tag:blogger.com,1999:blog-26438098229491324602009-06-26T07:55:42.044-07:00Alejandro Ramosnoreply@blogger.comBlogger140125tag:blogger.com,1999:blog-2643809822949132460.post-5602666021926267892009-06-26T07:54:00.000-07:002009-06-26T07:55:42.056-07:0016:53 <@DS> !user +nick #pene nick!*@* 20<br />16:53 <@DS> !user nick +AO<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-560266602192626789?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-5544483162955742402009-06-24T02:32:00.003-07:002009-06-24T02:32:49.442-07:00Añadir al VMX:<br /><br />isolation.tools.getPtrLocation.disable = "TRUE"<br />isolation.tools.setPtrLocation.disable = "TRUE"<br />isolation.tools.setVersion.disable = "TRUE"<br />isolation.tools.getVersion.disable = "TRUE"<br />monitor_control.disable_directexec = "TRUE"<br />monitor_control.disable_chksimd = "TRUE"<br />monitor_control.disable_ntreloc = "TRUE"<br />monitor_control.disable_selfmod = "TRUE"<br />monitor_control.disable_reloc = "TRUE"<br />monitor_control.disable_btinout = "TRUE"<br />monitor_control.disable_btmemspace = "TRUE"<br />monitor_control.disable_btpriv = "TRUE"<br />monitor_control.disable_btseg = "TRUE"<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-554448316295574240?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-32988785907082692302009-05-27T09:57:00.001-07:002009-05-27T09:58:17.620-07:00export HISTTIMEFORMAT="%h/%d - %H:%M:%S "<br /><br /><a href="http://">http://www.debianadmin.com/how-to-add-date-and-time-to-your-bash-history-file.html</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-3298878590708269230?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-78290930828299950492009-04-26T13:49:00.000-07:002009-04-26T13:51:25.848-07:00Instalando VisualStudio 2008 se muestra ese error. En vez de montar la ISO con MagicDisc/Daemon, abrirla con winrar y extraer el contenido a un directorio temporal, ejecutar la instalación desde ese directorio.<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-7829093082829995049?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-41284343915878898592009-04-02T16:25:00.000-07:002009-04-02T16:26:46.383-07:00Asus EEE:<br /><ol><li class="level1"><div class="li"> You will need a special tool to copy the <span class="search_hit">Install</span>ationfiles and making the <span class="search_hit">USB</span>-stick/SD card <span class="search_hit">boot</span>able - <a href="http://wiki.eeeuser.com/_media/usb_multiboot_10.zip" class="media mediafile mf_zip" title="usb_multiboot_10.zip"><span class="search_hit">usb</span>_multi<span class="search_hit">boot</span>_10.zip</a></div> </li><li class="level1"><div class="li"> Unpack to any folder. THE PATH TO YOUR FOLDER MUST BE SIMPLE AND WITHOUT SPACES! (ex. c:\<span class="search_hit">usb</span>_multi<span class="search_hit">boot</span>_10)</div> </li><li class="level1"><div class="li"> Insert <span class="search_hit">USB</span>stick / SD card. </div> <ol><li class="level2"><div class="li"> <strong>ALL DATA ON YOUR STICK WILL BE ERASED! Please back up before running <span class="search_hit">USB</span>_Multi<span class="search_hit">Boot</span>_10.cmd!</strong></div> </li></ol> </li><li class="level1"><div class="li"> Run <span class="search_hit">USB</span>_Multi<span class="search_hit">Boot</span>_10.cmd. follow text description.</div> </li><li class="level1"><div class="li"> Format utility will apear. Choose NTFS for >=4Gb <span class="search_hit">usb</span> flash and FAT16 for other, Start format, Close after finishing.</div> <ol><li class="level2"><div class="li"> diamondsw: Using the “HP format” option works fine for any capacity, and you can use FAT32 without problems (I used a 4GB stick). This can be useful as more systems can read FAT32 than NTFS.</div> </li><li class="level2"><div class="li"> <strong>NOTE: If you are doing this from a Vista machine, you may need to run PeTo<span class="search_hit">USB</span>.exe as adminstrator in order for this program to recognize the jump drive. (Right click PeTo<span class="search_hit">USB</span>.exe > Properties > Compatibility > “Run this program as an administrator” checked.)</strong></div> </li></ol> </li><li class="level1"><div class="li"> Set options 1 and 2. Set option 0 only if you want to use <span class="search_hit">USB</span> HDD instead of a <span class="search_hit">USB</span> stick/ SD card.</div> </li><li class="level1"><div class="li"> Do not touch other options if you have no idea about it.</div> </li><li class="level1"><div class="li"> Choose 3 after setting all other options. It will create the image and write it to the <span class="search_hit">USB</span> stick as well as making the <span class="search_hit">USB</span>stick / SD card <span class="search_hit">boot</span>able.</div> </li><li class="level1"><div class="li"> Answer Yes to all questions that come up (these vary depending on options selected).</div> </li><li class="level1"><div class="li"> When it finishes copying, remove your <span class="search_hit">usb</span> stick and insert it in the EeePC to <span class="search_hit">install</span> XP.</div> </li><li class="level1"><div class="li"> When you turn on the Eee, hold down “Esc” to choose the <span class="search_hit">boot</span> device and select the <span class="search_hit">USB</span> stick/ SD card. You'll need to do this at each re<span class="search_hit">boot</span> until XP is fully <span class="search_hit">install</span>ed and you've logged in.</div> </li><li class="level1"><div class="li"> Choose <strong>Text <span class="search_hit">install</span>ation at first time</strong> and <strong><acronym title="Graphical User Interface">GUI</acronym> <span class="search_hit">INSTALL</span>ATION AFTER RE<span class="search_hit">BOOT</span> TWICE!</strong> - ( Choose step 1 to start <span class="search_hit">install</span>ing, after re<span class="search_hit">boot</span> choose step two, after continued <span class="search_hit">install</span> press step 2 AGAIN to log into XP - As soon as you arrive at the <span class="search_hit">Windows</span> XP Desktop you can safely remove the <span class="search_hit">USB</span>Stick / SD card.</div> <ol><li class="level2"><div class="li"> If you get <em>hal.dll not found</em> errors, read carefully the last two last bullets!</div> </li></ol> </li></ol><br />Referencias:<br /><a href="http://www.msfn.org/board/index.php?showtopic=111406&amp;st=0&amp;p=737643&amp;#entry737643">http://www.msfn.org/board/index.php?showtopic=111406&amp;st=0&amp;p=737643&amp;#entry737643</a><br /><a href="http://wiki.eeeuser.com/windowsxpusb">http://wiki.eeeuser.com/windowsxpusb</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-4128434391587889859?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-49565555407531454482009-03-04T04:02:00.000-08:002009-03-04T04:07:29.819-08:00<span class="mcon"> See the man-page of smartctl for details, but this one seems to be a nice configuration: <pre>/dev/hda -a -o on -S on -s (S/../.././19|L/../../3/21|C/../.././20) -m root<br /></pre> <pre>S/../.././19 = short test every day at 19:00<br />C/../.././20 = conveyance test every day at 20:00<br />L/../../3/21 = long test every wednesday (3) at 21:00<br />-m root = root will be emailed if anything strange occurs<br /></pre></span><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-4956555540753145448?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-28107545413126977442009-03-03T09:00:00.000-08:002009-03-03T09:01:41.930-08:00vete a<br /><br />Botón de Office | Opciones Word | Avanzadas<br />Busca en el panel de la derecha --> Mostrar contenido de documento<br />desactiva--> Mostrar marcadores de imagen<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-2810754541312697744?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-29705871215044005172009-01-22T15:28:00.000-08:002009-01-22T15:29:49.096-08:00Para instalar Antivir en W2K8 Server:<br /><br />1.) Start --> Run --> Regedit<br />2.) Go to HKEY_LOCAL_MACHINE --> SYSTEM --> CurrentControlset --> Control<br />3.) Now change the permissions of the folder "ProductOptions" --> add your user account (for example Computername\Username) and deny yourself the read rights for the whole folder. Be careful not to deny the whole rights for all administrators or something like that (I tried that first cause of a black out and it leads to windows not being able to boot).<br />4.) Now you should be able to install Antivir PE<br /><br />origen: <a href="http://www.win2008workstation.com/forum/viewtopic.php?p=920">http://www.win2008workstation.com/forum/viewtopic.php?p=920</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-2970587121504400517?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-3864108020311340682009-01-11T05:08:00.000-08:002009-01-11T05:10:21.972-08:00Para utilizar expresiones regulares en lo que sería el "-name", del comando "find"<br /><br /><blockquote> find /var -regex ".*utmp\|.*secure" -ls</blockquote>Las expresiones regulares son "emacs", no posix, aunque esto se puede cambiar en las nuevas versioens de find mediante: -regextype<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-386410802031134068?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-15438395146964688522008-12-08T03:58:00.000-08:002008-12-08T10:39:19.257-08:00<pre class="prettyprint"><br />#!/bin/bash<br /># chr() - converts decimal value to its ASCII character representation<br /># ord() - converts ASCII character to its decimal value<br /><br />chr() {<br /> printf \\$(printf '%03o' $1)<br />}<br /><br />ord() {<br /> printf '%d' "'$1"<br />}<br /><br />ord A<br />echo<br />chr 65<br />echo<br /><br /><br /></pre><br /><br /><br /><a href="http://wooledge.org:8000/BashFAQ">http://wooledge.org:8000/BashFAQ</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-1543839514696468852?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-51818276705327133772008-09-27T14:05:00.000-07:002009-01-11T05:08:16.139-08:00Aunque ha generado algún error en las RSS mezclandolas con las de otro blog, he conseguido migrar de mi antigua plataforma MovableType a Blogger. Este cambio lo he hecho únicamente por ahorrarme el mantenimiento. Los pasos son:<br /><ol><li>Exportar el Blog desde MovableType, lo que genera un XML</li><li>Crear cuenta en Wordpress e importarlo, para obtener ahi el blog</li><li>Exportar de Wordpress a XML</li><li>Utilizar la herramienta: http://code.google.com/p/wordpress2blogger</li></ol>La única pega es que los comentarios dan problemas, aunque yo de eso no uso.<br />-----<br />Hay una aplicación chinorris o similar que formatea un .TXT de MovableType a XML de blogger, de tal forma que se pueden importar comentarios y todo.<br /><br />http://sourceforge.net/project/showfiles.php?group_id=211548<br /><br />---<br />Google ha publicado herramientas para este fin (ya podía haberlo hecho una semana antes)<br /><br />http://google.dirson.com/post/4239-herramienta-importar-exportar-blogger/<br />http://code.google.com/p/google-blog-converters-appengine/<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-5181827670532713377?