WLAN Hacking – WPA-PSK handshake. The deauth atack with Aireplay-ng -0 wants to disconect the client from Access Point and after reconnecting get by tapping the handshake. But the process fails. Now what? Be aware that there is another (maybe better and easier) way how to get the data for crack WPA. Wireshark is a strong application and the technology that will be described can be used in other ways like for universal sniffing of the net traffic.
Obsah kategorie pro 'Security'
Remote-Exploit released BackTrack 3 Final version. Possible downloads are CD image, USB image and VMware image. Links (+ MD5 and SHA1) to download all the version are: CD Image (bt3-final.iso), size 695 MB (MD5: f79cbfbc d25147df 32f5f6df a287c2d9, SHA1: 471f0e41 93136651 7ea8bffe 910fb09a 815e42c7), USB Version (bt3final_usb.iso), size 784 MB (MD5: 5d27c768 e9c2fef6 1bbc208c 78dadf22, SHA1: 3aceedea 0e8e70ff f2e7f7a7 f3039704 014e980f)
Web pages are protecting it selfs from spammers by system called captcha (Completely Automated Public Turing test to tell Computers and Humans Apart). It is a test that decide if page is viewed by human or bot. Today it’s notorously known. Recongizing symbols from image, counting numbers or decide which picture doesn’t match with others. Captcha shouldn’t require any knowledge from user because that would only decide how much is user educated but doesn’t determine if is huma or not.
After one year of develop the new version of Metasploit Framework released for download. The 3.1 version include a graphical user interface, 450 modules and more than 200 remote exploits. Metasploit runs on Linux, Windows, Mac OS X and BSD. The Windows version of Metasploit includes GUI, console, web interface access, dependencies and networking tools. You can download Metasploit 3.1 version at end of this text. Changelog. Officially using Cygwin for Windows support, Additional stager used for large Windows stages
Cross-Site Scripting is an extensive topic that has been described in the past by several people. Although there is a but. I open a page and start to read a cool text, lots of examples and nice colours all around. But after one hour of reading you are still at the begining. So why after reading AirDump tutorial you should manage XSS in a while? This will be answered in this text called Hacking web applications – XSS. First of all most of the tutorials that can be found on the web are focused on technical and theoretical aspects.
Remote-Exploit released BackTrack 3 pre-release of the final version. In the short the Final version will be released. Link for download is available on the remote-exploit’s freenode irc channel. After some testinig and fine-tuning, the Final version will be released. It is exepected in a week (around June 20th). It’s interesting that the pre-release does not have a bugtracker, but there probably is a reason for that decision.
Sensor and detection technology, including, principles of operation and signal analysis, Alarm devices, searching aids and systems, Monitoring, command, control and communication systems, Computer systems security and privacy, Information security, Communication security and privacy, including modulation techniques, spectrum management and encryption, Biometric identification systems, utilizing voice, handwriting, fingerprints, hand geometry, facial recognition, Entry control systems, access delay technology and surveillance and more on the
Today in the Wardman Park Marriott Hotel (Washington, USA) starts ShmCoon 2008. Lease from 15 to 17. february 2008. Program panels are 15.02 Intercepting Mobile Phone/GSM Traffic, Forensic Image Analysis to Recover, Passwords, Baked not Fried: Performing an Unauthorized Phishing Awareness Exercise, Web Portals: Gateway to Information or a Hole in our Perimeter Defenses?, Hacking the Samurai Spirit, New Countermeasures to the Bump Key Attack
