Voice Of Hackers

_Banti_ Was Here

2011-08-20T22:46:00.000-07:00

A climate mangles a rush myth.

2011-04-14T18:11:00.001-07:00

Once this sentence is on your blog, come back to your PPP account and press the claim blog button. You can remove the post after you have successfully claimed the blog.

Supreme Court of Canada vulnerable to xss attack !

2011-04-13T06:54:00.000-07:00

Vunl Link : http://sr.scc-csc.gc.ca/search?client=SCC-CSC&site=Internet&output=xml_no_dtd&proxystylesheet=SCC-CSC&hl=en&oe=latin1&ie=latin1&q=%3E%22%3E%3CMARQUEE%3EHACKED+BY+ZERO+COOL%3C%2FMARQUEE%3E&btnG=Search

Found n Submitted by : Zero Cool

Self-wiping hard drives from Toshiba

2011-04-13T06:49:00.000-07:00

Toshiba announces a family of self-encrypting hard disk drives (HDDs) engineered to automatically invalidate protected data when connected to an unknown host.

The new Toshiba Self-Encrypting Drive (SED) models enable OEMs to configure different data invalidation options that align with various end-user scenarios.
Designed to address the increasing need for IT departments to comply with privacy laws and regulations governing data security, the drives are ideally suited for PC, copier and multi-function printer, and point-of-sale systems used in government, financial, medical, or similar environments with an acute need to protect sensitive information.

Building on the industry-standard Trusted Computing Group “Opal” Specification, the new Toshiba MKxx61GSYG models leverage advanced access security and on-board encryption alongside second generation data wipe technology.
Whether to protect against data loss resulting from lost or stolen notebooks or to maintain the security of document image data stored within copier and printer systems, Toshiba SEDs can securely invalidate protected data.
Data invalidation attributes can be set for multiple data ranges, enabling targeted data in the drive to be rendered indecipherable by command, on power cycle, or on host authentication error—an industry first.
With the latest enhancement to Toshiba’s SED technology, the risk of data theft is reduced in cases where the drive is removed from its defined host environment and connected to an unknown system. At power ON, the SED and host perform an authentication process. If the authentication fails, the drive can be configured to simply deny access or crypto-erase sensitive user data.
Scott Wright, product manager, Toshiba Storage Device Division, notes, “Digital systems vendors recognize the need to help their customers protect sensitive data from leakage or theft. Toshiba’s security technologies provide designers of copiers, printers, PCs, and other systems with new capabilities to help address these important security concerns.”

IT data management concerns

2011-04-13T06:48:00.000-07:00

LogLogic announced the findings to an IT Data Management survey carried out amongst 164 IT managers and directors.
The research aims to establish how IT data is being managed and utilised within UK organizations.

Key findings:

Only 14 percent of survey respondents could say that they highly trusted the quality of their IT data and had no concerns. Staggering then that 81 percent said they used their IT data for compliance purposes.
A huge 41 percent admitted that they couldn’t readily access all of their IT data and 48 percent added that it wasn’t in the right, useable format.
49 percent said that they couldn’t easily create reports. Confirming this, the research found that only 16.2 percent could create IT data reports in real time, 25 percent would take longer than five hours (and 13 percent of those estimating it taking longer than 24 hours).
Of those who could create reports and insights from their IT data, only 26 percent said they were actionable.
43 percent don’t use their IT data to help manage service level agreements and 44 percent don’t use it for operational planning either.
36 percent of respondents estimate that less than 49 percent of the IT data that they need to need to report on and analyse is available to them and accessible for compliance, security or operational intelligence purposes.

