tag:blogger.com,1999:blog-19159532726896041192012-02-16T16:40:24.972+01:00sécurité informatiquet0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.comBlogger82125tag:blogger.com,1999:blog-1915953272689604119.post-43575644673420349922011-07-12T00:06:00.004+02:002011-07-27T09:19:18.078+02:002011-07-27T09:19:18.078+02:00<div dir="ltr" style="text-align: left;" trbidi="on"><br> <div class="separator" style="clear: both; text-align: left;"><span class="Apple-style-span" style="font-family: Arial; font-size: 15px; white-space: pre-wrap;">Cet article décrit l&#39;utilisation d&#39;openvpn avec un iphone.</span></div><div class="separator" style="clear: both; text-align: left;"><span class="Apple-style-span" style="font-family: Arial; font-size: 15px; white-space: pre-wrap;"></span></div></div><a href="http://www.infond.fr/2011/07/openvpn-et-iphone.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-4357564467342034992?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/flnJ2WD1pNz36aRQ6E7YSvvPdKY/0/da"><img src="http://feedads.g.doubleclick.net/~a/flnJ2WD1pNz36aRQ6E7YSvvPdKY/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/flnJ2WD1pNz36aRQ6E7YSvvPdKY/1/da"><img src="http://feedads.g.doubleclick.net/~a/flnJ2WD1pNz36aRQ6E7YSvvPdKY/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/Ml_JIR3F1qg" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2011/07/openvpn-et-iphone.htmltag:blogger.com,1999:blog-1915953272689604119.post-18002097354523913092011-04-19T17:28:00.001+02:002011-07-27T09:33:30.000+02:002011-07-27T09:33:30.000+02:00<div dir="ltr" style="text-align: left;" trbidi="on"><br> Cet article décrit comment installer un serveur VPN sous ubuntu et comment configurer Ubuntu desktop pour se connecter à ce serveur.<br> <br> </div><a href="http://www.infond.fr/2011/04/tutoriel-openvpn.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-1800209735452391309?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/0LiFt2u9pAggZjE0TcjQxbq0JMs/0/da"><img src="http://feedads.g.doubleclick.net/~a/0LiFt2u9pAggZjE0TcjQxbq0JMs/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/0LiFt2u9pAggZjE0TcjQxbq0JMs/1/da"><img src="http://feedads.g.doubleclick.net/~a/0LiFt2u9pAggZjE0TcjQxbq0JMs/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/mJMlP5Jo7r4" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2011/04/tutoriel-openvpn.htmltag:blogger.com,1999:blog-1915953272689604119.post-18959397030963949602011-01-22T19:01:00.003+01:002011-07-27T10:05:48.925+02:002011-07-27T10:05:48.925+02:00<div dir="ltr" style="text-align: left;" trbidi="on"><span class="Apple-style-span" style="font-family: sans-serif; font-size: 13px; line-height: 19px;"></span><br> <div style="line-height: 1,5em; margin-bottom: 0,5em; margin-left: 0px; margin-right: 0px; margin-top: 0,4em;"><br> <div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></div><div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></div><div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">Cet article décrit un ensemble de techniques pour sécuriser un wiki. Ces techniques ont été implémentées pour le Wiki Infond. Bien sûr, nous ne dévoilons ici qu&#39;une partie des techniques de sécurisation que nous avons déployées.</div><div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></div></div></div><a href="http://www.infond.fr/2011/01/securiser-un-wiki.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-1895939703096394960?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/H0V1K57yuiovYXwgNOUT5AVQ4xE/0/da"><img src="http://feedads.g.doubleclick.net/~a/H0V1K57yuiovYXwgNOUT5AVQ4xE/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/H0V1K57yuiovYXwgNOUT5AVQ4xE/1/da"><img src="http://feedads.g.doubleclick.net/~a/H0V1K57yuiovYXwgNOUT5AVQ4xE/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/pRYHp4OT27w" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2011/01/securiser-un-wiki.htmltag:blogger.com,1999:blog-1915953272689604119.post-75888713788936820472011-01-20T20:05:00.006+01:002011-07-27T10:19:29.887+02:002011-07-27T10:19:29.887+02:00<div dir="ltr" style="text-align: left;" trbidi="on">The list of blogs which RSS I&#39;m following (290 blogs) last updated 2011 july 27th.