Irregular Expressions:

November, 2011


November 19, 2011  12:03 AM

Industrial data theft



Posted by: Dan O'Connor

I am not sure if this is getting worse, or if it is just being detected more. http://www.washingtonpost.com/world/europe/security-watchdog-norwegian-energy-defense-industries-hit-by-extensive-data-theft-attack/2011/11/17/gIQAzbMKUN_story.html This has to be both, I know this will keep...

November 18, 2011  11:48 PM

Web Vulnerability Assesments



Posted by: Dan O'Connor

http://www.acunetix.com/vulnerability-scanner/vulnerabilityscanner8.exe I have used this tool a few times and I really liked it.  Comparing it to some of the others I have used, it's got a good interface just like the big boys, but not the big price tag. It can be used by even people that...


November 18, 2011  11:42 PM

TCP Session Hijacking



Posted by: Dan O'Connor
initial sequence number, session hijacking, tcp, tcp session hijacking, transmission control protocol

Part of taking over a TCP session is knowing how it works, that's why I was previously talking about the TCP handshake. To take over a session there is a few general steps that need to be done. 1. You need to know the ISN, there is a few ways to do this.

  • In between, the...


November 18, 2011  10:03 PM

TCP Threeway Handshake



Posted by: Dan O'Connor
initial sequence number, tcp, tcp isn, tcp three way handshake, transmission control protocol

I have been doing some research for a project and I wanted to share some things.  During the three way handshake each host sets it's own ISN.

  • Host 1 sends a SYN packet to Host 2 with A as the ISN (Initial Sequence Number), this number should be non-predictable.
  • Host 2...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: