Irregular Expressions:

October, 2010


October 29, 2010  12:10 AM

facebook session hijacking



Posted by: Dan O'Connor
facebook, hijack

I love it when people do all of the work for you. http://codebutler.github.com/firesheep/ Firesheep is a FireFox plugin to hijack FB session, it looks really good. There is a slide show here http://codebutler.github.com/firesheep/tc12/ With a short demo. Here is a shot of the...

October 28, 2010  11:46 PM

Adobe 0-Day



Posted by: Dan O'Connor
0-day, adobe, exploits, nist

http://www.adobe.com/support/security/advisories/apsa10-05.html Not that this is anything special, its the remediation steps that caught my eye. Also the number of platforms affected. Just delete the lib!

Adobe Reader and Acrobat 9.x - Windows
          Deleting,...


October 27, 2010  1:53 PM

New favorite toy



Posted by: Dan O'Connor
ipad, News, tools

Dropbox is my new favorite toy, it can do automatic online backup and works on Linux, Mac, Windows and mobile devices. This includes the iPhone and iPad. This is a great tool for synchronizing files to your mobile device. http://www.dropbox.com/ One thing I wish I could do, and maybe i am...


October 26, 2010  12:32 AM

PS3 mod sticks available (good ones)



Posted by: Dan O'Connor
ps3, ps3 mod chip

This model of PS3 mod stick is highly recommended by users. http://www.dealextreme.com/details.dx/sku.48225 The first generation of the sticks was not reported to work well or as upgradable as it should have been. These are supposed to be fully upgradable, just dont update your firmware!


October 26, 2010  12:25 AM

The UK National Security Stratigy



Posted by: Dan O'Connor
News

This should be a good read, they mention cyber action above nukes as threats. http://www.cabinetoffice.gov.uk/newsroom/news_releases/2010/101018-national-security-strategy.aspx


October 25, 2010  11:44 PM

learning to use nmap



Posted by: Dan O'Connor
nmap, tools

For those that do not know this, when you are learning to use nmap and would like a target that is on the internet and wont get your door knocked on. You can use scanme.nmap.org. You can http to it and it has a banner explaining also. Enjoy.

# nmap -A -T4 scanme.nmap.org

Starting...


October 25, 2010  11:15 PM

How much is too much with facebook?



Posted by: Dan O'Connor
facebook

Interesting note, applications can permit access to your 'personal' information on facebook.  Not only your information directly, but if one of your friends has the application installed, it will have access to their friends data. Is that really something that users need? Not really. Now...


October 21, 2010  10:19 PM

Pen and Paper SQL Injection Attacks



Posted by: Dan O'Connor
News

I find this funny, but I really don't understand why you would let people do hand written votes? I mean the chads worked out well in the US. http://alicebobandmallory.com/articles/2010/09/23/did-little-bobby-tables-migrate-to-sweden


October 19, 2010  10:10 PM

Professional IDS rules



Posted by: Dan O'Connor
ids rules, snort, suricata

Exciting news, there is a new professional feed available for your Suricata and Snort install. http://www.emergingthreatspro.com/ They are planning to support more platforms beyond Snort and Suricata, with full time research and daily updates. I can't wait to see what other engines they...


October 19, 2010  9:08 PM

Simple Malware Analyzing



Posted by: Dan O'Connor
malware analyzing

http://securitytube.net/Simple-Malware-Analyzing-video.aspx Excellent video, short and to the point with a good list of tools to get you started if you are interested in this kind of thing. If you do this, it's better to do this with a physical machine and not a virtual machine.  Many...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: