Friday, 21 June 2013
About TrueCrypt
I've made up an experimental video showing how to install trueCrypt on uBuntu 13 .. Please check it out..
Friday, 7 June 2013
POSSIBLE WordPress Under Attack again !!!
ALERT - ALERT - WordPress Based website under attack Again !!!
Potential WordPress problem (Brute Force attack against WordPress websites)
We have monitored on-going brute-force attack against WordPress websites, in order to keep your WordPress website secure, we recommend you do the following:
1. Please change your password for WordPress admin area.
2. Go to your cPanel > File Manager and find your wp-login.php file.
Temporary rename wp-login.php file (for example into wp-login1.php).
You need to change a line in your wp-login.php to reflect the change to the file name. Its line 671 where the form action refers to wp-login.php
-------------------------Update---------------------------
wp-login.php is temporary disabled because of huge brute force attack. Please rename wp-login.php to something else.
Potential WordPress problem (Brute Force attack against WordPress websites)
We have monitored on-going brute-force attack against WordPress websites, in order to keep your WordPress website secure, we recommend you do the following:
1. Please change your password for WordPress admin area.
2. Go to your cPanel > File Manager and find your wp-login.php file.
Temporary rename wp-login.php file (for example into wp-login1.php).
You need to change a line in your wp-login.php to reflect the change to the file name. Its line 671 where the form action refers to wp-login.php
-------------------------Update---------------------------
wp-login.php is temporary disabled because of huge brute force attack. Please rename wp-login.php to something else.
Thursday, 23 May 2013
Tuesday, 21 May 2013
How to add Swap Memory into uBuntu ..
Linux RAM is composed of chunks of memory called pages. To free up pages of RAM, a “linux swap” can occur and a page of memory is copied from the RAM to preconfigured space on the hard disk. Linux swaps allow a system to harness more memory than was originally physically available.
However, swapping does have disadvantages. Because hard disks have a much slower memory than RAM, virtual private server performance may slow down considerably. Additionally, swap thrashing can begin to take place if the system gets swamped from too many files being swapped in and out.
Check for Swap Space
Before we proceed to set up a swap file, we need to check if any swap files have been enabled on the VPS by looking at the summary of swap usage.
swapon -s
An empty list will confirm that you have no swap files enabled:
Filename Type Size Used Priority
Check the File System
After we know that we do not have a swap file enabled on the virtual server, we can check how much space we have on the server with the
df
command. The swap file will take 512MB— since we are only using up about 8% of the /dev/sda, we can proceed.df Filesystem 1K-blocks Used Available Use% Mounted on /dev/sda 20907056 1437188 18421292 8% / udev 121588 4 121584 1% /dev tmpfs 49752 208 49544 1% /run none 5120 0 5120 0% /run/lock none 124372 0 124372 0% /run/shm
Create and Enable the Swap File
Now it’s time to create the swap file itself using the dd command :
sudo dd if=/dev/zero of=/swapfile bs=1024 count=512k
“of=/swapfile” designates the file’s name. In this case the name is swapfile.
Subsequently we are going to prepare the swap file by creating a linux swap area:
sudo mkswap /swapfile
The results display:
Setting up swapspace version 1, size = 262140 KiB no label, UUID=103c4545-5fc5-47f3-a8b3-dfbdb64fd7eb
Finish up by activating the swap file:
sudo swapon /swapfile
You will then be able to see the new swap file when you view the swap summary.
swapon -s Filename Type Size Used Priority /swapfile file 262140 0 -1
This file will last on the virtual private server until the machine reboots. You can ensure that the swap is permanent by adding it to the fstab file.
Open up the file:
sudo nano /etc/fstab
Paste in the following line:
/swapfile none swap sw 0 0
To prevent the file from being world-readable, you should set up the correct permissions on the swap file:
sudo chown root:root /swapfile sudo chmod 0600 /swapfile
How to Code in Python 3 metaprogramming!