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-33367294590148692462008-09-18T05:53:00.000-07:002008-09-21T09:49:49.804-07:00Lo he publicado en mi otro blog (que colaboro con YJ): <a href="http://www.securitybydefault.com/">http://www.securitybydefault.com/</a><br /><ul><br /><li>NIST <a href="http://csrc.nist.gov/publications/nistpubs/800-42/NIST-SP800-42.pdf">SP800-42</a>, es del año 2003, será remplazada por la <a href="http://csrc.nist.gov/publications/drafts/sp800-115/Draft-SP800-115.pdf">SP800-115</a> que actualmente está en versión borrador.</li><br /><li><a href="http://www.oissg.org/issaf/information-systems-security-assessment-framework-issaf-draft-0.2.1b/download.html">ISSAF</a> de OSSIG, en versión borrador con fecha del 2006. Desgraciadamente, parece un proyecto abandonado.</li><br /><li><a href="http://www.isecom.org/osstmm/">OSSTMM</a> de ISECOM, existe versión final y actualmente se trabaja en la 3.0, de la que ya hay una versión "lite" libre para descarga genérica.<br /></li><br /><li><a href="http://www.esisac.com/publicdocs/assessment_methods/VA.pdf">Vulnerability Assessment Methodology</a>, de Electronic Power Infrastructure, documento en borrador del 2002.</li><br /><li>"<a href="http://www.ncjrs.gov/pdffiles1/nij/195171.pdf">A Method to Assess The Vulnerability of U.S Chemical Facilities</a>" del Departamento de Justicia de U.S. versión de Noviembre 2002. Complementado con "<a href="http://www.ojp.usdoj.gov/odp/docs/vamreport.pdf">Vulnerability Assessment Methodologies Report: Phase I, Final Report</a>". De julio del 2003.</li><br /><li><a href="http://engineers.ihs.com/document/abstract/OXGJGBAAAAAAAAAA">"Security Vulnerability Assesment Methodology for the Petroleum and Petrochemical Industries, Second Edition</a>", de API, Octubre 2004</li><br /><li>Del Departamento de Defensa: Criticial Infrastructure Protection: "<a href="http://handle.dtic.mil/100.2/ADA457933">Developing a Comprehensive and Integrated Vulnerability Assessment Methodology for the Defense Department's Critical Infrastructure Protection (CIP) Program</a>"</li><br /><li>Finalmente, para auditoría web tenemos la archiconocida <a href="http://www.owasp.org/index.php/Main_Page">OWASP</a>.<br /></li></ul><br /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-3336729459014869246?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-30480774074052823502008-08-18T04:48:00.000-07:002008-12-08T10:42:08.372-08:00A dia de hoy funciona, aunque a nada que cambien la web dejará de hacerlo y no creo que lo actualice:<br /><a href="http://www.unsec.net/rapid.sh">http://www.unsec.net/rapid.sh</a><br /><br /><br /><br /><pre class="prettyprint"><br />#!/bin/bash<br />if [ -z $1 ]; then echo "$0 [url|file]";exit; fi<br />if [ -f $1 ]; then file=$1; else url=$1; fi<br /><br />function dwn() {<br /> echo -e "\nDownloading ($n/$total): $url"<br /> html_n1=`curl -s $url`<br /> url_n1=`echo "$html_n1"|grep 'id="ff"'|sed -e 's/.*action="\(.*\)" m.*/\1/'`<br /> if [[ "$html_n1" == *"could not be found"* ]]; then<br /> echo "Error: File not found"; exit<br /> fi<br /> html_n2=`curl -s -d "dl.start=Free" $url_n1`<br /> nsleep=`echo "$html_n2" | grep 'var c'|sed -e 's/var c=\(.*\);.*/\1/'`<br /> if [[ "$html_n2" == *"is already downloading a file"* ]]; then<br /> echo "Error: already downloading a file"; exit<br /> fi<br /> if [ -n $nsleep ]; then<br /> url_n2=`echo "$html_n2"|grep "var tt"|sed -e 's/.*action="\(.*\)" m.*/\1/'`<br /> echo "Sleeping: $nsleep secs."