X Window System, version 11.
`/etc/sgml/`	Configuration files for SGML.
`/etc/xml/`	Configuration files for XML.
`/home/`	Users' home directories, containing saved files, personal settings, etc.; normally a separate partition.
`/lib/`	Libraries essential for the binaries in `/bin/` and `/sbin/`.
`/media/`	Mount points for removable media such as CD-ROMs (appeared in FHS-2.3).
`/mnt/`	Temporarily mounted filesystems.
`/opt/`	Optional application software packages
`/proc/`	Virtual filesystem documenting kernel and process status as text files, e.g., uptime, network. In Linux, corresponds to a Procfs mount.
`/root/`	Home directory for the root user.
`/sbin/`	Essential system binaries, e.g., init, ip, mount.
`/srv/`	Site-specific data which is served by the system.
`/tmp/`	Temporary files (see also `/var/tmp`). Often not preserved between system reboots.
`/usr/`	Secondary hierarchy for read-only user data; contains the majority of (multi-)user utilities and applications.
`/usr/bin/`	Non-essential command binaries (not needed in single user mode); for all users.
`/usr/include/`	Standard include files.
`/usr/lib/`	Libraries for the binaries in `/usr/bin/` and `/usr/sbin/`.
`/usr/sbin/`	Non-essential system binaries, e.g., daemons for various network-services.
`/usr/share/`	Architecture-independent (shared) data.
`/usr/src/`	Source code, e.g., the kernel source code with its header files.
`/usr/X11R6/`	X Window System, Version 11, Release 6.
`/usr/local/`	Tertiary hierarchy for local data, specific to this host. Typically has further subdirectories, e.g., `bin/`, `lib/`, `share/`.
`/var/`	Variable files—files whose content is expected to continually change during normal operation of the system—such as logs, spool files, and temporary e-mail files. Sometimes a separate partition.
`/var/cache/`	Application cache data. Such data is locally generated as a result of time-consuming I/O or calculation. The application must be able to regenerate or restore the data. The cached files can be deleted without data loss
`/var/lib/`	State information. Persistent data modified by programs as they run, e.g., databases, packaging system metadata, etc.
`/var/lock/`	Lock files. Files keeping track of resources currently in use.
`/var/log/`	Log files. Various logs.
`/var/mail/`	Users' mailboxes.
`/var/run/`	Information about the running system since last boot, e.g., currently logged-in users and running daemons.
`/var/spool/`	Spool for tasks waiting to be processed, e.g., print queues and unread mail.
`/var/spool/mail/`	Deprecated location for users' mailboxes.
`/var/tmp/`	Temporary files to be preserved between reboots.

WIFI SCANNER FOR WINDOWS "INSSIDER 2" IS NOW AVAILABLE FOR LINUX!

noreply@blogger.com (H Z) — Fri, 14 Jan 2011 04:47:00 +0000

inSSIDer 2 will display all Wi-Fi access points within range and display their MAC address, SSID, RSSI, Channel, Vendor, Encryption, Max Rate and Network Type. Use the filters feature to quickly sort through long lists of access points.

Great news for Linux users! inSSIDer 2, a very popular free/open source Wi-Fi network scanner for Windows Vista and Windows XP is now available for Linux

Download inSSIDer 2 for Linux (currently alpha) - includes .deb and .rpm files.

Anti Netcut di ubuntu

noreply@blogger.com (H Z) — Tue, 28 Dec 2010 06:45:00 +0000

apa itu netcut ? suatu tool yang digunakan untuk menghentikan / memotong koneksi jaringan.

nah gimana cara mengatasinya supaya tool tersebut tidak di salah gunakan dan berpengaruh pada jaringan kita?

anti netcut solusinya...anti netcut di OS windows sudah hadir lebih dulu nah sekarang saatnya anti netcut untuk linux, khususnya distro ubuntu.
langsung download disini

cara menggunakannya :

1. extrak file dan file akan terextrak dalam 1 folder bernama antinetcut

2. cari dalam folder tersebut file antinetcut.py, lalu jalankan dengan cara buka terminal, ketikkan :

sudo antinetcut.py start

Atau dengan cara lain, yaitu menginstall Tuxcut lalu centeng kolom protect me.... seperi gambar di bawah ini

Windows 8 Ready Introduced

noreply@blogger.com (H Z) — Sat, 25 Dec 2010 03:19:00 +0000

In the event the Consumer Electronics Show (CES) in Las Vegas, United States, next month, Microsoft will demonstrate a few tablets that runs under the Windows platform. In addition, according to the report before CES, Microsoft is also likely to introduce the latest generation mermeka operating system, Windows 8.