“It’s clear from the findings that organisations are taking a tactical rather than strategic approach to IT data management,” said Guy Churchward, CEO at LogLogic. “For example, security and compliance were listed as the key reasons for viewing/using IT data (81 and 73 percent respectively) – activities the business has to carry out to protect itself. Only 32 percent saw IT data as a productivity tool and seven percent even admitted that their IT data was completely ignored and unused. The situation is further compounded by the fact that a high percentage of organisations have data quality and trust concerns.”
He continued: “Our research found that only 19.8 percent of c’level directors are currently asked to review IT data. This drops to 13 percent when the same question is asked of their board directors. This will however change in due course as IT data warehousing and management becomes the crux of IT decision-making and CIOs and IT managers assess their ability to implement modern computing models in the enterprise.
Current IT infrastructures have grown into a chaos of applications, agents and devices that generate an increasing amount of IT data. This data provides a wealth of information on how systems are being used, how they are performing, where to drive efficiencies, and how to meet compliance mandates and increase security.

HD video security on the iPad

2011-04-13T06:42:00.001-07:00

To help you keep tabs on your home or office anytime, anywhere, Logitech introduced the Logitech Alert app for iPad which makes it easy to access your Logitech Alert digital video security system.

The Logitech Alert app for iPad is one of the first iPad apps developed strictly for tablet-based HD digital video surveillance. The app lets you view 720p HD video coupled with rich sound quality that’s captured by the user’s Logitech Alert cameras — including the Logitech Alert 750i Master System, the weatherproof Logitech Alert 750e Outdoor Master System and any Logitech Alert Add-On Camera — giving you the ability to see and hear what’s going on at home or the office even when you’re miles away.

With the Logitech Alert app for iPad, it’s quick and easy to check up on your home or small business by simply using the Logitech Alert app for iPad. The app connects to your cameras anytime, so you can watch the live video and hear the audio coming from your cameras.
If you have the Logitech Alert Web and Mobile Commander service you can also view video recordings captured when motion was detected and manage system settings, including turning on motion alerts from your iPad.
The Logitech Alert app for iPad providing free, live monitoring is expected to be available in the U.S., Europe and Asia in the Apple App Store at no charge beginning in April.
The Logitech Alert Web and Mobile Commander service enables additional functionality on the iPad, Web browsers and mobile apps and is available at a suggested retail price of U.S. $79.99 per year.

App employs facial recognition to prevent visual eavesdropping

2011-04-13T06:41:00.002-07:00

Oculis Labs released PrivateEye Enterprise, a desktop security application that employs facial recognition and detection algorithms with a standard webcam to actively protect information displayed on computer screens.

PrivateEye Enterprise offers a way to secure information used by CEOs, CFOs, auditors, consultants, lawyers, doctors, investigators, HR personnel and other users seeking greater privacy.
IT Administrators can manage client policies from a standard Group Policy Management console and can tailor PrivateEye Enterprise policies for the entire domain, business units, or individual users. Importantly, this solution complies with Windows’ Server Group Policy allowing any Windows-based organization to add PrivateEye Enterprise seamlessly to its existing IT infrastructure.

Key features of the solution include:
Eavesdropper detection – Detects and alerts the user whenever eavesdroppers try to read a display. Blurs the screen keeping information private and automatically resolves when risk clears. Users can automatically protect their screen and log the eavesdropper’s face for further action.
Screen protection – Automatically protects the screen whenever the user looks away from it. Instantly clears it again when the user looks back.
Face recognition – Authenticates and unlocks the computer with just a look at the user as well as locks the computer whenever the user leaves. If anyone else tries to get into the computer, the face recognition system keeps them out.
Central policy management – Enables an IT administrator to deploy and manage security policies to all PrivateEye Enterprise clients using standard software and policy distribution mechanisms.
Compliance audit logs – Each client logs security events and reports them centrally for IT management using standard Microsoft tools. These include when the product was active, when the system activated to protect the screen, and if there were unauthorized access attempts. It may also collect unique data including who was using the machine. Whenever a failed login attempt occurs, it captures a picture of the person sitting in front of the machine to the log. Optionally, IT administrators can choose to keep pictures of anyone attempting to eavesdrop on an authorized user.

McAfee enhances its Network Security Platform

2011-04-13T06:41:00.000-07:00

McAfee announced enhancements to its Network Security Platform which includes:
Enhanced botnet control: File and network connection reputation feeds from cloud-based McAfee Global Threat Intelligence allows Network Security Platform to perform in-line botnet prevention based on over 60 million malware samples and the reputation of hundreds of millions of network connections based on over two billion IP reputation queries each month. This external intelligence provides vital context for faster, more accurate detection and prevention.
Traffic analysis port: Traffic redirect capabilities allow arbitrary network traffic to be subjected to additional inspection by McAfee and third party products, including data loss prevention, network forensics and advanced malware analysis tools.
Virtual network inspection: Enables the Network Security Platform sensors to examine inter-virtual machine traffic on virtual environments and provide attack detection for virtual data center environments. Network Security Platform can inspect traffic both within virtual environments and between virtual and physical environments, giving organizations the same level of visibility regardless of where the traffic flows.
As enterprises consolidate data centers, adopt cloud-services, and virtualize critical infrastructure they need a way to unify security management across physical and virtual infrastructures. In partnership with Reflex Systems – a leader in virtualization management solutions – McAfee brings its threat detection and security management to virtual environments.
Together, McAfee and Reflex Systems will offer integrated virtual and physical security and management that enables customers to holistically monitor and understand security issues, easily apply best practices, and provide comprehensive reporting for compliance purposes across the current and next-generation data center infrastructure.

Microsoft Office for Mac 2011 SP1 released

2011-04-13T06:39:00.001-07:00

Microsoft Office for Mac 2011 Service Pack 1 (14.1.0) fixes critical issues and also helps to improve security.

It includes fixes for vulnerabilities that an attacker can use to overwrite the contents of your computer’s memory with malicious code. For detailed information about this update, please visit the Microsoft Web site.

Applies to:

Office 2011
Office 2011 Home and Business Edition
Word 2011
Excel 2011
PowerPoint 2011
Outlook 2011
Communicator 2011
Office for Mac Standard 2011 Edition
Microsoft Office for Mac Home & Student 2011
Microsoft Office for Mac Academic 2011.

ESET NOD32 releases Antivirus for Linux 4 !

2011-04-13T04:37:00.000-07:00

ESET announced the availability of ESET NOD32 Antivirus 4 Business Edition for Linux Desktop and ESET NOD32 Antivirus 4 for Linux.
ESET NOD32 Antivirus 4 for Linux offers protection against cross-platform and emerging threats, enhancing the security of Linux platforms. The scanning engine automatically detects and cleans malicious code, including threats designed for Windows and Mac based systems.

ESET NOD32 Antivirus 4 Business Edition for Linux Desktop includes ESET Remote Administrator, which provides IT administrators with a management console to control an entire network from a single screen — supporting tens or thousands of heterogeneous computers.
Key benefits and features:
Detection and proactive cross-platform protection – Advanced heuristics technology delivers real-time, proactive protection from malware, hacker attacks and exploits. Product protects against Linux, Windows and Mac malware
Small system footprint – The unique build of ESET NOD32 Antivirus 4 for Linux has been optimized to perfectly match the system environment. ESET engineered a smart solution with one of the lowest system footprints on the market ensuring fast startup and smooth performance
Graphical user interface – Optional graphical user interface which delivers intuitive access to features includes full screen mode, informative graphs, statistics and scheduler
Security settings control – Defines which user accounts have the capability to change settings, so unauthorized users cannot disable or lessen protection
Streamlined management – Easy management and oversight of network security across all platforms, allowing for push tasks, updates and security policies to be applied from a single console (Business Edition only)
Removable media access control – Scans or blocks usage of USB, FireWire, CD/DVD devices to minimize risk of infection or data loss.

Malaysiakini – Malaysia’s Most Popular News Website Shutdown’s after cyber attack !

2011-04-13T04:36:00.000-07:00

It has been reported that Malaysia’s most popular news website Malaysiakini (http://www.malaysiakini.com) has been hit by cyber attack from 11 AM afternoon shutting the website down. The attack created a stir when the website stopped working just before the Sarawak election, making the website inaccessible to the readers. The attack has been diagnosed as Denial-of-service attack which is considered to prevent an Internet site or service from functioning efficiently or at all, temporarily or indefinitely. Denial-of-service attacks are considered violations of the IAB’s Internet proper use policy, and also violate the acceptable use policies of virtually all Internet service providers. They also commonly constitute violations of the laws of individual nations.

