You know it's bad when they do this. Every other article I have seen says it's a DOS but the bulletin here says that it's escalation of privilege. Bad. http://technet.microsoft.com/en-us/security/bulletin/ms11-100 Test and deploy.
0 Comments
RSS Feed
Email a friend
I am currently undecided on the next course I am going to be taking. I would really like to take the Reverse-Engineering Malware: Malware Analysis Tools and Techniques FOR610 this is an area I would like to improve on. The other choice is the Computer Forensic Investigations - Windows In-Depth...
0 Comments
RSS Feed
Email a friend
I have yet to encounter these domains, but it's still a good idea to block them before they are a problem. http://isc.sans.edu/diary.html?storyid=12280
0 Comments
RSS Feed
Email a friend
I have been on vacation for a bit, I just noticed this. http://isc.sans.org/diary/Wi-Fi+Protected+Setup+WPS+PIN+Brute+Force+Vulnerability/12292 The linked white paper is well done. I have never enabled this service on the home setups I have done, but if you know someone that does time to...
0 Comments
RSS Feed
Email a friend
Cobit examI passed my Cobit exam! I found it ok, it was not too difficult but they do like to play with words.
0 Comments
RSS Feed
Email a friend
can you crack it solution, canyoucrackit solutionThere is a few things we are going to need to get this to work;
0 Comments
RSS Feed
Email a friend
can you crack it, canyoucrackit solutionHere is the contents of the JS file. The file explains exactly what we need to do. Lets dig out some perl and see if we can write something to run this.
//-------------------------------------------------------------------------------------------------- // // stage 2 of 3 // //...
0 Comments
RSS Feed
Email a friend
can you crack it solution, canyoucrackit solutionThis would be the point where I would go get a cohort to do the debugging of the application for me, but since I don't have one and none of the tools I have been trying for the last couple days seem to be working. We are going to link to one that is working. http://pastebin.com/bsHXs4PG Dr....
0 Comments
RSS Feed
Email a friend
can you crack it solution, canyoucrackit solutionWe now have our unicode.
QkJCQjIAAACR2PFtcCA6q2eaC8SR+8dmD/zNzLQC+td3tFQ4qx8O447TDeuZw5P+0SsbEcYR.78jKLw==Here is something that should decode it for us.
#!/usr/bin/perl use Compress::Zlib; use MIME::Base64; $new =...
0 Comments
RSS Feed
Email a friend
can you crack it, can you crack it solution, canyoucrackit solutionI tried running the file.exe created, it does not appear to do anything. It's important but I don't know what to do with it just yet. The thing I find odd was the hex was given in a png, that's worth checking out. I have both sets of files on my SIFT Workstation. I will start with my...
0 Comments
RSS Feed
Email a friend