In his speech on 5 January, Microsoft CEO Steve Ballmer will introduce a tablet such as Samsung, Dell, and others who run with the Windows platform, such as the New York Times wrote.
The newspaper also stated that the occasion will show at a glance Ballmer reinforced tablet with the Windows operating system 8. Many technology industry awaits the appearance of Windows 8.

Microsoft has been lagging behind the rapid growth of market competition tablet, which is dominated by Apple and Android oeprasi system. Research firm Gartner estimates that by 2010 as many as 54.8 million tablets will be sold.

Firefox 4 Beta Now Supports 3D Graphics

noreply@blogger.com (H Z) — Sat, 25 Dec 2010 03:08:00 +0000

Mozilla released the last beta for Firefox 4, the newest Internet browser, before releasing the final version. Several improvements have been made include full support to the graph of three-dimensional (3D) standards-based WebGL.

"Firefox 4 beta now supports WebGL for graphics card built-in common modern use. This makes the developers more easily create interactive 3D games, graphics are clear, and a new visual experience on the Web without depending on plug-ins from third party," said Mike Beltzner, Firefox Product Manager, in his blog, yesterday.

WebGL is an open standard for the present three-dimensional graphics on the web. With the WebGL in your browser, you no longer need Java, Flash, or other additional programs to display three-dimensional animation. This is one product that utilizes HTML5 elements which supported many browser developers, such as Google Chrome, Opera, and Apple Safari.

Previously, Google introduced one WebGL implementation on the device, called Body Browser. With this device, web visitors can learn about body parts in three-dimensional, interactive direct on the web.

Install VirtualBox 4.0 (Stable) In Ubuntu, Via Repository

noreply@blogger.com (H Z) — Fri, 24 Dec 2010 08:28:00 +0000

VirtualBox 4.0 has been released today. We've already covered what's new in VirtualBox 4.0 when the first beta came out so check out that post or the changelog for more info.

As you probably know, starting with VirtualBox 4.0 some features are now available separately, in an extension pack. Here are the step-by-step instructions on installing both VirtualBox and the Extensions Pack in Ubuntu.

Install VirtualBox 4.0 in Ubuntu

1. Remove any previous VirtualBox version you had installed.

Presuming you were using version 3.2, you would have to run the following command:

sudo apt-get remove virtualbox-3.2

2. Add the VirtualBox contrib repository and install VirtualBox 4.0:

VirtualBox 4.0 is no longer available in the non-free component of the VirtualBox Ubuntu repository but in contrib.

Add it and install VirtualBox using the following commands:

sudo -v echo "deb http://download.virtualbox.org/virtualbox/debian $(lsb_release -sc) contrib" | sudo tee -a /etc/apt/sources.list wget -q http://download.virtualbox.org/virtualbox/debian/oracle_vbox.asc -O- | sudo apt-key add - sudo apt-get update sudo apt-get install virtualbox-4.0

3. Download the Extension Pack.

For USB 2.0 devices, VirtualBox RDP and PXE boot for Intel cards support, you'll also have to install an Extension pack which you can download from HERE.

4. Install the VirtualBox Extension pack.

Open VirtualBox 4.0 and go to File > Preferences and on the Extensions tab, click the "add" button on the right (first blue diamond) and browse for the VirtualBox extension pack you've downloaded in step 1. That's it!

SuperTuxKart 0.7 released with new engine, tracks, karts + more

noreply@blogger.com (H Z) — Fri, 24 Dec 2010 08:20:00 +0000

It’s here, racing fans – a brand new version of iconic Linux game ‘SuperTuxKart’ is now available for download.

SuperTuxKart 0.7, which has been in development for over a year, sees some great new features and improvements added to the game, including: -

New graphics engine
New GUI
New Kart and track animations
New and improved tracks, karts, and items
Shortcut/alternative way support for tracks
Asian font support
Bugfixes

Download

Dying to get your racing helmet on? You can nab the latest release by adding the following PPA (in bold) to your software sources.
To do this using a Terminal enter:

sudo add-apt-repository ppa:stk/dev
sudo apt-get update && sudo apt-get install supertuxkart

Launch Via Applications > Games > SuperTuxKart

Alternatively you grab the source @ sourceforge.net/projects/supertuxkart