Some of the most significant changes in Python 3 are related to metaprogramming. In this tutorial, I'll cover decorators, class decorators, descriptors, and metaclasses. However, the focus will be on idioms and examples that are only....
Friday, 17 May 2013
Raspberry Pi Wireless Attack Toolkit
Raspberry Pi Wireless Attack Toolkit
A collection of pre-configured or automatically-configured tools that automate and ease the process of creating robust Man-in-the-middle attacks. The toolkit allows your to easily select between several attack modes and is specifically designed to be easily extendable with custom payloads, tools, and attacks.
The cornerstone of this project is the ability to inject Browser Exploitation Framework Hooks into a web browser without any warnings, alarms, or alerts to the user.
The cornerstone of this project is the ability to inject Browser Exploitation Framework Hooks into a web browser without any warnings, alarms, or alerts to the user.
We accomplish this objective mainly through wireless attacks, but also have a limpet mine mode with ettercap and a few other tricks.
Limpet Mine Mode:
Poisons a network with ettercap + runs MITM Attacks
Poisons a network with ettercap + runs MITM Attacks
Passive Wireless Mode:
Free Wifi anyone?
Free Wifi anyone?
Agressive Wireless Mode:
Become every access point with hostapd-karma
Become every access point with hostapd-karma
Once the RaspberryPi becomes the gateway, it fires up a MITM DNS server, metasploit, BEEF, and an injection proxy server for HTTP which injects the BEEF hook. From there, you log into the beef console and start popping shell.
It's in Alpha, so complain about things you want to see in it now.
Frequently Asked Questions:
How do I install this?
How do I Put Cellular Internet onto the Pi
What Hardware Should I Get?
What is Included in The Toolkit?
Why Doesn't Airdrop Work?
You Just Glued Software Together, This Isn't Original
How do I install this?
How do I Put Cellular Internet onto the Pi
What Hardware Should I Get?
What is Included in The Toolkit?
Why Doesn't Airdrop Work?
You Just Glued Software Together, This Isn't Original
Project Members:
- Bryan "Crypt0s" Halfpap (admin)
Download the Raspeberry Pi ISO here
Thursday, 16 May 2013
Update script working with Backtrack 5
I could not find an update script working with Backtrack 5 so I decided to make a quick one.
Updated version: 2.0
Changelog Version 2.0
Screenshot:
If you know more tools I could add to the script in order to update them please feel free to post them here.
Also if you find any bugs or have any feedback feel free to contact me in this thread. I will update the thread with each update to the script.
NOTE: Please make sure you understand what the script does before running it.
Enjoy!
Updated version: 2.0
Changelog Version 2.0
Code:
* Reviewed all tools. * Compatible with Backtrack 5 R2/R3. * Removed the menu.
Code:
git clone git://github.com/sickn3ss/backtrack_update.git cd backtrack_update chmod a+x backtrack5_update.py ./backtrack5_update.py
If you know more tools I could add to the script in order to update them please feel free to post them here.
Also if you find any bugs or have any feedback feel free to contact me in this thread. I will update the thread with each update to the script.
NOTE: Please make sure you understand what the script does before running it.
Enjoy!
Labels:
backtrack,
Command Line,
Computing,
Debug,
desktop,
File systems,
internet,
linux,
network,
restore,
solution,
to recover,
Tookit,
ubuntu,
Unix,
Workstation
Location:
Guerrero, Mexico
Subscribe to:
Posts (Atom)
How to check for open ports on Linux
Checking for open ports is among the first steps to secure your device. Listening services may be the entrance for attackers who may exploit...
-
How To Hide and unhide the hard disk Volumes using CMD Commands : First check how many drives are there in my computer and then s...
-
Simplify Your Ansible Playbook Creation with ChatGPT Are you tired of writing complex Ansible playbooks manually? Want to streamline your ...
-
New GNS3 Setup With Lower CPU Load and Lower Memory Consumption ..Try It !!!