hacking

Bookmarks for 16 Mar 2016 through 24 Mar 2016

These are my links for 16 Mar 2016 through 24 Mar 2016:

  • “Reverse Engineering for Beginners” free book
  • Resolve Hardware Status Alert SEL_FULLNESS | Brian Ragazzi – […] I noticed an alert on two UCS B250M2 hosts in the vSphere Client. The alert Name was “Status of other host hardware objects”. This isn’t helpful. To get more information, you have to navigate to the Hardware Status tab of the host properties. Here I saw more information about the alert. It’s cryptically named “System Board 0 SEL_FULLNESS”. […]
  • Network Stack: Cisco ASA Packet Capture – […] The ASA platform has fantastic built-in packet capture capabilities which can come in very handy for troubleshooting issues. I will be demonstrating some of the capabilities using an ASA 5505 running version 9.0(1).Performing a packet capture is done using the capture command from privileged exec mode. […][ Fantastic… I won’t say that ]
  • Sanesecurity ClamAV Malware, Phishing, and Spam Signatures – Sanesecurity produces add-ons signatures to help improve the ClamAV detection rate on Zero-Day malware and even on Zero-Hour malware. Since 2006 we have provided professional quality ClamAV signatures to protect against the following email types: Macro malware, Zip malware, Rar malware, Javascript malware, 7z malware, Phishing, Spear phishing and other types of common emailed malware and spam. Sanesecurity 3rd Party ClamAV signatures can also help prevent TeslaCrypt, Cryptowall, Cryptolocker and other ransomware, who’s source usually starts as a malicious email.
  • Multistage environments with Ansible – Ross Tuck – Ansible has excellent documentation but one thing I was confused about was the best way to store the configuration for multistage projects: say, different passwords for dev, staging, production. This isn’t really covered in the ansible-examples repo because it’s specific to your project and while the documentation has recommendations, it doesn’t spell it out completely (which I need since I’m an idiot).

Bookmarks for 30 Dic 2015 through 17 Feb 2016

These are my links for 30 Dic 2015 through 17 Feb 2016:

  • Robtex – We aim to make the fastest and most comprehensive free DNS lookup tool on the Internet
  • OS.js – JavaScript Cloud/Web Desktop Platform – OS.js is a JavaScript web desktop implementation for your browser with a fully-fledged window manager, Application APIs, GUI toolkits and filesystem abstraction.
  • Try Perl: learn the basics of the Perl language in your browser – Welcome to Try Perl ! The window on your right is an interactive Perl interpreter. You can type Perl statements and watch it run. [ via MD http://braindead.tumblr.com/post/136604576916 ]
  • Syncthing – Syncthing replaces proprietary sync and cloud services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third party and how it's transmitted over the Internet.
  • AlessandroZ/LaZagne · GitHub – The LaZagne project is an open source application used to retrieve lots of passwords stored on a local computer. Each software stores its passwords using different techniques (plaintext, APIs, custom algorithms, databases, etc.). This tool has been developed for the purpose of finding these passwords for the most commonly-used software. At this moment, it supports 22 Programs on Microsoft Windows and 12 on a Linux/Unix-Like OS.

Bookmarks for 30 mar 2015 through 31 mar 2015

These are my links for 30 mar 2015 through 31 mar 2015:

  • 5 easy tips to accelerate SSL – Unhandled expression – SSL is slow. These cryptographic algorithms eat the CPU, there is too much traffic, it is too hard to deploy correctly. SSL is slow. Isn’t it? HELL NO! SSL looks slow, because you did not even try to optimize it! For that matter, I could say that HTTP is too verbose, XML web services are verbose too, and all this traffic makes the website slow. But, SSL can be optimized, as well as everything!
  • Cybrary – Free Online IT and Cyber Security Training, Forever! – Cybrary is a free and open source, online information technology (IT) and cyber security training environment for the world. We are dedicated to keeping the world’s IT professionals prepared for this ever changing industry and its technologies. You can learn almost anything IT and security related for free, and you can help others to do the same. Take a look at what you can learn: Systems Administration Network Administration Cyber Security Our free IT training classes include everything from industry certifications such as Certified Ethical Hacker, CISSP and CCNA to advanced niche skill sets like advanced penetration testing and cloud administration. Our training includes instructional lectures, interactive lab demonstrations, exam study guides, white papers, case studies and more. [ via https://delicious.com/farmando]
  • Exploit Exercises – exploit-exercises.com provides a variety of virtual machines, documentation and challenges that can be used to learn about a variety of computer security issues such as privilege escalation, vulnerability analysis, exploit development, debugging, reverse engineering, and general cyber security issues. [ via https://delicious.com/farmando ]

Bookmarks for 22 giu 2014 through 23 giu 2014

These are my links for 22 giu 2014 through 23 giu 2014:

Bookmarks for 10 apr 2012 through 13 apr 2012

These are my links for 10 apr 2012 through 13 apr 2012:

  • php:zerobin [sebsauvage] – ZeroBin is a minimalist, opensource online pastebin where the server has zero knowledge of pasted data. Data is encrypted/decrypted in the browser using 256 bits AES. You can test it online.
  • logstash – open source log management – logstash is a tool for managing events and logs. You can use it to collect logs, parse them, and store them for later use (like, for searching). Speaking of searching, logstash comes with a web interface for searching and drilling into all of your logs.

    It is fully free and fully open source. The license is Apache 2.0, meaning you are pretty much free to use it however you want in whatever way.

  • Exploit Exercises – exploit-exercises.com provides a variety of virtual machines, documentation and challenges that can be used to learn about a variety of computer security issues such as privilege escalation, vulnerability analysis, exploit development, debugging, reverse engineering.

    [ via http://www.afhome.org ]

Bookmarks for 13 feb 2012 through 15 feb 2012

These are my links for 13 feb 2012 through 15 feb 2012:

  • Configuring a site-to-site VPN between a Sonicwall and Linux Openswan – Mike A. Leonetti – I have had the fortune of having the challenge to set up a site-to-site (or BOVPN/Branch Office VPN) between a Sonicwall and Openswan. I have searched for other articles that cover this topic and found plenty of information that got me far enough to get some of it working. However, getting the whole thing working took quite some time and I found the guides to be incomplete. So for the sake of even my own remembrance, I will write a mini guide up. Of course I will link all of the guides I've used in a references section.
  • VPN Site-to-Site Openswan x ASA (Cisco) – House of Linux – Ladies and gentleman, today I am going to demonstrate how to integrate technologies from different platforms. It is possible to use Cisco to integrate with Windows and Linux using protocol such as LDAP. In this case the communication between Linux and ASA (Adaptive Security Appliances) is straight. We will only need to check the cryptography configuration and that it, the connection is established.
  • Linux Commands – SkullSecurity – Recon, scanning, exploitation and password from comman line in linux (netcat, metasploit, etc)
  • Windows Commands – SkullSecurity – Recon, scanning and exploitation in a windows command line

Bookmarks for 20 ago 2011 from 06:00 to 17:41

These are my links for 20 ago 2011 from 06:00 to 17:41:

  • Percona XtraBackup for InnoDB and XtraDB Data – Percona Software – Percona XtraBackup is the world's only open-source, free MySQL hot backup software that performs non-blocking backups for InnoDB and XtraDB databases. With Percona XtraBackup, you can achieve the following benefits:<br />
    <br />
    Backups that complete quickly and reliably<br />
    Uninterrupted transaction processing during backups<br />
    Savings on disk space and network bandwidth<br />
    Automatic backup verification<br />
    Higher uptime due to faster restore time<br />
    XtraBackup makes MySQL hot backups for all versions of Percona Server, MySQL, MariaDB, and Drizzle. It performs streaming, compressed, and incremental MySQL backups.
  • The Ethical Hacker Network – Free Armitage and Metasploit Video Training Course – Armitage is a front-end for Metasploit that allows team collaboration and exposes the advanced features of the framework. Raphael Mudge has made a six-part training series on Armitage and Metasploit for the ethicalhacker.net community. These demonstration-heavy lectures introduce the penetration testing process and walk you through each step. You'll learn how to break into hosts, carry out post-exploitation activities, develop more access from your initial foothold, and you'll do this in a team environment.
  • 500 Internal Server Error – 500 Internal Server Error

Bookmarks for 11 nov 2010 through 16 nov 2010

These are my links for 11 nov 2010 through 16 nov 2010:

