Comment Re:Conveniently forgetting the details - You lie!! (Score 1) 929
Comment Some mistakes in the articles and comments (Score 1) 289
Also, CoreImpact had first published an remote exploit PoC to their members at the 17th of Septemeber. Which means that an exploit had been found to subscribers at 17/9!!.
So this article is basically wrong. Anyways, more researchers still tried to create public exploit for it such as http://blog.metasploit.com/2009/10/smb2-351-packets-from-trampoline.html which describes what his way of exploiting this using 351 packets to achieve jump to his code (remote code execution).
So... This article has more than a few points which are not accurate including the "The first windows 7 zero day exploit" title.
Cheers.
Zuk
Comment Interesting use of ClearView in hacker PoV (Score 1) 234
Comment Short information about current Wireless Hacking (Score 5, Informative) 166
1) Listen to packets going through (monitor mode)
2) Force people to send more packets using arp-replay packets or specially crafted packets
3) Capture about 25000 packets and make an crypto analysis [the more packets you capture, more chance you'll be able to decrypt the password] about this packets to get password
In WPA1/2 it's quite different
1) Listen to packets going through in monitor mode
2) Wait un-till you capture a connection-login handshake (it's 2 packets both ways = 4 packets)
3) After you capture packets in 2, you need to do Dictionary attack on the captured session login. If that word isn't in your dictionary, you're screwed.
That's why a current wireless hacking methods against a strong not-in-dictionary WPA(PSK) password will be quite hard (if possible) to hack these days.
Just so we all be cleared.
Comment Re:Typical Bullshit- Linux Kernel Runtime Patching (Score 1) 341
I've yet to see a good Linux/Unix distribution that offers centralized patch management in an easily administered manner to compare with WSUS.
Kernel issues still require a reboot.
Kernel issues do not always require a reboot.
Most of the time you can have a run-time patching within a separate LKM (Loadable Kernel Module).
Check this out for some more info about run-time patching
Comment Re:Hmmm (Score 1) 621
is there anything that you can name that can do more than Linux?
Easy, Chuck Norris!
Comment Where can I see the contest's questions? (Score 1) 141
Thanks!
Comment Re:local... remote... -- WRONG (Score 1) 595
It would be quite an accomplishment to introduce a remote exploit directly in the kernel.
Here you go : that's not that hard to achieve (well, it is, but that's not impossible) : http://dvlabs.tippingpoint.com/advisory/TPTI-06-02 (Driver BO will run on kernel-mode obviously), so remote BO's on kernel side are not that never heard of.
Comment weird that they both came up with this - same time (Score 1) 280
"Two researchers, Dan Kaminsky and Moxie Marlinspike, came up with exact same way to fake being a popular website with authentication from a certificate authority."
Here's what happened : Moxie Marlinspike found this and sent his boss a message through his website, but the problem was, Mr. Kaminsky had tried his DNS poisoning on that website and all the traffic went through Kaminsky. Kaminsky afterward declared that he had found a way to do it
Of-course I'm j/k but Dan is a genius and can do it
Comment Flash Player Integer Overflow Remote CodeExecution (Score 1) 58
Comment Re:"Technology over politics"... (Score 1) 634
I still use linux though, but [sarcasem ]"the enemy"[/sarcasem] is actually not that evil, I guess (without thinking about ie/or any other monopoly behavior).
Comment Python (Score 1) 634
So, learning python can be a start to learn C++/C#/JAVA and help understand it much more. Also, It's quite easy language, you can do pretty much whatever you want, it will help you understand sockets, file parsing, oop, variables a bit less though (it will make a new programmer a bit confuse) but overall it's a great language and I couldn't be thinking how my life would be without python
Comment Bars that require 21+ is ridicules (Score 1) 198
Journal Journal: Facebook automation script?
Some of them, as you can guess are not in some weird social security sites without any security or randomization stuff, so I had to change my ways in order to do automatic stuff on lets say, facebook.com;
When I've start