Irregular Expressions: November, 2010 archives Page 2

Posted by:

Dan O'Connor

gmail

google

java

osx

trojan

Well I know I have liked this in the past when I saw it fire off on myself when traveling. At that time it seemed to have worked immediately. I have always wondered if it would really work. I can say for now that it does, but not as fast as I thought it would. My account was access from...

November 13, 2010 2:27 AM

PDF Challange

Posted by: Dan O'Connor

game, pdf

http://honeynet.org/challenges/2010_6_malicious_pdf Yea! Another challenge to do, I have been doing a lot of research in to exploiting with pdf's so it's nice timing for this. I hope to have some information posted soon on what I have been doing and the results of my testing. But I think...

0 Comments

RSS Feed

Email a friend

November 9, 2010 11:52 PM

The evolution of facebook click jacking

Posted by: Dan O'Connor

click jacking, clickjacking, facebook

How much further can click jacking in facebook go? Right now the main ones that I have seen are working to either gather information (or just a prof of concept) and try to use a browser vulnerability on the redirected page to infect the host. Another from the Sophos blog tries to get you on a...

0 Comments

RSS Feed

Email a friend

November 4, 2010 11:46 PM

SonicWall IPS evasion

Posted by: Dan O'Connor

dce rpc, dce rpc fragmentation, fragmentation, ips, ips evasion, metasploit, SonicWall, sonicwall ips evasion

Well this did work a few weeks ago. http://software.sonicwall.com/applications/ips/index.asp?ev=sig&sigid=5860 Until a week or so ago, someone could use an IPS evasion module in Metasploit to pass attacks through a SonicWall. This involved using DCE / RPC Fragmentation which fragments...

0 Comments

RSS Feed

Email a friend