regsvr.exe and hoax attack-week :-)

Published By On Monday, May 19th 2008. Under Attacks/Exploits, Life in general    
regsvr.exe and hoax attack-week :-)
  Well I do have corporate solution for AntiVirus on my work laptop, however I got hit by a worm (regsvr.exe - typical Google lookup) while my AntiVirus software sat happily there! Eventually I got it on my cell phone as well :-( Removing that was no-brainer anyway's; but my ... Continue Reading

0DAY:ADOBE PDF

Published By On Monday, September 24th 2007. Under Attacks/Exploits, Tech in general    
0DAY:ADOBE PDF
This stuff gets better and better; Adobe’s representatives can contact me from the usual place. My advise for you is not to open any PDF files (locally or remotely). Other PDF viewers might be vulnerable too. The issues was verified on Windows XP SP2 with the latest Adobe ... Continue Reading

Split-Tunneling Good or Bad ?

Published By On Thursday, July 19th 2007. Under Access-Control, Attacks/Exploits, Juniper, Tech in general, VPN    
Split-Tunneling Good or Bad ?
In the VPN configuration this seems to be a host discussion; so here we go There are 2 options of internet traffic for the VPN users; Split-Tunneling enabled :: This means all the corporate traffic goes through the vpn tunnel and all the internet (local browsing etc) goes through ... Continue Reading

TCP drop vs reset vs reject

Published By On Saturday, June 16th 2007. Under Attacks/Exploits, Tech in general    
TCP drop vs reset vs reject
Since the last post was on unusual tcp connection tear down, it is also important to understand different actions a typical firewalls can take; Drop -> The packet is dropped and never informed about the sender. Reset -> A RST is sent to the sender to let him know ... Continue Reading

MAC Address Changer

Published By On Wednesday, May 30th 2007. Under Attacks/Exploits, Tech in general, Tools For Life    
MAC Address Changer
Technitium MAC Address Changer allows you to change Media Access Control (MAC) Address of your Network Interface Card (NIC) irrespective to your NIC manufacturer or its driver  A tool that is released for changing the mac address of Network Interface Cards which would facilitate both the good guys and the bad ... Continue Reading

Feel safe on a switched lan ?

Published By On Thursday, May 17th 2007. Under Attacks/Exploits    
Feel safe on a switched lan ?
So the common belief is that it is very safe when a network is on a *switched* lan compared to a hub. Story? In a hub network, traffic is seen by everybody connected so sniffing would be very easy and with the introduction of switches, you see only traffic that ... Continue Reading

OS Obfuscation

Published By On Saturday, May 12th 2007. Under Attacks/Exploits, Tech in general    
OS Obfuscation
What is so great about it? Well, heard about OS fingerprinting / "Tcp/IP" Stack fingerprinting. Those who practice security couldn't imagine a life without nmap ?, yeah that line is familiar... So many of these tools do this by the changes in tcp/ip stacks. The RFC for tcp/ip defines value ... Continue Reading

Tini – Backdoor

Published By On Sunday, March 25th 2007. Under Attacks/Exploits    
Tini – Backdoor
If you understand the attacks, then you would also understand the difficulty of placing a backdoor on some machine/server. Lets meet 'tini' ; as the name is, it is tiny (only 3kb in size) and can run without dragging attention. So here is the behavior, Tini is an executable which listens on ... Continue Reading
Page 2 of 2:« 1 2