I'm still reading Lena's reverse engineering tutorial, currently on tutorial 20 / 40.
This is fun.

Not really a pro haxor kinda guy but this thread looks interesting

>>55505346
Link?

>>55507059
Not anon, but here you go:

https://tuts4you.com/download.php?list.17

>>55507107
Thanks senpai

Looking into Android Spyware. Currently running a cracked Version of Droidjack on some of my friends phones. Sadly it is very unstable and uses quite alot of battery power. Any alternatives ? Also is there a way to generate the whatsapp keyfile directly on the device if it is rooted ?

God bless you whoever keeps making this thread. Finally something new that isn't videocard drama.

Is it possible to completely fake a TCP connection using a fake IP address? For example, for making an HTTP POST request using a random source IP address provided you don't actually need the server's response

>>55508369
Yes it is to some degree, provided the firewall doesn't filter it.

Spent a long studying/doing SQL injection, might write a shitty little intro if u guys want

>>55508582
I would like to hear about it.

>>55508369
Not really. TCP is a connection based protocol so you need to establish a handshake when you first connect with a server. If you don't you cant send any data. so if you try to handshake with a fake ip you wont be able to send anything since the handshake contains a value that you must send back if you want a connection to be made

>>55508369
In principle yes, although I'm not sure if upstream would route your packets at all. You could test it.

Note that you're not going to be able to establish a TCP connection or transmit acknowledgements etc. without actually receiving return packets, although if you know in advance how the server is going to reply you could get around that.

(I'm not a TCP expert - does the TCP protocol initiate itself with unpredictable sequence numbers, or do they start deterministically?)

>>55508582
Nothing you cant find online.
Besides SQL injection isin't very complex

>>55508692
Time to go to school skid.. This is a netsec thread. There's 2^32 sequence numbers possible in a TCP handshake, if you guess it, it will be possible to compete a TCP handshake from a spoofed IP address.

>>55508739
Unpredictable, but within a finate and guessable range. Read the whitepaper "Slipping in the Window" for some fun with TCP RST - tl;dr blindly close arbitrary connections over the internet

>>55504034
Hai how do I hak sister's noods XD :DDddddDd :^)

>>55508739
Initial sequence numbers are random

>>55508739
>>55508767
I looked it up, seems like Linux picks truly random numbers, and Windows uses a sequence number that increases over time (so you could perform a timing attack by establishing a connection of your own to probe the sequence numbers).

Not sure if this is still true though

>>55508752
Yeah and how will you know that you have guessed it since you don't receive a response since the IP is spoofed. You cant send data in the handshake packet
Tripfags i swear

>>55508838
rtfq:

> For example, for making an HTTP POST request using a random source IP address provided you don't actually need the server's response

> provided you don't actually need the server's response

> you don't actually need the server's response

You don't need to know. Think of nginx configured to only accept calls to an API if its coming from a certain source IP. Bypassed and API call successfully made.

>>55508838
And - not all TCP structures are data

>>55508881
Alright fine, but still guessing ISN and then sending the data packed is quite unfeasible

>>55509000
If your API call is something you need to perform once, and you have a few days worth of time, it doesn't seem very unrealistic.

I can finally post.

>>55509000
Agree, the chances for that are one in 18446744073709551616, so unlikely.

File: 9c0[1].jpg (43 KB, 600x480) Image search: [Google]

43 KB, 600x480

>in the middle of social engineering from FB account of girl from my college I got into via SQLI
>suddenly bro rushes in the room
>yo, i need use your computer asap
>panic kicks in
>instead of closing it, i just minimalised window
>y-yeah s-sure go
>stand behind his back and looking on the screen the whole time he is reading his email and fb, anxious that he will switch the windows (he knows that girl too)
>mfw he finally leaves

>>55509000
>>55509130
On systems with fail2ban, could you get an IP address of your choice temp-banned by flooding forged SYN packets, or perhaps SYN packets + SYN-ACK guesses?

Should I be giving my range extenders different SSIDs than my router? I've got two range extenders that have the same SSID as my router right now and some devices seem to be having issues switching APs when they're out of range of the one they were previously connected to.

wifi pineapple, should I get one?

>>55508795
I'd just like to interject for a moment. What you’re referring to as Linux, is in fact, GNU/Linux, or as I’ve recently taken to calling it, GNU plus Linux. Linux is not an operating system unto itself, but rather another free component of a fully functioning GNU system made useful by the GNU corelibs, shell utilities and vital system components comprising a full OS as defined by POSIX.
Many computer users run a modified version of the GNU system every day, without realizing it. Through a peculiar turn of events, the version of GNU which is widely used today is often called “Linux”, and many of its users are not aware that it is basically the GNU system, developed by the GNU Project. There really is a Linux, and these people are using it, but it is just a part of the system they use.
Linux is the kernel: the program in the system that allocates the machine’s resources to the other programs that you run. The kernel is an essential part of an operating system, but useless by itself; it can only function in the context of a complete operating system. Linux is normally used in combination with the GNU operating system: the whole system is basically GNU with Linux added, or GNU/Linux. All the so-called “Linux” distributions are really distributions of GNU/Linux.

>>55508742
looool, ok then, whatever you say man

there is a reason why its still one of the most persistent attack out there, even though it has been identified and studied for a long time.

Plus, SQL injection leads on to other types as well.

but, you are right, there are a thousand "intro to SQL" guides out there, though their quality is a bit iffy

>>55510887
can somebody ban this spammer already?

>>55509980
pls respond

If one day was 48 hours insted of 24 I'd spend the time to learn about computer security, but now I have other priorities.

>>55511929
More interesting? I doubt it

>>55512028
I'd say interesting on the same level as hacking, but different.
This is just personal, I know.

>>55511432

database hacker's handbook READ A BOOK

What rootkits do people use? There are tons of free rootkits for Windows and *nix, but which ones are best? You can also find source code for various rootkits even underground hacker ones like Carberp and Zeus.

File: 1467074111187.jpg (73 KB, 672x434) Image search: [Google]

73 KB, 672x434

I have a quick important question.


BackBox or Kali?

>>55512150
Those aren't exactly rootkits , more like banking bots, true rootkits now days are nearly non existent due to the difficulty of getting in to kernel with local api exploits and pachguard not allowing to modify kernel structures and code.
Most common rootkits hook the usermode api per process that does not allow to look at processes and files, but that does not always work if you cant get elevated privileges you wont be able to hook processes that have a higher privilege than your process. But still most more better coded malware has them so , yeah cant give you anything specific but usermode rootkits if you can call them like that are quite common. Don't know anything about *nix tho.

Well for the best kernel mode rootkits that come to mind would be TDL4 , would consider this one the best, the carberps rootkit was ok, ZeroAccess is slightly below TDL4.
Rustock is on par with TDL4 otherwise known as Gapz.
For the usermode malware that comes close to a rootkit would be Betabot, Solar bot, and whatever the fuck is now currently in the malware market, userland malware tends to be sold more often since it easier to produce and it does not hurt so much when HIPS systems get a good profile on them.

>>55512194
>>55512194
What about parrot

>>55511742
we have some sort of RMS shill throughout the board who has nothing to do and posts RMS approved messages everywhere.
ignore him

>>55511774
ask in /sqt/

>>55508582
do it

File: CnC5DnwXEAAQQeZ.jpg (447 KB, 1920x1440) Image search: [Google]

447 KB, 1920x1440

Don't forget to eat healthy, /nsg/

>>55508742
>SQL injection isin't very complex
what did he mean by this?

>>55514028
Isn't it simple? i'm not the quoted guy. But isn't sql injection just the usage of the underlying database through an input field? Instead of checking tb_login = "johndoe" it does tv_login = ; drop * from tr_database?

>>55512433

so it's all bootkits and smm stuff to avoid/disable kernel protections.

Do you have a Yubikey or a smartcard?

It's one of the most useful things I've ever bought security-wise. My Yubikey supports much of my 2 factor auth and all my GPG needs.

How do I capture the plain text of all SSL traffic of an Android app?

I have full control over the network. I was thinking some kind of man-in-the-middle, but I have no idea how to make it specific to just that one app.

>>55509347

>h4x0r

>let sb else use ur computer

you better not again

I can write a tutorial for people interested in reverse engineering. I mostly focus on embedded systems (Routers, Cameras, Etc.). Extracting the binaries from the firmware and reversing those said binaries and looking for vulnerabilities. So, if anyone would like a write-up just say so, i currently have nothing else to do.

>>55515053
sounds interesting anon

>>55515053
Sounds real interesting

>>55510887
Actually in this case it IS linux without GNU for networking so your stallmanu copy pasta has no power here...

>>55515053
Of course we would. Anything/Everything helps

>>55514495
Keyloggers on every machine.

>>55515053
I'd recommend focusing on the stuff that isn't reversing the actual assembly. There are a billion and one guides on how to read, write and understand assembly.

But actually getting to the assembly, for example, on an embedded device? That sounds interesting

>>55515194
Uhh...

>>55515053
I don't think a write-up would be the ideal form. There's so many write-ups on Woodman and like but not enough good video content out there. If you can make it a video I think your audience be a lot larger and you can start something interesting like that Drogo guy installs viruses on computers for luls.

>>55514495
Does it have to be a physical phone or is an emulator fine?

File: 1461555917688.jpg (154 KB, 1024x1024) Image search: [Google]

154 KB, 1024x1024

>>55515228
But am I wrong?

>>55515248
Physical phone.

The app in question is a game. I want to reverse engineer its network protocol, account creation and login mechanism.

I just tried using some apps that capture traffic but none of them work correctly. Some captured the traffic but wouldn't save them in PCAP format for Wireshark. Others would save the file, but wouldn't decrypt the SSL.

>>55515315
can you create your own certificate on android? if so you can MITM it, i think SSLstrip can do so

>>55515346
>>55515315
but that won't get you the traffic from just one app, i can't think of a good way to do that. Is that even possible without rooting the phone? (i. e. is an app allowed to capture another apps network traffic?)

>>55515346
>>55515369

My phone is rooted and I can add my own certs.

The proxy apps seem to create a VPN service that captures the traffic. They somehow filter just one app's traffic from the entire stream. The only app that successfully decrypts the SSL adds its own certs to the user trust store. If only it could actually dump the traffic...

>>55514495

are you sure you understand what ssl/tls does to network traffic?

>>55515612

Not really. AFAIK the parties handshake and upgrade to a secure connection. I just want the plaintext.

>>55515626

look, a single ip to ip connection is encrypted by a tls certificate public key and usually a one time pad called perfect forward secrecy. you can filter the connection by the ip address of the app target, e.g. [email protected] connects to [email protected] when logging in so you filter by destination.ip == 148.156.22.24. you won't get any other traffic except that connection. a mitm solution will make it much easier so set up a rogue ap and google reverse ssl proxy. certificate pinning and/or ocsp might affect your ability to use your own certificate.

if you have the physical phone and can connect adb to it then you can debug the app itself. you'll have to find the ssl decryption/encryption routines and network traffic routines, but you'll learn exactly how the application chunks up the network data. it won't be in pcap format as it will be much higher level traffic, but the data types and sizes will be obvious when you dump memory contents and watch what the application does with each piece of data.

have you tried googling to see if someone has written a wireshark filter for the application/protocol in question?

>>55515885
It's a crappy pay2win phone game. The idea of making a programmable client and bot for it became more fun than the game itself.

It doesn't do certificate pinning. I was able to obtain the plaintext using some crude app but couldn't get it out of the phone in a format wireshark could read. There's no filter for it.

>>55515961

what does the plaintext look like?

>>55516287
Looks like JSON actually. Communicating with their API is going to be in easy mode. But the text is all garbled up in the app that captured the traffic. Can't even read it on the phone. Probably has encoding issues.

>>55507107
complete.rar is PW protected. Can you share it in case you know?

>>55517432

the password is state on the javascript alert before you download it.

>>55517432
When you click on download, a window pops up saying:
"WARNING! Download and use any file(s) from this site at your own risk.

Archives are RAR5 format using the BLAKE2 cryptographic hash function with password: tuts4you"

File: tuts4you.png (5 KB, 566x138) Image search: [Google]

5 KB, 566x138

>>55517432

The password is tuts4you

>>55517508
>>55517515
>>55517522
Thanks guys, noscript fucked me this time.

Bumper

>>55515207
cant you just access these with a serial to usb adapter?

>>55515241
Why would anyone watch a video when they could read about the same subject in less time?
Esp in specialized field like netsec?

>>55518694

sometimes listening to people provides better comprehension than reading alone

>>55515053
interested too
did you do it anon?
thank you

>>55516473

post a snippet of the plaintext

>>55515053
Sounds interesting.

How long would it take for a total beginner to learn reverse engineering? I'm interested in reverse engineering printers.

I have a small server at home for my backup, files server and plex needs. I've recently started to make use of ssh to encrypt my mobile hotspot when I'm abroad since my provider limits streaming services and other things to 10kb/s.

Works like a charm and I'm bretty happy.

Now, can I do something on that server to increase privacy on my home connection a bit? Can I use it to encrypt everything that comes and goes from my home connection? I'm a Linux newpleb but can manage basic services by now.

>>55520210
>my provider limits streaming services and other things to 10kb/s.
Isn't net neutrality great?

Next thing you know, all encrypted streams will be blocked.

>>55520662
Three UK used to be great. One of the main reasons I went with them was unlimited 3g/4g and free roaming in selected countries, two of which I travel to a lot.

I remember pissing through 700gb at home through my hotspot and they didn't give a fuck. Then suddenly I went abroad and everything was slow as shit and I found some articles mentioning that shitty practice. 'muh guarantee good service for everyone durrr'. There's no need to be limited to 10kb/s at 3am.

I agree though, they most likely will start fucking with encrypted traffic once enough people catch on. Not my fault they gimp their service so much you have to take measures like this to get what you actually pay for and signed up for in the first place.

>>55520662
>>55520849
Just to clarify, they only throttle me when I'm roaming. At home I can even use torrent clients on my phone and get 3mb/s+.

>>55508369
The server can check the hops it took for the packet to get there and just drop the packet

>>55520210
You could set it up to use a VPN and route all of your home's traffic through it, but you can probably set that up on your router or do it at the host level.

>>55508582
>>55515053
would be awesome, relatives

>>55520849
>fucking with encrypted traffic
How can they tell whether you're visiting your bank's website or whether you're using a fully encrypted connection? Both should look the same, e.g. unreadable.

>>55521661
The implication was that they'd simply throttle all encrypted traffic

>>55521738
Normies would be pissed when their bank, Twitter and Facebook work slowly. I doubt they'd get away with it.

>>55521793
Their bank, twitter and facebook connections aren't really encrypted traffic.

You can see from the destination IP alone what website the user is connecting to, and adjust the speed accordingly.

We were talking about completely encrypted traffic (e.g. VPN or SSH tunnel) where you *can't* tell what website the user is browsing.

>>55521828
Oh right, I'm stupid, forgot about destination IP showing with HTTPS. My bad.

>>55512043
ive seen the light too brother

What do you guys think of OSCP? Also, is Cybrary any good?

>>55522423
OSCP is probably the best cert you can get if you want to be a pentester, it's not easy to get though. haven't used cybrary at all

>>55512134
> eleven year old book
> not already read by literally everyone on both sides
> thinking security stands still
> thinks no new research has appeared over a decade

Lool, there is a reason why the industry is growing

What is the ideal android phone for hacking?

>>55521661
They can tell where you are accessing they just cant tell what you are doing there. They would probably have a whitelist of "good" services like banks and just throttle everything else.

>>55514090
That's one of the most form anon.

Ask yourself why Google and Facebook constantly find SQL injection exploit points. Its just not that simple

>>55523162
Security moves whenever the companies involved end up incurring massive financial losses due to lack of security

>>55523207
>they just cant tell what you are doing there
Many websites have very clearly recognizable signatures even when the traffic is encrypted.

For example, they might not be able to see who you're sending money and how much, but they'll be able to tell that you *are* sending money.

>>55523169
Nexus or oneplus one, whatever nethunter supports

>>55523162
>>55523249
>Ask yourself why Google and Facebook constantly find SQL injection exploit points. Its just not that simple
Not him, but could you please stop being cryptic and provide an example or two of a recent attack that hit even developers coding defensively?

I'm not sure how web devs manage to screw up to the degree where SQL injections still exist, but then again I'm personally of the opinion that

eval($user_input);

is a dumb idea in general.

>>55523517
That's RCE, not sqli
Pleb

Not him btw

>>55522916
Nigga I heard that shit is pretty easy, will go for it when company pays for it
OSCE is the hard one

>>55523572
SQL injection is an example of remote code execution. SQL code is code, and the SQL interpreter executes it.

By injecting your own SQL expressions into an eval()'d SQL statement, you are performing remote execution of SQL code on the SQL server.

>>55523594
It's pretty much the gold standard of pentesting; the final exam is 24 hours long with a bunch of machines that you have to hack, with an additional 24 hours to write up a report. Someone said that their report was ~350 pages long. Easy my ass.

Enjoy some really relaxing music from the Middle East while you guys learn something new, https://soundcloud.com/hassan-h-elyan/wel-loom-ramani-hayajan .

>>55523631
good luck running eval($user_input); in the SQL server

File: United_States_Intelligence_Community_Seal.svg.png (2 MB, 1920x1920) Image search: [Google]

2 MB, 1920x1920

Are the any beginner resources for learning Ada?

>>55524144

<?php mysql_execute($user_input); ?>

done

>>55523631
Jesus christ dude that's bullshit, it's injection, not direct execution

>>55523746
You have to root like 6 servers I think, ok the report sucks but I don't think it has to be 350 pages lmao

>>55523482
Yeah sorry i should have mentioned this.