<br /> sleep $nsleep<br /> echo "Done. filename: `basename $url`"<br /> curl -d "mirror=on&x=30&y=32" $url_n2 -O<br /> else<br /> echo "Error. Try later"<br /> fi<br />}<br /><br />if [ -f $1 ]; then<br /> total=`cat $file|wc -l`<br /> n=0<br /> for url in `cat $file`; do<br /> n=$(( $n + 1 ))<br /> dwn $url $n<br /> done<br />else<br /> total=1; n=1; dwn $url<br />fi<br /><br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-3048077407405282350?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-20434312302565979762008-08-14T15:59:00.000-07:002008-09-21T09:49:48.341-07:00De la charla de fyodor en la defcon:<br /><br />(notese que solo mira el puerto 80)<br /><br />nmap -T4 --max_rtt_timeout 200 --initial_rtt_timeout 150 --min_hostgroup 512 --max_retries 0 -n<br />-P0 -p80 -oA Log X.X.X.X/X<br /><br /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-2043431230256597976?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-61231493562339222612008-07-22T12:04:00.000-07:002008-09-21T09:49:47.300-07:00Aplicación similar a <a href="http://www.microsoft.com/windowsxp/Downloads/powertoys/Xppowertoys.mspx">ImageResizer </a>de las PowerToys de XP, pero para Vista.<br /><br /><a href="http://blogs.msdn.com/cumgranosalis/pages/image-resizer-download-page.aspx">http://blogs.msdn.com/cumgranosalis/pages/image-resizer-download-page.aspx</a><br /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-6123149356233922261?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-21478633246989202182008-07-08T08:51:00.000-07:002008-09-21T09:49:46.727-07:00Mediante sed:<br /><br /><blockquote>sed -n $[ $RANDOM % $(wc -l &lt; $filename) ]p $filename<br /></blockquote><br /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-2147863324698920218?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-36900149210982646772008-02-22T00:20:00.000-08:002008-09-21T09:49:46.092-07:00Tan sencillo como:<br /><br /><strong>For nokia n80</strong><br />ffmpeg -i "$1" -ar 16000 -ac 1 -acodec aac -vcodec mpeg4 -s 352x288 -r 24 -b 350 -ab 32 "$1.3gp"<br /><br /><strong>Nokia s60</strong><br />ffmpeg -i movie.avi -s 172x144 -r 10 -ac 1 -b 48 -ab 12 movie.3gp<br /><br /><strong>Nokia NSeries</strong><br />ffmpeg -i movie.avi -f mp4 -vcodec mpeg4 -b 250000 -r 15 -s 320x176 -acodec aac -ar 24000 -ab 64 -ac 2 movie.mp4<br /><br /><strong>Nokia 3250, 5500, E50, E62</strong><br />ffmpeg -i movie.avi -f 3gp -vcodec 3gp -b 100000 -s 320x176 -r 12 -acodec aac -ar 8000 -ab 16 -ac 1 movie.3gp<br /><br /><strong>For Ipod</strong><br />ffmpeg -vcodec xvid -i input.avi -b 375 -qmax 10 -bufsize 8192 -g 300 -acodec aac -ab 96 -ac 2 -s 320×192 output.mp4<br /><br /><strong>Ipod (fullscreen)</strong><br />ffmpeg -i in.avi -f mp4 -vcodec mpeg4 -maxrate 1000 -b 700 -qmin 3 -qmax 5 -bufsize 4096 -g 300 -acodec aac -ab 192 -s 320x240 -aspect 4:3 out.mp4<br /><br /><strong>Ipod (widescreen)</strong><br />ffmpeg -i in.avi -f mp4 -vcodec mpeg4 -maxrate 1000 -b 700 -qmin 3 -qmax 5 -bufsize 4096 -g 300 -acodec aac -ab 192 -s 320x180 -aspect 16:9 out.mp4<br /><br /><strong>Yo para mi e61i uso</strong>: ffmpeg -i movie.avi -f mp4 -vcodec mpeg4 -b 250000 -r 15 -s 320x176 -acodec aac -ar 24000 -ab 64 -ac 2 movie.mp4<br /><br />Desde: <a href="http://apairudin.blogspot.com/2008_01_01_archive.html">http://apairudin.blogspot.com/2008_01_01_archive.html</a><br />Y: <a href="http://blogs.s60.com/s60multimedia/2006/11/video_transcoding_using_ffmpeg.html">http://blogs.s60.com/s60multimedia/2006/11/video_transcoding_using_ffmpeg.html<br /></a><br /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-3690014921098264677?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-90738469523989599222008-02-11T15:02:00.000-08:002008-09-21T09:49:45.292-07:00Unos cuantos links.<br /><br />* <a href="http://setacl.sourceforge.net/index.html">http://setacl.sourceforge.net/index.html</a><br />* <a href="http://www.somarsoft.com/ (DumpSec)">http://www.somarsoft.com/ (DumpSec)</a><br />* <a href="http://www.sysinternals.com/ntw2k/source/shareenum.shtml">http://www.sysinternals.com/ntw2k/source/shareenum.shtml</a><br />* <a href="http://www.sysinternals.com/ntw2k/source/accessenum.shtml">http://www.sysinternals.com/ntw2k/source/accessenum.shtml</a><br />* <a href="http://www.scriptlogic.com/products/security%2Dexplorer/">http://www.scriptlogic.com/products/security%2Dexplorer/</a><br /><br /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-9073846952398959922?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-16478281820703829872008-02-09T05:11:00.000-08:002008-09-21T09:49:44.694-07:00Para conocer que procesos abren que puertos, tal y como hace linux con el parametro -p en netstat, en Windows hay que usar dos comandos<br /><br />C:\&gt; netstat -ano<br /><br />Con el que se conocen el número PID asociado al puerto abierto (en estado LISTENING), y tasklist, para encontrar la relación nombre con PID<br /><br />c:\&gt; tasklist | find "PID"<br /><br />En Windows XP (SP2) se puede utilizar el parametro -b de netstat directamente<br /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-1647828182070382987?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-33390866585118376852008-02-09T05:03:00.000-08:002008-09-21T09:49:44.025-07:00Mediante WMI, con las limitaciones que ello implica<br /><br />C:\&gt; wmic nic list<br />C:\&gt; wmic nicconfig<br /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-3339086658511837685?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-47700126050328247372008-02-09T04:43:00.000-08:002008-09-21T09:49:43.511-07:00Para detectar puertos abiertos sin privilegios de administrador, a lo netstat:<br /><br />Openports: <a href="http://www.diamondcs.com.au/consoletools.php">http://www.diamondcs.com.au/consoletools.php</a><br /><br /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-4770012605032824737?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-52507748186332474022008-02-07T11:07:00.000-08:002008-09-21T09:49:43.089-07:00* Phonesweep: <a href="http://www.sandstorm.net/products/phonesweep/">http://www.sandstorm.net/products/phonesweep/</a><br />* TeleSweep:<br /><a href="http://www.securelogix.com/modemscanner/index.htm">http://www.securelogix.com/modemscanner/index.htm</a><br />* Xiscan: <a href="http://www.xiscan.com/introduction/xiscan.html">http://www.xiscan.com/introduction/xiscan.html</a><br />* ModemScan: <a href="http://www.wardial.net/default.html">http://www.wardial.net/default.html</a><br />* iwar: <a href="http://www.softwink.com/iwar/">http://www.softwink.com/iwar/</a><br />* thc-scan (sin link por ser de THC)<br />* toneloc (sin link por deprecated)<br />* PAW/PAWS: <a href="http://www.wyae.de/software/paw/">http://www.wyae.de/software/paw/</a><br />* - T-Kit <a href="http://www.t-kit.com/, Windows, commercial">http://www.t-kit.com/, Windows, commercial</a><br /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-5250774818633247402?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-32856459449928595532008-01-30T14:37:00.000-08:002008-09-27T14:10:39.706-07:00<br /><blockquote>Rehan,<br /><br />On Fri, 25 Jan 2008, ahgaber_rehan@yahoo.com wrote:<br /><br />&gt; Hi All , i am auditing Oracle DB , i have requested the DBA to extract<br />&gt; all Password has in text file, i have the list, any body have a tool<br />&gt; which can import the file and verify the hash against my dictionary ? i<br />&gt; have cain , but i couldn’t find the option to import the list of<br />&gt; passwords, it’s done 1 by 1<br /><br />Here's a list of Oracle offline password cracking tools:<br /><br />- bob the butcher (http://btb.banquise.net/)<br />- hashattack (http://802.11ninja.net/code/hashattack-0.2.0.tgz)<br />- orabf (http://www.toolcrypt.org/index.html?orabf)<br />- pass_cracker (http://www.trantechnologies.com/pass_cracker.zip)<br /><br />I personally use Alexander Kornbrust's excellent checkpwd, in conjuction<br />with a small helper script i made:<br /><br />http://www.0xdeadbeef.info/code/oracrack<br />http://www.red-database-security.com/software/checkpwd.html<br /><br />You can easily edit your password list to make it fit the format required<br />by the script (an awk/sed one-liner should be enough;).<br /><br />Other useful miscellaneous information about Oracle auditing:<br /><br />http://seclists.org/pen-test/2007/May/0096.html<br />http://www.vulnerabilityassessment.co.uk/Penetration%20Test.html<br />http://freeworld.thc.org/thc-orakel/<br />http://www.milw0rm.com/related.php?program=Oracle<br /><br />Cheers,<br /><br />--<br />Marco Ivaldi, OPST</blockquote><br /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-3285645944992859553?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-54767855249705347762008-01-09T23:56:00.000-08:002008-09-21T09:49:41.734-07:00Prtconf prtvconf y prtdiag<br /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-5476785524970534776?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.comtag:blogger.com,1999:blog-2643809822949132460.post-85451501752545749002008-01-08T06:32:00.000-08:002008-09-21T09:49:41.239-07:00<br />De:<a href="http://www.3gspain.org/foros/showthread.php?t=6114&amp;page=4">http://www.3gspain.org/foros/showthread.php?t=6114&amp;page=4</a><br /><br /><blockquote>Por fin eh encontrado la SOLUCION para que mi telefono acepte mi tarjeta, me explico:<br />Tengo un movil N70 Vodafone ,cuando quise liberalo utilizando el cable DKU-5 y de software BB5. que ocurrio? pues como a muchos me fallo en el proceso y despues la famosa frase "sp data is corrupted" (la odio, menudo susto me dio).<br />Bueno despues de esto no aceptaba la tarjeta y casi me cago por que el movil tiene una semana y ya me estaba imaginadome en la tienda inventandome una excusa para que colara( que no iba a colar por que estan cansados de este tipo de problemas).<br />Consulte muchos foros lo intente todo (este tambien por supuesto), y no me sirvio de nada, horas rompiendome la cabeza para nada, pero en una pagina de internet ( http://www.oobonioo.com/modules.php?...=article&amp;sid=3 )ley algo que me hizo pensar que igual la solucion era no dejar pensar al telefono a la hora de utilizar el bb5, entonces lo que hice fue (con tarjeta sim y todo), conectar el cable al telefono abrir el programa, apagar el telefono, volver a encenderlo y tan pronto como encendio la luz blanca darle a " WR backup " y "sorpresa" mi tarjeta volvio a FUNCIONAR.<br /><br />Como no me puedo estar quieto, al final intente liberar el movil siguiendo todos los pasos con el bb5 pero con un unico detalle, para conseguir el log hice lo mismo apague-encendi, y para meter el codigo con la opcion SP Unlock apague-encendi, y premio, movil desbloqueado, eso si lo hice sin cerrar nunca el programa bb5.</blockquote><br /><br />El truco está en dar al boton primero del software y luego encender el movil, y todo solucionado.<br /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2643809822949132460-8545150175254574900?l=www.unsec.net'/></div>Alejandro Ramosnoreply@blogger.com