According to the technical team, the cyber attack has resulted in swarming the Malaysiakini servers to the point that they are unable to cope with the massive traffic. Highlighting the attack both the data centers TM Brickfields and Jaring have also been affected.

Due to the attack the Malaysiakini has interrupted its operation and has posted all of its reports and updates in its facebook (http://www.facebook.com/MalaysiaKini). Malaysiakini.com offers daily news and views in English, Malay, Chinese and Tamil, delivering over 37 million page views and 750,000 video downloads per month to over 1.6 million absolute unique visitors (Google Analytics, August 2008). From July 2008, Malaysiakini became the most read and popular news website in Malaysia.

French Hacker Arrested After Bragging on TV !

2011-04-13T04:34:00.001-07:00

The hacker appeared on the France 2 television programme “Complément d’enquête” (Further investigation) where he claimed to have hacked into computers belonging to the French Army and Thales Group, an IT contractor for the aerospace, defense and security industries.
After the programme aired, the company filed a complaint, claiming the hacker stole confidential information from its internal network.
The man, identified in only as Carl, was arrested on April 7 in Paris. When inspecting his computer, police found the details of hundreds of credit cards and bank accounts.
The hacker admitted selling the information on underground websites, as well as using them to make fraudulent purchases for himself and others.

BackTrack 5 will also be for Motorola Xoom

2011-04-13T04:33:00.001-07:00

As of now, offensive-security have got a modified version of an Ubuntu 10.04 ARM image, chrooted on a Motorola Xoom. The tablet is running a modified, overclockable kernel (from 1.0 to 1.5 GHz). The chrooted BackTrack environment is running a VNC server, from which you can connect from the tablet itself. When run locally from the Xoom tablet, the VNC session does not lag, and the touch keyboard and touchscreen are very workable.

As expected from a chrooted environment, offensive-security are not using any custom drivers (for now), and injection and other related wireless attacks are NOT possible. Here’s a few screenshots we managed to scrounge from our dev box:

BackTrack on Motorola Xoom Screen 1

BackTrack on Motorola Xoom Screen 2

BackTrack on Motorola Xoom Screen 3

BackTrack on Motorola Xoom Screen 4

BackTrack on Motorola Xoom Screen 5

BackTrack on Motorola Xoom Screen 6

offensive-security hope to release a dev version of this image in a couple of weeks for other Xoom owners to play with. We’ll keep you posted !

Tell us how you did it, Pakistan court to hackers !

2011-04-12T02:52:00.000-07:00

Tell us how you did it, Pakistan court to hackers !

Hackers would be granted bail if they taught judges how to do the job, Pakistan's Supreme Court said in a lighter vein as it heard the bail plea of two teenagers who had broken into the Supreme Court website last year. The Supreme Court then granted bail to the two teenagers who are accused of hacking its official website and placing derogatory material about judiciary and the chief justice on it, Dawn reported Tuesday.
The bench, comprising Justices Asif Saeed Khan Khosa and Amir Hani Muslim, was headed by Justice Javed Iqbal.

The judges said the hackers had done a "brilliant job".

Their counsel Iftikhar Hussain Gilani promptly said they had not hacked the site.

To which, the judges asked Gilani why he was not ready to accept praise for the hackers.

They then said in a lighter vein they would grant bail on the condition that the accused taught them how to do such a job.

The judges, however, observed that it was not just the issue of hacking, the hackers had also deprived the people and visitors to the website of general information and information regarding fixation of cases.

They also observed that highly objectionable material had been placed on the website.

Gilani claimed the site had not been hacked by the teenagers but by some Indians.

Wireshark 1.5.1 Development Release !

2011-04-12T02:50:00.000-07:00

Wireshark 1.5.1 has been released. Installers for Windows, OS X, and source code are now available.

New and Updated Features

The following features are new (or have been significantly updated) since version 1.4:

Wireshark can import text dumps, similar to text2pcap.
You can now view Wireshark's dissector tables (for example the TCP port to dissector mappings) from the main window.
TShark can show a specific occurrence of a field when using '-T fields'.
Custom columns can show a specific occurrence of a field.
You can hide columns in the packet list.
Wireshark can now export SMB objects.
dftest and randpkt now have manual pages.
TShark can now display iSCSI service response times.
Dumpcap can now save files with a user-specified group id.
Syntax checking is done for capture filters.
You can display the compiled BPF code for capture filters in the Capture Options dialog.
You can now navigate backwards and forwards through TCP and UDP sessions using Ctrl+, and Ctrl+. .
Packet length is (finally) a default column.
TCP window size is now avaiable both scaled and unscaled. A TCP window scaling graph is available in the GUI.
802.1q VLAN tags are now shown by the Ethernet II dissector.
Various dissectors now display some UTF-16 strings as proper Unicode including the DCE/RPC and SMB dissectors.
The RTP player now has an option to show the time of day in the graph in addition to the seconds since beginning of capture.
The RTP player now shows why media interruptions occur.
Graphs now save as PNG images by default.

New Protocol Support

ADwin, ADwin-Config, Apache Etch, Aruba PAPI, Babel Routing Protocol, Constrained Application Protocol (COAP), Digium TDMoE, Erlang Distribution Protocol, Ether-S-I/O, FastCGI, Fibre Channel over InfiniBand (FCoIB), Gopher, Gigamon GMHDR, IDMP, Infiniband Socket Direct Protocol (SDP), JSON, LISP Data, MikroTik MAC-Telnet, Mongo Wire Protocol, Network Monitor 802.11 radio header, OPC UA ExtensionObjects, PPI-GEOLOCATION-GPS, ReLOAD, ReLOAD Framing, RSIP, SAMETIME, SCoP, SGSAP, Tektronix Teklink, WAI authentication, Wi-Fi P2P (Wi-Fi Direct)

Updated Protocol Support

New and Updated Capture File Support

Apple PacketLogger, Catapult DCT2000, Daintree SNA, Endace ERF, HP OpenVMS TCPTrace, IPFIX (the file format, not the protocol), Lucent/Ascend debug, Microsoft Network Monitor, Network Instruments, TamoSoft CommView

Official releases are available: download page.

CEH Trainer (Centennial Media Training) Got Hacked !

2011-04-12T02:49:00.000-07:00

Hacked site : http://www.cmtraining.com.au/product.php?prod_id=68

50 government website hacked by Tn-V!Rus and The 077

2011-04-12T02:47:00.001-07:00

Hacked sites : http://pastebin.com/wmmRF78j

71 websites hacked by T0$h!R0 AM!N

2011-04-12T02:46:00.001-07:00

Hacked Sites : http://pastebin.com/b1FnnMHp

1000 website hacked by bad boy !

2011-04-12T02:45:00.000-07:00

Hacked Site List : http://pastebin.com/JTDgcyMV

Barracuda Networks Hacking via SQL Injection !

2011-04-11T09:15:00.001-07:00

Barracuda Networks Inc. combines premises-based gateways and software, virtual appliances, cloud services, and sophisticated remote support to deliver comprehensive content security, data protection and application delivery solutions. The company’s expansive product portfolio includes offerings for protection against email, Web and IM threats as well as products that improve application delivery and network access, message archiving, backup and data protection.

Barracuda Networks’ product portfolio includes: Barracuda Spam & Virus Firewall, Barracuda Web Filter, Barracuda IM Firewall, Barracuda Web Application Firewall, Barracuda SSL VPN, Barracuda Load Balancer, Barracuda Link Balancer, Barracuda Message Archiver, Barracuda Backup Service, and the BarracudaWaresoftware portfolio. Combining its own award-winning technology with powerful open source software, Barracuda Networks solutions deliver easy to use, comprehensive security, networking, and data protection products. Barracuda Central, an advanced 24x7 operations center manages data centers for all service-based offerings and works to continuously monitor and block the latest Internet threats.