<br> </div><a href="http://www.infond.fr/2011/01/list-of-blogs.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-7588871378893682047?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/vFf6NHviUvPe7hn2AjEbf64FK3A/0/da"><img src="http://feedads.g.doubleclick.net/~a/vFf6NHviUvPe7hn2AjEbf64FK3A/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/vFf6NHviUvPe7hn2AjEbf64FK3A/1/da"><img src="http://feedads.g.doubleclick.net/~a/vFf6NHviUvPe7hn2AjEbf64FK3A/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/GE4zVh-EddI" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com1http://www.infond.fr/2011/01/list-of-blogs.htmltag:blogger.com,1999:blog-1915953272689604119.post-53968198793982446192010-12-05T14:02:00.004+01:002011-07-27T10:23:45.521+02:002011-07-27T10:23:45.521+02:00<div dir="ltr" style="text-align: left;" trbidi="on"><br /> the following linux command helps howto find a specific string in an unmounted &nbsp;hard disk. This can be useful to find email addresses or interesting informations, even on supposed erased files*<br /> <br /> <blockquote>$ sudo hexdump -e '8/1 "%02X ""\t"" "' -e '8/1 "%c""\n"' /dev/sda1 | less<br /> /mystring</blockquote><br /> *french translation: la ligne de commande précédente est utile pour trouver une chaine de caractère sur un disque non monté. Elle peut être utile pour trouver par exemple des adresses email ou des informations utiles, y compris dans des fichiers supposés effacés.<br /> <div><br /> </div></div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-5396819879398244619?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/tZ7vBnKpd8B9O9yeBIEvIPqtFG8/0/da"><img src="http://feedads.g.doubleclick.net/~a/tZ7vBnKpd8B9O9yeBIEvIPqtFG8/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/tZ7vBnKpd8B9O9yeBIEvIPqtFG8/1/da"><img src="http://feedads.g.doubleclick.net/~a/tZ7vBnKpd8B9O9yeBIEvIPqtFG8/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/325-tTzEwHE" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com1http://www.infond.fr/2010/12/howto-find-specific-string-in-unmounted.htmltag:blogger.com,1999:blog-1915953272689604119.post-21994341913485138342010-11-28T14:46:00.009+01:002011-07-27T10:30:35.588+02:002011-07-27T10:30:35.588+02:00<div dir="ltr" style="text-align: left;" trbidi="on"><br> This article describes a solution to add a header banner in MediaWiki.<br> <br> </div><a href="http://www.infond.fr/2010/11/howto-add-header-banner-to-mediawiki.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-2199434191348513834?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/Bp7G9IAiSZG8Lhsa2Ss0SlMl7zc/0/da"><img src="http://feedads.g.doubleclick.net/~a/Bp7G9IAiSZG8Lhsa2Ss0SlMl7zc/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/Bp7G9IAiSZG8Lhsa2Ss0SlMl7zc/1/da"><img src="http://feedads.g.doubleclick.net/~a/Bp7G9IAiSZG8Lhsa2Ss0SlMl7zc/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/LxKeap53Kco" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2010/11/howto-add-header-banner-to-mediawiki.htmltag:blogger.com,1999:blog-1915953272689604119.post-56552617660856429942010-10-22T22:44:00.007+02:002011-07-27T14:38:19.143+02:002011-07-27T14:38:19.143+02:00<div dir="ltr" style="text-align: left;" trbidi="on"><br> Il est possible d&#39;utiliser son iphone (testé avec l&#39;iphone 4.1) comme modem 3G sous Ubuntu (testé avec la version 10.10). Deux méthodes sont présentées la première.<br> </div><a href="http://www.infond.fr/2010/10/utiliser-son-iphone-comme-modem-usb-3g.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-5655261766085642994?