Pals,
If you are capturing some packets across your network and if you want to find a specific pattern from the huge list of packets then you can make use of the the available wireshark filter “tcp matches”. It can save a bunch of your time as it will directly take you to your desired place within a short period of time. Below is an example of how you can find “.exe\x20″ from the packets lists
Read more…
Folks,
As you must be knowing that OpenVAS Community has released a new version for OpenVAS 3.x and they have come up with some many additional features this time i.e. GSA, openvas-administrator and openvas-manager. They are some of the useful features that you should give it a try! And at the same time we can also observe that this time their packages are kinda different as well. I will be telling you on how you can install OpenVAS in Ubuntu 9.10 as I was very happy that when I got OpenVAS installed in Ubuntu latest build! Read more…
Dear Folks,
I have seen in some places that some Fedora Core users are facing lots of installation issues while installing Wireshark Tool. I will tell you an easy method on how you can install Wireshark without messing up with anything.
As we know recently, there had been a hype about SMB v2 protocol vulnerability which was causing BSOD in the vulnerable system. This vulnerability exists in srv2.sys which was not able to handle a higher/lower PID value in the SMB_Negotiate protocol field (2 Bytes). The vulnerability can be successfully exploited by the poc provided by Laurent Gaffié (Found this bug in 3 seconds with his simple hand made fuzzer). And after successful exploitation it will cause a remote BSOD in the affected SMB v2 enabled Operating System thus causing a hard reboot in the machine.
Read more…
Finally Google made it!
Even though in the web there are some un-official sources for Google Chrome theme customizations, still they were not compatible (sometimes) in everyone’s system. However, finally Google released a stable version where they are supporting customization of themes and providing a wide range of good themes in their tools page. Almost all themes are looking quite sleek but from all of them Greyscale theme looks quite alluring.
Buddies,
Today I will write a small analysis paper on milw0rm exploit#9319. Due to security reasons I can’t share all the in-depth technical information about this vulnerability but I will be giving an overall idea on how the exploit affects the remote application and how the attacker is taking advantage of this vulnerability through the shared milw0rm code. And at last we will be discussing on how to write a signature to detect this exploitation attempt over the network packets transmission.
What is JS Obfuscation?
JS Obfuscation is a process of scrambling your JavaScrips Codes in order to prevent the code from being analyzed. However it makes the code stealing job difficult as it converts the codes in such a format that it will be difficult to understand the functionality of code and how it works.
How to Obfuscate your JavaScript codes?
Although you can make your own JS Obfuscators, well there are some vendors which makes your life easier by providing readymade tools for solving your obfuscation purposes. Some of them are:
Read more…