LIST OF DATABASES:

new_barracuda

information_schema

Marketing

barracuda

black_ips

buniversity

bware

co-op

collections

cuda_car

cuda_stats

dev_new_barracuda

igivetest

igivetest_bk1_aug10

igivetestsucks

kb_solutions

leads

mysql

new_barracuda

new_barracuda_archive

php_live_chat

phpmyadmin

DB NAME: NEW_BARRACUDA

TABLE NAME: DEAL_REG

DATA COUNT: Count(*) of new_barracuda.deal_reg is 17549

SAMPLE DATA:

DB NAME: NEW_BARRACUDA

TABLE NAME: CMS_LOGINS

DATA COUNT: Count(*) of new_barracuda.cms_logins is 251

DATA:

DB NAME: NEW_BARRACUDA

TABLE NAME: BUNIVERSITY_USERS

DATA COUNT: Count(*) of new_barracuda.buniversity_users is 35

DATA:

DB NAME: MYSQL

TABLE NAME: USER

DATA COUNT: Count(*) of mysql.user is 23

DATA:

DB NAME: PHP_LIVE_CHAT

TABLE NAME: CHAT_ADMIN

DATA COUNT: Count(*) of php_live_chat.chat_admin is 30

DATA:

Source : http://hmsec.tumblr.com/

DUCAT Punjab Best Ethical Hacker Competition

2011-04-11T09:14:00.001-07:00

Registration : http://www.dreamtechlabs.com/registration.php
Participants are requested to carry their personal laptops with Battery backup. A Test fees of Rs 100 has to be submitted on the spot.

News By : Vishal Sharma

OllyDbg 2.01 alpha 3 Released !

2011-04-11T09:13:00.001-07:00

A major update with many new features. Here are the most important:

- Support for multi-monitor configurations
- Hardware breakpoints and fast command emulation now co-operate. That is, run trace rund at full speed (up to and exceeding 500000 commands per second) even if there are hardware breakpoints set
- Purely conditional breakpoints during run trace are strongly accelerated
- Stepping, tracing and execution till selection with hardware breakpoints instead of INT3. Controlled by option Debugging | Use HW breakpoints for stepping
- INT3 and hardware breakpoints allow to declare their location as an entry point and specify call parameters for protocolling
- Scan for hidden modules. .NET environment frequently loads modules but does not report them to Debugger
- Search window keeps up to 8 last searches in a separate tabs
- Option to load .udd information even when path, file name or file checksum is different
- Option to save .udd file on request
- Expressions allow for DWORD=="text". Doubleword is interpreted as a pointer to string, comparison is done both in ASCII and UNICODE modes
- Updated decoding of several rare commands
- List of windows. I get address of window function directly from the Window tables. This is tricky but works perfectly
- ASCII dumps and ASCII strings in Binary edit are displayed according to the seleced code page (option Appearance | ASCII code page)
- Memory allocated at address 0 will be correctly recognized and displayed. (Yes, it's possible - I was also astonished by this fact! In this way one can address data using NULL pointer!)
- Improved post-mortem dump. I was unable to find the reason for several reported crashes because they occured in the system DLLs. Now when creating the dump I attempt to backtrace the stack
- Several not-so-inportand changes, like accelerated analysis of tricky code sequences, option to decode registers for selected command, new origin on non-command (safeguard: no shortcut), correct truncation of very long file names in the main menu, restarting of the last loaded executable even when several OllyDbg instances are running in parallel, etc, etc
- And, of course, multiple bugfixes.

Download Here

Sqlmap v.0.9 - automatic SQL injection and database takeover tool !

2011-04-11T09:12:00.001-07:00

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a kick-ass detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.

Change Log :

* Rewritten SQL injection detection engine (Bernardo and Miroslav).
* Support to directly connect to the database without passing via a
SQL injection, -d switch (Bernardo and Miroslav).
* Added full support for both time-based blind SQL injection and
error-based SQL injection techniques (Bernardo and Miroslav).
* Implemented support for SQLite 2 and 3 (Bernardo and Miroslav).
* Implemented support for Firebird (Bernardo and Miroslav).
* Implemented support for Microsoft Access, Sybase and SAP MaxDB
(Miroslav).
* Extended old '--dump -C' functionality to be able to search for
specific database(s), table(s) and column(s), --search switch
(Bernardo).
* Added support to tamper injection data with --tamper switch (Bernardo
and Miroslav).
* Added automatic recognition of password hashes format and support to
crack them with a dictionary-based attack (Miroslav).
* Added support to enumerate roles on Oracle, --roles switch (Bernardo).
* Added support for SOAP based web services requests (Bernardo).
* Added support to fetch unicode data (Bernardo and Miroslav).
* Added support to use persistent HTTP(s) connection for speed
improvement, --keep-alive switch (Miroslav).
* Implemented several optimization switches to speed up the exploitation
of SQL injections (Bernardo and Miroslav).
* Support to test and inject against HTTP Referer header (Miroslav).
* Implemented HTTP(s) proxy authentication support, --proxy-cred switch
(Miroslav).
* Implemented feature to speedup the enumeration of table names
(Miroslav).
* Support for customizable HTTP(s) redirections (Bernardo).
* Support to replicate the back-end DBMS tables structure and entries
in a local SQLite 3 database, --replicate switch (Miroslav).
* Support to parse and test forms on target url, --forms switch
(Bernardo and Miroslav).
* Added switches to brute-force tables names and columns names with a
dictionary attack, --common-tables and --common-columns. Useful for
instance when system table 'information_schema' is not available on
MySQL (Miroslav).
* Basic support for REST-style URL parameters by using the asterisk (*)
to mark where to test for and exploit SQL injection (Miroslav).
* Added safe URL feature, --safe-url and --safe-freq (Miroslav).
* Added --text-only switch to strip from the HTTP response body the
HTML/JS code and compare pages based only on their textual content
(Miroslav).
* Implemented few other features and switches (Bernardo and Miroslav).
* Over 100 bugs fixed (Bernardo and Miroslav).
* Major code refactoring (Bernardo and Miroslav).
* User's manual updated (Bernardo).

Download : http://sourceforge.net/projects/sqlmap/files/
Video demo : http://www.youtube.com/inquisb#g/u

RawCap sniffer for Windows released

2011-04-11T01:17:00.001-07:00

We are today proude to announce the release of RawCap, which is a free raw sockets sniffer for Windows. Here are some highlights of why RawCap is a great tool to have in your toolset:

Can sniff any interface that has got an IP address, including 127.0.0.1 (localhost/loopback)
RawCap.exe is just 17 kB
No external libraries or DLL's needed
No installation required, just download RawCap.exe and sniff
Can sniff most interface types, including WiFi and PPP interfaces
Minimal memory and CPU load
Reliable and simple to use

Usage
RawCap takes two arguments; the first argument is the IP address or interface number to sniff from, the second is the path/file to write the captured packets to.

C:\Tools>RawCap.exe 192.168.0.23 dumpfile.pcap
You can also start RawCap without any arguments, which will leave you with an interactive dialog where you can select NIC and filename:

C:\Tools>RawCap.exe
Network interfaces:
0. 192.168.0.23 Local Area Connection
1. 192.168.0.47 Wireless Network Connection
2. 90.130.211.54 3G UMTS Internet
3. 192.168.111.1 VMware Network Adapter VMnet1
4. 192.168.222.1 VMware Network Adapter VMnet2
5. 127.0.0.1 Loopback Pseudo-Interface
Select network interface to sniff [default '0']: 1
Output path or filename [default 'dumpfile.pcap']:
Sniffing IP : 192.168.0.47
File : dumpfile.pcap
Packets : 1337

For Incident Responders
RawCap comes in very handy for incident responders who want to be able to sniff network traffic locally at the clients of the corporate network. Here are a few examples of how RawCap can be used for incident response:

A company laptop somewhere on the corporate network is believed to exfiltrate sensitive coporate information to a foreign server on the Internet by using a UMTS 3G connection on a USB dongle. After finding the internal IP address on the corporate network the Incident Response Team (IRT) use the Sysinternals tool PsExec to inject RawCap.exe onto the laptop and sniff the packets being exfiltrated through the 3G connection. The generated pcap file can be used to determine what the external 3G connection was used for.

A computer is suspected to be infected with malware that uses an SSL tunnelling proxy (stunnel) to encrypt all Command-and-Control (C&C) communication. The data that is to be sent into the tunnel is first sent unencrypted to localhost (127.0.0.1 aka loopback interface) before it enters the encrypted tunnel. Incident responders can use RawCap to sniff the traffic to/from localhost on the Windows OS, which is something other sniffing tools cannot do.

A corporate laptop connected to the companies WPA2 encrypted WiFi is found to have suspicious TCP sessions opened to other computers on the same WiFi network. Incident responders can run RawCap locally on any of those machines in order to capture the WiFi network traffic to/from that machine in unencrypted form.

For Penetration Testers
RawCap was not designed for pen-testers, but I realize that there are some situations where the tool can come in hany when doing a penetration test. Here are some examples:

After getting remote access and admin privileges on a Windows XP machine the pen-tester wanna sniff the network traffic of the machine in order to get hold of additional credentials. Sniffing tools like dumpcap, WinDump and NMCap can unfortunately not be used since no WinPcap or NDIS driver is installed. RawCap does, however, not need any special driver installed since it makes use of the Raw Sockets functionality built into Windows. Pen-testers can therefore run RawCap.exe to sniff traffic without installing any drivers.

After getting admin on a box the pen-tester wanna sniff the network traffic, but box uses a WiFi network so traditional sniffing tools won't work. This is when RawCap comes in handy, since it can sniff the WiFi traffic of the owned machine just as easily as if it had been an Ethernet NIC.
Download RawCap

RawCap Downloaded

WiFite The WEP/WPA Cracker version r68 released !

2011-04-10T12:38:00.001-07:00

Designed for Backtrack4 RC1 distribution of Ubuntu. Linux only; no windows or osx support.
Purpose :
to attack multiple WEP and WPA encrypted networks at the same time. this tool is customizable to be automated with only a few arguments. wifite can be trusted to run without supervision.
Feature :

this project is available in French: all thanks goto Matt² for his excellent translation!
sorts targets by power (in dB); cracks closest access points first
automatically deauths clients of hidden networks to decloak SSIDs
numerous filters to specify exactly what to attack (wep/wpa/both, above certain signal strengths, channels, etc)
customizable settings (timeouts, packets/sec, channel, change mac address, ignore fake-auth, etc)
“anonymous” feature; changes MAC to a random address before attacking, then changes back when attacks are complete
all WPA handshakes are backed up to wifite.py’s current directory
smart WPA deauthentication — cycles between all clients and broadcast deauths
stop any attack with Ctrl+C — options: continue, move onto next target, skip to cracking, or exit
switching WEP attack methods does not reset IVs
intel 4965 chipset fake-authentication support; uses wpa_supplicant workaround
SKA support (untested)
displays session summary at exit; shows any cracked keys
all passwords saved to log.txt
built-in updater: ./wifite.py -upgrade

Requirement :

linux operating system (confirmed working on Ubuntu 8.10 (BT4R1), Ubuntu 10.04.1)
tested working with python 2.4.5 and python 2.5.2; might be compatible with other versions,
wireless drivers patched for monitor mode and injection: backtrack4 has many pre-patched drivers,
aircrack-ng (v1.1) suite: available via apt: apt-get install aircrack-ng or by clicking here,
xterm, python-tk module: required for GUI, available via apt: apt-get install python-tk
macchanger: also available via apt: apt-get install macchanger
pyrit: not required, optionally strips wpa handshake from .cap files

Download Here...