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/tMzWVqrLOAJFNt6CZD4JydmkOCg/0/da"><img src="http://feedads.g.doubleclick.net/~a/tMzWVqrLOAJFNt6CZD4JydmkOCg/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/tMzWVqrLOAJFNt6CZD4JydmkOCg/1/da"><img src="http://feedads.g.doubleclick.net/~a/tMzWVqrLOAJFNt6CZD4JydmkOCg/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/_j7EsN2CobA" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com1http://www.infond.fr/2010/10/utiliser-son-iphone-comme-modem-usb-3g.htmltag:blogger.com,1999:blog-1915953272689604119.post-56712733817518945352010-10-16T11:57:00.005+02:002011-07-27T15:01:37.033+02:002011-07-27T15:01:37.033+02:00<div dir="ltr" style="text-align: left;" trbidi="on"><span class="Apple-style-span" style="font-family: inherit;">Que devient on quand on plonge dans la marmite de la sécurité informatique?</span><br> </div><a href="http://www.infond.fr/2010/10/que-devient-on-quand-on-plonge-dans-la.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-5671273381751894535?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/ku7Ur2ykjC3kM3QTEjp73Flopq8/0/da"><img src="http://feedads.g.doubleclick.net/~a/ku7Ur2ykjC3kM3QTEjp73Flopq8/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/ku7Ur2ykjC3kM3QTEjp73Flopq8/1/da"><img src="http://feedads.g.doubleclick.net/~a/ku7Ur2ykjC3kM3QTEjp73Flopq8/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/LMhHG6tllbE" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com7http://www.infond.fr/2010/10/que-devient-on-quand-on-plonge-dans-la.htmltag:blogger.com,1999:blog-1915953272689604119.post-15979064218366356752010-10-15T22:47:00.003+02:002011-07-27T10:38:29.304+02:002011-07-27T10:38:29.304+02:00<div dir="ltr" style="text-align: left;" trbidi="on">Cet article, rédigé rapidement, rassemble quelques outils concernant les implémentations de RSA. Il est plutôt orienté Python. Avec tout ca, pas de souci pour réussir l&#39;épreuve de Nico34 du site Zenk Security!<br> <br> </div><a href="http://www.infond.fr/2010/10/quelques-outils-pour-rsa.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-1597906421836635675?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/2Q5uZRzOM2-5UXQhws193PbjLkw/0/da"><img src="http://feedads.g.doubleclick.net/~a/2Q5uZRzOM2-5UXQhws193PbjLkw/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/2Q5uZRzOM2-5UXQhws193PbjLkw/1/da"><img src="http://feedads.g.doubleclick.net/~a/2Q5uZRzOM2-5UXQhws193PbjLkw/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/n5U4sX6O9eg" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2010/10/quelques-outils-pour-rsa.htmltag:blogger.com,1999:blog-1915953272689604119.post-46549483121549519372010-10-03T11:25:00.002+02:002010-10-05T21:40:41.016+02:002010-10-05T21:40:41.016+02:00This article is a quick howto which describes how to mount /home in a ramdisk . The aim is to leave a minimum of traces on the hard disk. <br> <a href="http://www.infond.fr/2010/10/linux-mount-home-in-ramdisk-paranoid.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-4654948312154951937?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/xA3EOq1Fq32f6lnvJMzl3NqtlDk/0/da"><img src="http://feedads.g.doubleclick.net/~a/xA3EOq1Fq32f6lnvJMzl3NqtlDk/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/xA3EOq1Fq32f6lnvJMzl3NqtlDk/1/da"><img src="http://feedads.g.doubleclick.net/~a/xA3EOq1Fq32f6lnvJMzl3NqtlDk/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/hxVrdQOYa5o" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com3http://www.infond.fr/2010/10/linux-mount-home-in-ramdisk-paranoid.htmltag:blogger.com,1999:blog-1915953272689604119.post-31747219464410718592010-09-07T17:07:00.000+02:002010-09-07T17:07:35.539+02:002010-09-07T17:07:35.539+02:00La prise d’empreintes de ports informatiques, appelée aussi scan de port, est une technique consistant à balayer automatiquement, à l’aide d’un programme approprié, une série d’adresses IP spécifiques afin de déterminer les ports ouverts ou fermés sur chaque ordinateur. Un ordinateur pourrait être décrit comme un bâtiment dans lequel chaque habitant (les programmes) peut ouvrir ou fermer des portes (les ports) pour communiquer avec l’extérieur (le réseau, Internet). Scanner les ports consiste donc à venir frapper à chacune de ces portes en espérant obtenir une réponse du programme derrière.<br> <br> Le scan de port peut être une action légitime : un administrateur peut vouloir scanner ses machines pour repérer des logiciels indésirables sur son réseau (anciennes versions, malwares). Cependant, le scan de port permet aussi à une personne malintentionnée d’obtenir des informations sur les applications en service dans un réseau afin d’identifier des failles ou de contourner les mesures de sécurités (firewalls, détecteurs anti intrusion). Il peut ainsi s’inscrire dans une démarche de préparation à une attaque contre un système d’information et constituer une étape préliminaire avant une intrusion.<br> <br> Pour autant, le scan de ports est-t il contraire à la loi ?<br> Cet article apporte des éléments de réponses à cette question.<br> (article co-écrit avec Jean Dujardin) <br> <a href="http://www.infond.fr/2010/09/legalite-du-scan-de-port.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-3174721946441071859?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/9Rl3sXZJ-oh2-R9MRnGYJxLZIcw/0/da"><img src="http://feedads.g.doubleclick.net/~a/9Rl3sXZJ-oh2-R9MRnGYJxLZIcw/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/9Rl3sXZJ-oh2-R9MRnGYJxLZIcw/1/da"><img src="http://feedads.g.doubleclick.net/~a/9Rl3sXZJ-oh2-R9MRnGYJxLZIcw/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/Ve4NIvEljzA" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com2http://www.infond.fr/2010/09/legalite-du-scan-de-port.htmltag:blogger.com,1999:blog-1915953272689604119.post-50054225942965678942010-08-28T21:14:00.001+02:002010-08-28T21:16:33.002+02:002010-08-28T21:16:33.002+02:00This article provides a script to secure a new installation of MediaWiki (tested on version 1.16).<br> <a href="http://www.infond.fr/2010/08/script-to-secure-mediawiki-installation.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-5005422594296567894?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/ElVPjxFVwZcr14WppCvQyTYYCRQ/0/da"><img src="http://feedads.g.doubleclick.net/~a/ElVPjxFVwZcr14WppCvQyTYYCRQ/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/ElVPjxFVwZcr14WppCvQyTYYCRQ/1/da"><img src="http://feedads.g.doubleclick.net/~a/ElVPjxFVwZcr14WppCvQyTYYCRQ/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/KJgyY_8rhow" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2010/08/script-to-secure-mediawiki-installation.htmltag:blogger.com,1999:blog-1915953272689604119.post-26338260537246648482010-08-28T20:59:00.002+02:002010-08-28T21:22:56.792+02:002010-08-28T21:22:56.792+02:00infondlinux is a post installation script for Ubuntu.<br> The goal of this project is to provide a personnalizable script to the community. Of course, infondlinux is security oriented. Enjoy!<br> <br> <a href="https://code.google.com/p/infondlinux/%20">https://code.google.com/p/infondlinux/ </a><br> <br> updates: <a href="http://code.google.com/p/infondlinux/source/diff?spec=svn16&amp;r=16&amp;format=side&amp;path=/trunk/infondlinux.sh">http://code.google.com/p/infondlinux/source/diff?spec=svn16&amp;r=16&amp;format=side&amp;path=/trunk/infondlinux.sh</a> <br> <br> <a href="http://www.infond.fr/2010/08/infondlinux-update-installation-post.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-2633826053724664848?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/_SraytLcQiItCWAWc3EFKVOOrkk/0/da"><img src="http://feedads.g.doubleclick.net/~a/_SraytLcQiItCWAWc3EFKVOOrkk/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/_SraytLcQiItCWAWc3EFKVOOrkk/1/da"><img src="http://feedads.g.doubleclick.net/~a/_SraytLcQiItCWAWc3EFKVOOrkk/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/kkS1dl821Us" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2010/08/infondlinux-update-installation-post.htmltag:blogger.com,1999:blog-1915953272689604119.post-74438479721337928132010-08-26T11:28:00.001+02:002010-09-08T15:13:45.912+02:002010-09-08T15:13:45.912+02:00Cet article résume l&#39;actualité sur la vulnérabilité&quot; <a href="http://blog.didierstevens.com/2010/03/29/escape-from-pdf/" id="b7l2" title="Escape from PDF">Escape from PDF</a>&quot; [<a href="http://blog.didierstevens.com/2010/03/29/escape-from-pdf/" id="dqoi" title="1">1</a>], publiée en juillet 2010 par M. <a href="http://blog.didierstevens.com/" id="i9qs" title="Didier Stevens">Didier Stevens</a>, concernant les fichiers PDF ouverts par Adobe Reader.<br> Le format PDF n&#39;est pas passif comme le format .TXT par exemple. Un document PDF peut donc contenir du code actif [<a href="http://www.adobe.com/devnet/pdf/pdf_reference.html" id="r0bg" title="0">0</a>]. L&#39;une des actions possibles est /launch qui permet de lancer un exécutable avec les droits de l&#39;utilisateur [<a href="http://seclabs.org/fred/docs/sstic09/samples/actions/launch" id="xe0w" title="5">5</a>]. Cette vulnérabilité a été en partie patchée en juin 2010 [<a href="http://blog.didierstevens.com/2010/06/29/quickpost-no-escape-from-pdf/" id="b77b" title="6">6</a>], puis un moyen de contourner le patch a été publié en juillet [<a href="http://blog.bkis.com/en/adobe-fix-still-allows-escape-from-pdf/" id="uxjk" title="7">7</a>]. Un nouveau patch a été émis en août par Adobe [<a href="http://blog.bkis.com/en/2010/08/" id="ahv4" title="9">9</a>]. Foxit 1.1 release n&#39;est plus vulnérable non plus.<br> <a href="http://www.infond.fr/2010/08/escape-from-pdf.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-7443847972133792813?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/5iynpGSrqBUUlt3lS5xK6DciVsw/0/da"><img src="http://feedads.g.doubleclick.net/~a/5iynpGSrqBUUlt3lS5xK6DciVsw/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/5iynpGSrqBUUlt3lS5xK6DciVsw/1/da"><img src="http://feedads.g.doubleclick.net/~a/5iynpGSrqBUUlt3lS5xK6DciVsw/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/3kR2Jj9lpsI" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com2http://www.infond.fr/2010/08/escape-from-pdf.htmltag:blogger.com,1999:blog-1915953272689604119.post-39296532463750215062010-08-09T11:29:00.002+02:002010-08-09T11:30:10.751+02:002010-08-09T11:30:10.751+02:00<div class="date-posts"><div class="post-outer"><div class="hentry post"><div class="entry-content post-body">this article is a resolution of the french &quot;Nuit du hack 2010&quot; wargame level 8 test. The vulnerability is a format string. Its resolution is a direct application of the method aborded in the article &quot;tutorial exploitation format strings&quot; available on <a href="http://infond.blogspot.com/" id="qabj" title="infond">infond</a>.<br> <br> french version available.</div></div></div></div><a href="http://www.infond.fr/2010/08/lvl8-wargame-ndh2010-format-strings.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-3929653246375021506?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/zkyQ25cPmVHviwatrxig3k-P3lk/0/da"><img src="http://feedads.g.doubleclick.net/~a/zkyQ25cPmVHviwatrxig3k-P3lk/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/zkyQ25cPmVHviwatrxig3k-P3lk/1/da"><img src="http://feedads.g.doubleclick.net/~a/zkyQ25cPmVHviwatrxig3k-P3lk/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/uCofrXlrQ98" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2010/08/lvl8-wargame-ndh2010-format-strings.htmltag:blogger.com,1999:blog-1915953272689604119.post-62699741751906294892010-08-09T11:28:00.002+02:002010-08-09T11:30:10.752+02:002010-08-09T11:30:10.752+02:00<div class="date-posts"><div class="post-outer"><div class="hentry post"><a href="" id="8621217303710026704" name="8621217303710026704"></a><h3 class="entry-title post-title"><a href="http://infond.blogspot.com/2010/07/level7-wargame-ndh2010-tutoriel.html">level7 wargame NDH2010 - tutoriel exploitation buffer overflow avec canary faible</a></h3><div class="entry-content post-body"> level 7 wargame NDH2010 -  tutorial buffer-overflow exploitation protected by a weak canary<br> <br> This article describes the resolution of the french &quot;Nuit du hack 2010&quot; wargame level 7 test. This is a buffer overflow. Here, a protection was added with the introduction of a canary. This is a &quot;random&quot; integer pushed on the stack before the return address of a function and controled before the exit of this function. If the read integer is different of the attended value, the program quit immediatly. <br> The interest of this article is in the exploitation by guessing the value of this canary. Added to that, we&#39;ll use two tips proposed by <a href="http://binholic.blogspot.com/" id="gvwx" title="m_101_">m_101_</a>: The use of the tool pattern provided by Metasploit, and the obtention of the return address by reading dmesg.<br> <a href="" id="more" name="more"></a></div></div></div></div><a href="http://www.infond.fr/2010/08/lvl7-wargame-ndh2010-buffer-overflow.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-6269974175190629489?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/3dO-tfH8ttayUDIzgrCIUvMeyak/0/da"><img src="http://feedads.g.doubleclick.net/~a/3dO-tfH8ttayUDIzgrCIUvMeyak/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/3dO-tfH8ttayUDIzgrCIUvMeyak/1/da"><img src="http://feedads.g.doubleclick.net/~a/3dO-tfH8ttayUDIzgrCIUvMeyak/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/UL7ADueItrU" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2010/08/lvl7-wargame-ndh2010-buffer-overflow.htmltag:blogger.com,1999:blog-1915953272689604119.post-65535655076876841192010-08-09T11:27:00.002+02:002010-08-09T11:30:10.753+02:002010-08-09T11:30:10.753+02:00level6 wargame Nuit du Hack 2010 - buffer-overflow tutorial: only one byte available to control the return address<br> <br> This article describes the resolution of the the french &quot;Nuit du hack 2010&quot; wargame level6 test. This is a buffer-overflow. Here, the buffer size is controled using the function strlen(). So, only one byte is available to control the return address. But the exploitation remains possible. <br> The interest of this article is in the understanding of the return address management on the stack.<br> <a href="http://www.infond.fr/2010/08/lvl6-wargame-ndh2010-buffer-overflow.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-6553565507687684119?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/7NPO_LEND5dra4nBtkLzh0LrKD8/0/da"><img src="http://feedads.g.doubleclick.net/~a/7NPO_LEND5dra4nBtkLzh0LrKD8/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/7NPO_LEND5dra4nBtkLzh0LrKD8/1/da"><img src="http://feedads.g.doubleclick.net/~a/7NPO_LEND5dra4nBtkLzh0LrKD8/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/s46EKl-Alrk" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2010/08/lvl6-wargame-ndh2010-buffer-overflow.htmltag:blogger.com,1999:blog-1915953272689604119.post-17161056732399501042010-08-09T11:26:00.000+02:002010-08-09T11:30:10.754+02:002010-08-09T11:30:10.754+02:00level 5 wargame NDH 2010 - tutorial exploitation buffer-overflow - injection in an environment variable<br> <br> This article describes the resolution of the french &quot;Nuit du hack 2010&quot; wargame test n°5. This is a variation of an exploitation of buffer-overflow. New: we use the console version of Metasploit. We present the injection of code through an environment variable of the system.<br> <a href="http://www.infond.fr/2010/08/lvl5-wargame-ndh2010-buffer-overflow.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-1716105673239950104?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/_tKW0O8TecyffejPmNENSX4t66Y/0/da"><img src="http://feedads.g.doubleclick.net/~a/_tKW0O8TecyffejPmNENSX4t66Y/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/_tKW0O8TecyffejPmNENSX4t66Y/1/da"><img src="http://feedads.g.doubleclick.net/~a/_tKW0O8TecyffejPmNENSX4t66Y/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/rPSVpUFKB_U" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2010/08/lvl5-wargame-ndh2010-buffer-overflow.htmltag:blogger.com,1999:blog-1915953272689604119.post-37780074028179514832010-08-09T11:25:00.000+02:002010-08-09T11:30:10.756+02:002010-08-09T11:30:10.756+02:00level4 wargame NDH 2010 - tutorial exploitation of a buffer overflow<br> <br> This article describes the resolution of the french &quot;Nuit du Hack 2010&quot; wargame level3 test. This is a classic exploitation of a buffer overflow.