One liner about Kautilya - Kautilya is a toolkit which makes it easy to use USB Human Interface Device (like Teensy++), in breaking into a system. Now let’s understand what does that mean.
First let’s understand Teensy++ (I will use Teensy for Teensy++ from now on). It is a USB HID which could be used as a programmable keyboard, mouse, joystick and serial monitor. What could go wrong? Imagine a programmable keyboard, which when connected to a system types out commands pre-programmed in it. It types faster than you and makes no mistakes. It can type commands and scripts and could use an operating system against itself, that too in few seconds. If you can program the device properly keeping in mind most of the possibilities and quirks it could be a really nice pwnage device.
Introduction
One liner about Kautilya - Kautilya is a toolkit which makes it easy to use USB Human Interface Device (like Teensy++), in breaking into a system. Now let’s understand what does that mean.
Sysinternals utilities are one of the best friends of administrator.Sysinternals was original created back in 1996 by Mark Russinovich and Bryce Cogswell and was bought by Microsoft in 2006. Since then the company has continued to release new tools and improve the existing ones.
The Sysinternals suite consists of the following different categories:
File and Disk Utilities
Networking Utilities
Process Utilities
Security Utilities
System Information Utilities
Miscellaneous Utilities
Everyone wants to be Millionaire and this article is just going to tell you how you can become one. The Web 2.0 has opened lots of opportunities and possibilities along with lots of security issues. One of the popular technology is “Flash” along with its never ending security issues. People laugh when they hear the terms “Flash” and “Security” together. Industry experts say that Flash is actually moving the ball towards ease of use and functionality and thus compromises on security.
Cain and Abel is windows based password recovery tool available as a freeware and maintained by Massimiliano Montoro. It supports wide features to recover passwords varying from Local Area Network to various routing protocols as well as provides intelligent capability to recover cached passwords and encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks.
Sql injection is one of the most common vulnerability found in web applications today. Exploiting SQL Injection through manual approach is somewhat tedious. Using flags like ―or 1=1--‖ , ―and 1>2‖ we can find out if vulnerability is present but exploiting the vulnerability needs altogether different approach. Tools like Sqlmap, Havij and Pangolin are helpful in exploiting sql injection.
In the past few years, Web applica-tion security has really got some good atten-tion. Because of this attention, we have so many proxy tools (Burp/Fiddler/Paros) rea-dily available, are making our lives easy at each step of penetration testing.
How much computing power do you have?
If your answer is 'my personal laptop/dekstop', you don't yet realise your strength.
How many friends do you have on Facebook? friends of friends? Add up all of their laptops/desktops, that's how much computing power you have at your disposal.
McAfee‘s first quarter threat report stated that, with six million unique samples of recorded malware, Q1 2011 was the most active first quarter in malware history. McAfee stated that Android devices are becoming malware havens with Android being the second most popular environment for mobile malware behind Symbian in the first quarter.
Reverse engineering is the process of analyzing a subject system to identify the system's components and their relationships, and to create representations of the system in another form or at a higher level of abstraction. The process of reverse engineering, which is part of malware analysis, is accomplished using specific tools that are categorized as hex editors, disassemblers/debuggers, decompiles and monitoring tools.
If you try the command “traceroute” (under windows, called tracert) you will see a lots of network elements between you and the target host. An interception could happen in every location. If you are using some attack tool like airsnort, ettercap, or simple analysis tool with promisc mode support (wireshark, dsniff) you are sniffing in your LAN. Your LAN, is either the first hop for the outgoing session and the last hop for the incoming sessions.
The image showed is useful because it shows how many hops will separate two hosts in Internet. Every hop will be monitored, every nation will have different law, and if you get passively sniffed will never be notified to you.
Now! You have one more reasons to add Metasploit in your Pentest Toolkit. You just can?t ignore Metasploit anymore just because it does not give you user interface like commercial frameworks available out there like Core Impact and Immunity Canvas.
This section in itself may look incomplete, to have full flavor read Tech Gyan.There are many Wireless Testing tools in the wild for the different OS flavors right from Windows, Unix to Smart Phone OS. Unix based tools remain the most popular among them.
BeEF is a Browser Exploitation Framework. It enables an attacker/pen tester to assess the security of the browser and lets him exploit it if found vulnerable.
Firefox became a very useful tool to carry out analysis and identification of vulnerabilities.
Its capacity to personalize it, to install and to remove things make it more flexible, dynamic or easy to adapting it to a specific task.
When I say 'Network Reconnaissance' then most of you would immediately think Nmap! Some of the more hardcore geeks would also be thinking about Scapy. Both are awesome tools and are probably the best of their class but what happens when you want to do a quick network recon...
Mantra is a collection of hacking tools, add-ons, and scripts based on Firefox.
Right from the beginning, one Firefox and Google Chrome of the attractive features which made both of them outstanding was their expandability by means of installing useful extensions or add-ons. Programmers and developers started coding add-ons which helped to make the online web more easy and functional.
Ourmon is a *NIX based open source tool originally designed for network packet sniffing. It works on the concept of promiscuous mode of Ethernet packet detection. It also uses port mirroring technique through a Layer 2 (Ethernet) switch. It works best in FreeBSD Operating System.
Our phones have all sorts of personal data – messages, photos, etc. At some point these apps access your data. And as we all know data=money, so let’s have a look at some apps that will help you protect your data and privacy.
As it always happens, a new thing emerges by introducing new concepts for users. Similarly Mozilla Firefox introduced new add-on to the internet world -Greasemonkey. You might be thinking what this monkey does for us? Answer is “Greasemonkey allows you to customize the way a webpage is displayed using small bits of JavaScript”. Yes! This is a monkey who does this magic for us.
To remove Fake Antivirus and similar malwares you can use Malwarebytes. It is easy to use and effective. For removing Fake Antivirus it is not necessary to buy the full version, the free version is sufficient.
The most interesting work for any security professional is to analyze the packet captures. Our friendly .pcap files. PCAP files can be generated from your favorite tools like TCPDump or wireshark.
Let’s see two ways to understand and do deep packet analysis on the cloud itself..
The Microsoft Baseline Security Analyzer provides a streamlined method to identify missing security updates and common security misconfigurations. MBSA 2.1.1 is a minor upgrade to add support for Windows 7 and Windows Server 2008 R2.
Honeyd is a low interaction Honeypot client that creates virtual hosts (Honeypots) in a network. These Honeypots can be configured to act like a real operating system, in fact there are approximately 1000 personalities of OS’s that we can choose. At the same time we can configure those operating systems to activate certain services like FTP, HTTP, Telnet, etc
Imagine this scenario; you are sitting at the airport waiting for your boarding call. You turn on your laptop to kill time, scan for free Wi-Fi networks, connect to one of them and request for ‘google.com’.
How much do you risk by doing this? ‘Not much’ you would say, right?