  • FTTH look ahead — technologies & architectures – Abstract: We review the trade-offs, challenges and potentials of various FTTH architecture options<br />
    A presentation by Google
  • vitetris: Text-mode Tetris for Linux – vitetris is a terminal-based Tetris clone by Victor Nilsson. Gameplay is much like the early Tetris games by Nintendo. Features include:<br />
    <br />
    Configurable keys<br />
    Highscore table<br />
    Two-player mode with garbage<br />
    Network play<br />
    Joystick (gamepad) support on Linux or with Allegro<br />
    It has been tested on Linux, NetBSD and a few other Unix-like systems, and ported to Windows and DOS. Library dependencies are minimal (only libc is required), and many features can be disabled at compile-time.<br />
    <br />
    [ via http://www.skyflash.it/2010/11/vitetris-un-clone-di-tetris-per-il-terminale ]
  • Hacker’s Wisdom

Bookmarks for 24 set 2010 through 28 set 2010

These are my links for 24 set 2010 through 28 set 2010:

  • xCAT – Extreme Cloud Administration Toolkit – xCAT offers complete and ideal management for HPC clusters, RenderFarms, Grids, WebFarms, Online Gaming Infrastructure, Clouds, Datacenters, and whatever tomorrow's buzzwords may be. It is agile, extendable, and based on years of system administration best practices and experience.
  • CoolSQL-Database-JDBC, Ibatis-Ibator(Abator) – CoolSQL is a cool tool used to view and manage database. It provides a nice user interface which makes a wonderful experience to user. CoolSQL inclineds to view and analyze data in the database, provides abundant functions including querying, modifying, exporting, supporting sqlscript and analyzing data. Convenience and maneuverability are the most advantages of CoolSQL. CoolSQL is written in java, thus it should run on any operating system that provides a Java Runtime (1.5 or above).
  • ottimizzazioni (quasi) estreme – In fondo, perché far ricomprimere ad Apache lo stesso file centomila volte al giorno, se questo non cambia praticamente mai? Non sarebbe possibile comprimerlo “a priori” e poi istruire il server a fornire la giusta versione a seconda che il browser dell’utente supporti o meno il formato gzip? A quanto pare la risposta è si
  • Trouble-Maker – Being a system administrator is full of interesting challenges. We like this. However, some of these challenges can be problematic, if they cause service interrupts on production systems. Most system administrators have run into the situation where something is wrong, the server is down, and we don't know what is going on. This project attempts to help.<br />
    <br />
    There are a lot of tools out there to make the system administrator's life easier. However, no tool is a replacement for properly understanding the system and experience in troubleshooting unknown situations. This is where Trouble-Maker comes in. Unlike other projects, we do not attempt to solve problems — we cause them.
  • iScanner – Remove website malwares, web pages viruses and malicious codes – iScanner is a free open source tool lets you detect and remove malicious codes and web page malwares from your website easily and automatically. iScanner will not only show you the infected files in your server but it's also able to clean these files by removing the malware code ONLY from the infected files.<br />
    <br />
    [ via http://www.bufferoverflow.it/ ]

Bookmarks for 15 giu 2010 through 16 giu 2010

These are my links for 15 giu 2010 through 16 giu 2010:

  • grimwepa – Project Hosting on Google Code – GRIM WEPA was written in Java and is intended for use with the Linux Operating System (specifically the Backtrack 4 distribution).<br />
    [ via http://vittoriop77.blogspot.com/2010/06/grimwepa-wifi-password-cracker.html ]
  • The HACMP cheat sheet – Do you want to set up a redundant environment for high availability but don't know how AIX® can help you? Discover High Availability Cluster Multi-Processing (HACMP) and gain a cheat sheet on how to configure and set up a simple two-node cluster.
  • http://www.openbeer.it/docs/bypassare_isaproxy.html – Poiche' l'autenticazione degli utenti in ISA avviene per mezzo del "celebre" protocollo proprietario NTLM, nessun browser che non sia IE6 su Windows puo' accedere al web attraverso il proxy (complimenti a Microsoft anche per questo… ;))<br />
    <br />
    Fortunatamente, un'anima pia che risponde al nome di Dmitry Rozmanov ha creato questo:<br />
    <br />
    http://ntlmaps.sourceforge.net/<br />
    <br />
    [nota personale: affanculo MS]