<br> <a href="http://www.infond.fr/2010/08/lvl4-wargame-ndh2010-buffer-overflow.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-3778007402817951483?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/0Fxs91Kqy0Mnze84Xku3N5Y3PHw/0/da"><img src="http://feedads.g.doubleclick.net/~a/0Fxs91Kqy0Mnze84Xku3N5Y3PHw/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/0Fxs91Kqy0Mnze84Xku3N5Y3PHw/1/da"><img src="http://feedads.g.doubleclick.net/~a/0Fxs91Kqy0Mnze84Xku3N5Y3PHw/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/PXPA18Vjhzs" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2010/08/lvl4-wargame-ndh2010-buffer-overflow.htmltag:blogger.com,1999:blog-1915953272689604119.post-59174318264159262722010-08-09T11:24:00.000+02:002010-08-09T11:30:10.757+02:002010-08-09T11:30:10.757+02:00level3 wargame NDH2010 - crypto characters substitution<br> <br> This article describes the NDH2010 wargame level3 solution. The interest stands in the search of a password generated by a substitution of the user characters.<br> <a href="http://www.infond.fr/2010/08/lvl3-wargame-ndh2010-crypto-bruteforce.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-5917431826415926272?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/cra7vq2FzFb7PaDhEXVmw0EE_oU/0/da"><img src="http://feedads.g.doubleclick.net/~a/cra7vq2FzFb7PaDhEXVmw0EE_oU/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/cra7vq2FzFb7PaDhEXVmw0EE_oU/1/da"><img src="http://feedads.g.doubleclick.net/~a/cra7vq2FzFb7PaDhEXVmw0EE_oU/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/UvchBuQP1JU" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2010/08/lvl3-wargame-ndh2010-crypto-bruteforce.htmltag:blogger.com,1999:blog-1915953272689604119.post-54937730739701682142010-08-09T11:19:00.002+02:002010-08-09T11:30:10.758+02:002010-08-09T11:30:10.758+02:00level2 wargame NDH2010 - system() function exploitation tutorial<br> <br> This article describes the exploitation of a bad implementation of the system() function in a C program, through the resolution of the french &quot;Nuit du Hack 2010&quot; wargame level2 test.<br> <a href="http://www.infond.fr/2010/08/lvl2-wargame-ndh2010-system-function.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-5493773073970168214?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/BE_wXF9CMK3ztLYhd4g-0H_8Dw4/0/da"><img src="http://feedads.g.doubleclick.net/~a/BE_wXF9CMK3ztLYhd4g-0H_8Dw4/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/BE_wXF9CMK3ztLYhd4g-0H_8Dw4/1/da"><img src="http://feedads.g.doubleclick.net/~a/BE_wXF9CMK3ztLYhd4g-0H_8Dw4/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/TdO5SKgFpuA" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2010/08/lvl2-wargame-ndh2010-system-function.htmltag:blogger.com,1999:blog-1915953272689604119.post-5449026212605612742010-08-09T11:18:00.000+02:002010-08-09T11:30:10.760+02:002010-08-09T11:30:10.760+02:00This article describes the resolution of the french &quot;Nuit du hack 2010&quot; wargame level1 test. The interesting part of it is in the perl command used to inject an hex address in a shell prompt.<br> <a href="" id="more" name="more"></a><br> <a href="http://www.infond.fr/2010/08/lvl1-wargame-ndh2010-buffer-overflow.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-544902621260561274?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/5LMEyqTdrT32SuD67n6TtqaEXrE/0/da"><img src="http://feedads.g.doubleclick.net/~a/5LMEyqTdrT32SuD67n6TtqaEXrE/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/5LMEyqTdrT32SuD67n6TtqaEXrE/1/da"><img src="http://feedads.g.doubleclick.net/~a/5LMEyqTdrT32SuD67n6TtqaEXrE/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/uxNJ30AKphQ" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2010/08/lvl1-wargame-ndh2010-buffer-overflow.htmltag:blogger.com,1999:blog-1915953272689604119.post-26122429669466915382010-07-30T23:19:00.001+02:002010-07-30T23:21:08.381+02:002010-07-30T23:21:08.381+02:00<div class="date-posts"><div class="post-outer"><div class="hentry post"><a href="http://www.blogger.com/post-edit.g?blogID=1915953272689604119&amp;postID=2612242966946691538" id="8158524528161622044" name="8158524528161622044"></a><br> <div class="entry-content post-body">This article is a detailed tutorial about exploitation of the format string vulnerability. This vulnerability appears with a wrong implementation of the function printf() in language C. <br> <br> This method can be tested on the french &quot;Nuit du hack 2010&quot; wargame level 8 test. A solution to this test will be proposed in a further article.<br> </div></div></div></div><a href="http://www.infond.fr/2010/07/tutorial-exploitation-format-string.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-2612242966946691538?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/LGoIboMgowCdbSMOTb2p8r8xuOY/0/da"><img src="http://feedads.g.doubleclick.net/~a/LGoIboMgowCdbSMOTb2p8r8xuOY/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/LGoIboMgowCdbSMOTb2p8r8xuOY/1/da"><img src="http://feedads.g.doubleclick.net/~a/LGoIboMgowCdbSMOTb2p8r8xuOY/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/cbGzFWWKhTo" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2010/07/tutorial-exploitation-format-string.htmltag:blogger.com,1999:blog-1915953272689604119.post-43624026487316837152010-07-30T22:47:00.000+02:002010-07-30T22:47:14.788+02:002010-07-30T22:47:14.788+02:00Cet article est un tutoriel détaillé sur l&#39;exploitation de la vulnérabilité format string. Cette vulnérabilité est due à une mauvaise utilisation de la fonction printf() en programmation C. <br> <br> Cette méthode sera appliquée sur l&#39;épreuve n°8 du wargame de la Nuit du hack 2010 qui est un exemple de format string. Cela fera l&#39;objet d&#39;un prochain article.<br> <div class="date-posts"><div class="post-outer"><div class="hentry post"></div></div></div><a href="http://www.infond.fr/2010/07/tutoriel-exploitation-format-strings.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-4362402648731683715?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/C73lqFfN5c4-VzM1ZNXIiK4itWQ/0/da"><img src="http://feedads.g.doubleclick.net/~a/C73lqFfN5c4-VzM1ZNXIiK4itWQ/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/C73lqFfN5c4-VzM1ZNXIiK4itWQ/1/da"><img src="http://feedads.g.doubleclick.net/~a/C73lqFfN5c4-VzM1ZNXIiK4itWQ/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/WSeUv72Z2i4" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com1http://www.infond.fr/2010/07/tutoriel-exploitation-format-strings.htmltag:blogger.com,1999:blog-1915953272689604119.post-13835418623061165912010-07-30T22:44:00.003+02:002010-07-30T22:52:27.289+02:002010-07-30T22:52:27.289+02:00Cet article décrit la résolution du level 8 du wargame de la Nuit du hack 2010. Il s&#39;agit d&#39;une exploitation de vulnérabilité format string. Il applique la méthode &quot;tutoriel exploitation format strings&quot; abordée dans un autre article sur <a href="http://infond.blogspot.com/" id="ty6f" title="infond">infond</a>.<br> <a href="http://www.infond.fr/2010/07/level8-wargame-ndh2010-format-strings.html#more">accéder à l'article</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/1915953272689604119-1383541862306116591?l=www.infond.fr' alt='' /></div> <p><a href="http://feedads.g.doubleclick.net/~a/Mol3BQnzsFlVNf3hp17B_64tWfA/0/da"><img src="http://feedads.g.doubleclick.net/~a/Mol3BQnzsFlVNf3hp17B_64tWfA/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~a/Mol3BQnzsFlVNf3hp17B_64tWfA/1/da"><img src="http://feedads.g.doubleclick.net/~a/Mol3BQnzsFlVNf3hp17B_64tWfA/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Infond/~4/kZX2pCHpI1E" height="1" width="1"/>t0ka7ahttp://www.blogger.com/profile/08174105297955674077noreply@blogger.com0http://www.infond.fr/2010/07/level8-wargame-ndh2010-format-strings.html