Blog Posts Tagged with "Nmap"
Backtrack 5 r3 List of (Some of the) New Tools and Programs
August 27, 2012 Added by:Dan Dieterle
What are the new utilities included with Backtrack 5r3? I couldn’t find a list, so I decided to make one myself comparing BT5r2 with the latest version. This is not an exhaustive list, but hopefully it will help people see some of the very cool new tools and programs added to Backtrack...
Comments (1)
Metasploitable 2.0 Tutorial pt 3: Gaining Root from a Vulnerable Service
August 17, 2012 Added by:Dan Dieterle
There are numerous Metasploitable how-to’s out there, but a lot of them focus on the standard services. In real life, which is the service that will most likely go unpatched? The main web server or some secondary service that was installed for a project and then forgotten about? So let’s get started...
Comments (1)
Metasploitable 2.0 Tutorial: Checking for Open Ports with Nmap
August 03, 2012 Added by:Dan Dieterle
I mentioned recently that we would take a closer look at Metasploitable 2.0, the purposefully vulnerable Linux virtual machine used for learning security tactics and techniques. In this intro, we will quickly cover obtaining Metasploitable 2.0 and scanning it for open ports and services...
Comments (0)
SUDOERS Commented Code Includes Use for Evil
May 31, 2012 Added by:Rob Fuller
When I started looking into appending or inserting lines into /etc/sudoers for CCDC, I happened upon an interesting function of that file. Near the end of the file there are two lines that look commented out, but in actuality are interpreted and acted upon, an evil way to stay hidden on a 'nix box...
Comments (0)
Starting to Clean Up the Mess from PCAnywhere
February 09, 2012 Added by:Damion Waltermeyer
I realized not everyone was even sure how to go about starting to clean up from the PCAnywhere exploit. To start, I am going to share with you my method for finding machines that are potentially open to this exploit...
Comments (3)
New Meterpreter Extension Released: MSFMap Beta
January 08, 2012 Added by:Spencer McIntyre
The ICMP and ARP scanning features bring great benefits over many other common methods because MSFMap does not spawn any new processes that may reveal its presence to a watchful user. MSFMap runs entirely in memory and does not write any data to the compromised host...
Comments (0)
PenTest: Get to Know Yourself Before Others Do
December 14, 2011 Added by:Malgorzata Skora
With multi-tier network architectures, web services, custom applications, and heterogeneous server platform environments, keeping data assets secure is more difficult than ever. Coupled with this complexity is the fact that criminal organizations have organized their hacking efforts...
Comments (1)
Meterpreter Script – Deploy_nmap.rb
August 09, 2011 Added by:Kyle Young
I programmed a meterpreter script that downloads the latest stable version of nmap from www.insecure.org and then deploys nmap onto the victim’s machine. You could then use the victim’s machine to do vulnerability scanning with nmap’s scripting engine...
Comments (0)
Using ProFTPd for Core Processing Anywhere?
November 11, 2010 Added by:Brent Huston
If so, you might want to pay attention to this announcement of a critical remote vulnerability in the daemon. A patch is now available and should be applied quickly if you have core processes using this application. You can read the entire alert here...
Comments (0)
- Improving Security by Failing Faster
- BYOD: Should It Be the Wave of the Future?
- Trend Micro Discovers "SafeNet" - a New Targeted Espionage Operation Online
- Managing My Company’s Security is a Nightmare
- Bridging the Cybersecurity Divide, Why Security Innovation Must Lead the Way
- The Evolution of Industrial Control System Information Sharing
- ATM Security (And Really Learning from the Past)
- Complimentary IT Security Resources [May 13, 2013]
- Steps Toward Weaponizing the Android Platform
- Mobile Security Processes Could Be Applied to Medical Devices: Bluebox