Irregular Expressions


October 27, 2010  1:53 PM

New favorite toy



Posted by: Dan O'Connor
ipad, News, tools

Dropbox is my new favorite toy, it can do automatic online backup and works on Linux, Mac, Windows and mobile devices. This includes the iPhone and iPad.

This is a great tool for synchronizing files to your mobile device.

http://www.dropbox.com/

One thing I wish I could do, and maybe i am just missing it. Is I want to take files that I am working on, like something in Keynote and save it or move it into my dropbox.

October 26, 2010  12:32 AM

PS3 mod sticks available (good ones)



Posted by: Dan O'Connor
ps3, ps3 mod chip

This model of PS3 mod stick is highly recommended by users.

http://www.dealextreme.com/details.dx/sku.48225

The first generation of the sticks was not reported to work well or as upgradable as it should have been.

These are supposed to be fully upgradable, just dont update your firmware!


October 26, 2010  12:25 AM

The UK National Security Stratigy



Posted by: Dan O'Connor
News

This should be a good read, they mention cyber action above nukes as threats.

http://www.cabinetoffice.gov.uk/newsroom/news_releases/2010/101018-national-security-strategy.aspx


October 25, 2010  11:44 PM

learning to use nmap



Posted by: Dan O'Connor
nmap, tools

For those that do not know this, when you are learning to use nmap and would like a target that is on the internet and wont get your door knocked on.

You can use scanme.nmap.org.

You can http to it and it has a banner explaining also.

Enjoy.

# nmap -A -T4 scanme.nmap.org

Starting Nmap 5.21 ( http://nmap.org ) at 2010-10-26 04:39 UTC
Nmap scan report for scanme.nmap.org (64.13.134.52)
Host is up (0.039s latency).
Not shown: 990 filtered ports
PORT      STATE  SERVICE     VERSION
21/tcp    open   ftp?
22/tcp    open   ssh         OpenSSH 4.3 (protocol 2.0)
| ssh-hostkey: 1024 60:ac:4d:51:b1:cd:85:09:12:16:92:76:1d:5d:27:6e (DSA)
|_2048 2c:22:75:60:4b:c3:3b:18:a2:97:2c:96:7e:28:dc:dd (RSA)
25/tcp    closed smtp
53/tcp    open   domain
70/tcp    closed gopher
80/tcp    open   http        Apache httpd 2.2.3 ((CentOS))
|_html-title: Go ahead and ScanMe!
113/tcp   closed auth
554/tcp   open   rtsp?
7070/tcp  open   realserver?
31337/tcp closed Elite


October 25, 2010  11:15 PM

How much is too much with facebook?



Posted by: Dan O'Connor
facebook

Interesting note, applications can permit access to your ‘personal’ information on facebook.  Not only your information directly, but if one of your friends has the application installed, it will have access to their friends data.

Is that really something that users need?

Not really.

Now think of those scam / click jacking links on facebook, the average facebook user has 130 friends.  I just saw one of those click jacking links on my feed with 26,000 people liking it.

Think of the math, and this is only one!

26,000 x 130 = 3,380,000 profiles they now have access to!

Talk about gravy train of personal information, of course the best thing is not to put that type of stuff on to facebook.


October 21, 2010  10:19 PM

Pen and Paper SQL Injection Attacks



Posted by: Dan O'Connor
News

I find this funny, but I really don’t understand why you would let people do hand written votes?

I mean the chads worked out well in the US.

http://alicebobandmallory.com/articles/2010/09/23/did-little-bobby-tables-migrate-to-sweden


October 19, 2010  10:10 PM

Professional IDS rules



Posted by: Dan O'Connor
ids rules, snort, suricata

Exciting news, there is a new professional feed available for your Suricata and Snort install.

http://www.emergingthreatspro.com/

They are planning to support more platforms beyond Snort and Suricata, with full time research and daily updates.

I can’t wait to see what other engines they are going to be supporting, I always like the idea of having another feed in the environment. Nothing is %100 and its always best to spread out over as much as you can.

Now you can have a the new Suricata engine running the emerging threats rule set and your all set for taking on the latest and greatest coming out of the Open Information Security Foundation.

Enjoy!


October 19, 2010  9:08 PM

Simple Malware Analyzing



Posted by: Dan O'Connor
malware analyzing

http://securitytube.net/Simple-Malware-Analyzing-video.aspx

Excellent video, short and to the point with a good list of tools to get you started if you are interested in this kind of thing.

If you do this, it’s better to do this with a physical machine and not a virtual machine.  Many malware will detect if it’s in a VM or not and change what it’s doing.  In the past I have used BartPE and ImageXML to take and restore my images, ImageXML can take a image of a running machin using VSS so that can save you one reboot.


October 18, 2010  7:08 PM

Fractal mathematics



Posted by: Dan O'Connor
News

Benoit Mandelbrot has passed away, in-case you don’t know that is, Fractal Mathematics was his baby. This type of mathematics has been used for the development of computer graphics, compression algorithms and even for studying the financial markets. If you don’t know anything about this field of mathematics you need to go read about it. Things like self similarity are fascinating.

This is how computers can generate things like mountains and trees, you can see this your self on any tree if you look for it. Also with other organic and non organic things, clouds are a really neat example.

Oh yea it’s good for making really cool t-shirts. :)

http://www.google.ca/images?hl=en&client=safari&q=fractal+shirt&um=1&ie=UTF-8&source=univ&ei=ouC8TLrLB4PtObKNnfIM&sa=X&oi=image_result_group&ct=title&resnum=2&ved=0CCkQsAQwAQ


October 13, 2010  7:10 PM

One more facebook thing



Posted by: Dan O'Connor
facebook

I have talked about creating fake facebook profiles to gather information from people. But I saw a couple things in the last two weeks that I thought was neat.

http://www.networkworld.com/news/2010/091910-interpol-chief-has-facebook-identity.html

That is too funny, it sounds like who ever did it was able to get access to information that they should not have. Again just like I mentioned before it was someone who was not on facebook that was used as the target.

The other thing I saw was a special on 20/20 on the movie Catfish,I don’t want to spoil the movie but they take it to another level. The 20/20 bit is worth watching alone if you don’t want to go see a movie.


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: