Mubix Links

HD Moore at 17

Rob Fuller — Fri, 05 Mar 2010 20:16:13 +0000

had to save this for posterity. ;-)

CSPP

Rob Fuller — Thu, 04 Mar 2010 17:22:36 +0000

Connection String Parameter Pollution:

http://www.informatica64.com/csppScanner.aspx

more info here:

[Whitepaper – PDF] http://www.blackhat.com/presentations/bh-dc-10/Alonso_Chema/Blackhat-DC-2010-Alonso-Connection-String-Parameter-Pollution-wp.pdf

and

[Slides] http://www.slideshare.net/chemai64/connection-string-parameter-pollution-attacks-3057114

and

[Report] http://www.darkreading.com/database_security/security/vulnerabilities/showArticle.jhtml?articleID=222600894

Mini Metasploit

Rob Fuller — Thu, 18 Feb 2010 19:21:39 +0000

So a bunch of you have emailed and/or asked for the mini installer from my “Metasploit Framework as a Payload” post. I got permission to post it up on my site. HOWEVER, new builds of both mini and the larger installer will be coming soon, so keep checking back for updates on Metasploit.com for updates on that.

Here are the links to the files:

mini-3.3-dev.exe (5.9M)

framework-3.3-dev-mini.exe (11.5 M)

framework-3.3-dev.exe (20.8M)

The two mini’s have a different amount of code taken out of them, so find what works best for you and your needs.

Also, you can download the deploymsf.rb and more on my Scripts and Programs tab as well as the link.

Web App Sec Pro's Daily Crossword

Rob Fuller — Wed, 17 Feb 2010 17:00:03 +0000

So here is the basic jist, you got a blob of code, you have to find the vulnerable part. And the next post explains where it and why it is the way it is. The technical equivalent to a daily crossword.

http://spotthevuln.com/

Flash Hacking

Rob Fuller — Thu, 11 Feb 2010 19:04:39 +0000

Read this:

http://code.google.com/p/doctype/wiki/ArticleFlashSecurity

Then this:

http://www.ivizsecurity.com/blog/web-application-security/testing-flash-applications-pen-tester-guide/

Then this:

http://carnal0wnage.blogspot.com/2009/11/decompiling-flash-files-with-swfscan.html

Also, attend one of Kevin Johnson’s talk on the subject, not sure if his stuff is posted anywhere yet though.

Probabilistic Password Cracking

Rob Fuller — Sat, 23 Jan 2010 17:00:19 +0000

Matt Weir from http://reusablesec.blogspot.com created a program (well, continued where Bill had left off) that takes dictionary based password cracking to a whole new level

Security Podcasts Boxee App

Rob Fuller — Fri, 22 Jan 2010 17:00:32 +0000

ethicalhack3r from http://www.ethicalhack3r.co.uk/ created a repository of security podcasts that you an add to Boxee:

http://www.ethicalhack3r.co.uk/2010/01/19/securitypodcasts-boxee-app/

DirChex

Rob Fuller — Thu, 21 Jan 2010 17:00:01 +0000

Web App assessors / auditors / pentesters would be good to know this tool. It takes a list of urls and slams it through a proxy, not waiting for a reply. Your intercepting proxy is what does the work after that.

http://code.google.com/p/dirchex/

Prison Break – The Metasploit Saga

Rob Fuller — Thu, 21 Jan 2010 16:06:21 +0000

A great video on using Metasploit and Meterpreter to beat the Prison Break challenge from EthicalHacker.net

Plus, check out his other great videos as well!

Metasploit meterpreter Windump/Winpcap sniffer from siles on Vimeo.

Winquisitor

Rob Fuller — Wed, 20 Jan 2010 15:13:37 +0000

A pretty pimp tool that is written in vb script (IOW: great for meterpreter scripting )

The paper on it by it’s author can be found at:

SANS Reading Room: Whitepaper by Mike Cardosa

and you can download the tool here:

http://www.winquisitor.org/download/