Security Blog

Web Warriors (CBC/HDTV)

inSecure — Mon, 24 May 2010 08:29:44 +0000

Salut, am gasit un filmulet interesant pe internet. Are aproape 40 de minute, si zic eu ca merita.

Vizionare Placuta!

Windows 7 Security – Slides

inSecure — Sun, 09 May 2010 21:29:50 +0000

Am gasit ceva interesant despre securitatea din Windows 7.
Sper sa va placa!

Pareri ?

Jarlsberg – Web Application Exploits and Defenses

inSecure — Sun, 09 May 2010 21:05:55 +0000

Jarlsber

A aparut un nou tool, creat chiar de ‘marele’ Google.
Ce ofera acest tool?!

Learn how hackers find security vulnerabilities! Learn how hackers exploit web applications! Learn how to stop them!


This codelab shows how web application vulnerabilities can be exploited and how to defend against these attacks. The best way to learn things is by doing, so you'll get a chance to do some real penetration testing, actually exploiting a real application. Specifically, you'll learn the following: 
How an application can be attacked using common web security vulnerabilities, like cross-site scripting vulnerabilities (XSS) and cross-site request forgery (XSRF).

How to find, fix, and avoid these common vulnerabilities and other bugs that have a security impact, such as denial-of-service, information disclosure, or remote code execution.

To get the most out of this lab, you should have some familiarity with how a web application works (e.g., general knowledge of HTML, templates, cookies, AJAX, etc.).

O sa il incerc si eu, dupa licenta, ca deocamdata nu am timp. Daca ati reusit sa il testati voi, va rog dati-va cu parerea, sa stiu daca merita sa il incerc.
Apropo, NU sunt fan Google.

Website: http://jarlsberg.appspot.com/
Download: http://jarlsberg.appspot.com/jarlsberg-code.zip

De ce sunt sparte Retelele si cum ?

inSecure — Sat, 08 May 2010 12:14:48 +0000

De ce ?

Am reusit sa identific 5 motive “mari” pentru care hackerii sparg retele in ziua de azi:

1. Retele contin sistem ce au in dotare date sensibiel(parole, carti de credit, informatii confidentiale etc).
2. Asigura facilitati de comunicare pentru a muta datele furate prin lume(pot muta carti de credit prin mai multe retele).
3. Sistemele din retea sunt folosite pentru a cripta datele furate, inainte de a fi mutate prin lume.
4. Sistemele din retea sunt folosite pentru a stoca datele furate.
5. Sistemele sunt folosite pentru creare de troieni, si pentru a dat drumul la viermi.

Cum ?

1. Research general
2. Social engineering(pretext calls, forum-uri etc)
3. Scanning
4. User ID si password breaking
5. Exploit-uri de sistem
6. Interceptarea comunicatiilor (man-in-the-middle attacks)
7. Furt, mita si santaj

Mai stiti si alte motive sau moduri ?!

Cracking Windows 7 Password

inSecure — Tue, 30 Mar 2010 18:55:28 +0000

Salut, azi a trebuit sa sparg parola unui user pe Windows 7.

Am incearcat ca prima varianta OphCrack cu cd-ul bootabil.
Problema a fost ca parola era prea grea(peste 8 litere) si ophcrack-ul nu areusit sa o sparga.

La sfatul lui Bogdan am incearcat http://home.eunet.no/pnordahl/ntpasswd/ . Vreau sa spun ca sunt foarte multumit, in 2 minute am sters parola, si nu a mai fost nici o problema.

Thx, Bogdan.

Microsoft Hyper-V Server 2008 R2

inSecure — Wed, 03 Mar 2010 13:23:55 +0000

Ok, nu am mai scris de ceva timp, dar ma pregatesc de licenta.

O sa fie o licenta cu virtualizare, deci o sa scriu mai mult de virtualizare…

Primul sistem: Microsoft Hyper-V Server 2008 R2
Mai multe detalii aici + Configuration Guide: here
Link de download: Hyper-V

How to Steal a Botnet and What Can Happen When You Do

inSecure — Sat, 23 Jan 2010 21:24:55 +0000

Un video foarte buna

www.youtube.com/watch?v=2GdqoQJa6r4

Hacking Video – Series – 6

inSecure — Mon, 04 Jan 2010 15:53:13 +0000

]]>

Hacking Video – Series – 5

inSecure — Mon, 04 Jan 2010 15:52:13 +0000

]]>

Hacking Video – Series – 4

inSecure — Mon, 04 Jan 2010 15:49:08 +0000

]]>