>>55525780
Yes, you're injecting code which then gets executed (interpreted) by the SQL interpreter in a traditional SQL injection attack. Ways to mitigate it include NOT FUCKING EVALUATING USER INPUT. (e.g. by using prepared statements instead)

Please learn the basics of computer science before bothering to reply to me any further.

>>55523963
>relaxing
>Middle East

>>55508369
>>55508506
>>55508692
No.
The server will send a SYN/ACK packet back to the spoofed IP address
Depending on what device is on that IP, the device will either send a RST, breaking down the connection, or simply drop the packet.

>>55525996
Depending on the device in question you can guess the sequence number and forge an ACK.

>>55525869
You're a fucking retard, an injection attack is not the same as RCE, please learn the basic jargon of information security before posting in this thread

>>55525904
don't judge a man by his color or religion but by his actions

>>55526076
>He still doesn't get it
CS graduate general I suppose

>>55526044
In that case we're mostly talking about embedded devices.
So now you've set established a TCP connection for someone else. Now what?

Besides, if you find a device with predictable sequence numbers, there are far more fun things to do.
>nmap idle scan

>>55526109
I know what you're trying to say and you're technically correct but sqli is not really seen as RCE
Can be leveraged to it with into outfile though

>>55526139
Doesn't NT use predictable sequence numbers?

>>55526232
>I know what you're trying to say and you're technically correct but sqli is not really seen as RCE
Yes, and most developers are idiots who don't really know what they're talking about either way.

I guess I'm biased towards enlightenment after having used Haskell for a few years. To me, the narrow-minded, short-sighted classifications of “code vs data”, “compiled vs interpreted”, “scripting vs programming” and so forth have lost all semblance of meaning.

It's all the same thing once you move up a few levels of abstractions and understand that all information consists of codes in a language, waiting to be interpreted by a suitable interpreter.

At that point it doesn't matter whether you choose to call it “remote code execution” or “sql injection” when the only difference is whether you're talking about SQL or x86, both of which are perfectly fine turing complete programming languages that people use to build real systems (which your injection attack can then take down, one way or the other).

>>55526104
>judge him by his actions
>judging him based on the religion he chooses to follow is not judging him by his actions

>>55526505
Most web devs are indeed morons

>>55504034
Why is it called netsec? It's not only about network security

>>55526845
/netsec/ was the only name that really fit. The last name was /hackg/ and nobody liked it at all.

>>55526904
How about InfoSec

>>55504034
I'm stuck on the last level of the Bandit module of OverTheWire
I'm pretty sure I'm close and have the right idea, but it's just out of reach

>>55526904
>>55526918
Was about to suggest the same thing

>>55515053
Interested.

>>55526505

Pure SQL is not Turing-complete; it is if you make a few (non-standard) changes.

You're talking out of your ass.

MrRabat S2 is out http://123movies.to/film/mr-robot-season-2-13678/watching.html

>>55527094

Also, you're pretty clueless if you would ever try to build a real-world system using a codebase executed entirely in a declarative database querying language. Traditional DBMSs are in no way optimized for the control flow patterns of a stored program model.

>>55507441
>friends
You don't have any friends.

>>55507441
write your own, the cracked version is most likely backdoored.

>>55527137
>Also, you're pretty clueless if you would ever try to build a real-world system using a codebase executed entirely in a declarative database querying language.
Sigh. Are we really going to have this discussion again? A database is a real-world system. I don't care if your system is serving HTML or delivering relation sets, it's a real-world system.

You use SQL to build a real-world database just like you use python to build a real-world website. Both are just languages which are a means to an end in their respective domain, and if you manage to inject statements in either language, you end up subverting the system they were used to build.

Stop trying to make it sound like I suggested you to encode your business logic in SQL.

>>55527094
Eh, I don't really care. “Turing-complete” is a mostly meaningless attribute. There is a complicated spectrum of language power and domain applicability of which the turing complete label is just one corner - but by relying on the label you're introducing a virtual separation in your semantic where there is none in practice.

I think this is pretty much a classical fallacy of CS people - they have an obsessive need to categorize everything into rigid labels. I think I have about one argument per week pointing out to CS people how meaningless and arbitrary these labels are.

Point is, SQL is a language with a large amount of expressive power in its domain. Can it be used to simulate rule 110? Nobody gives a shit.

Do any of you have actual pentesting or network security job? How much do they pay? What is the job environment like? What did you do to get the job? (Like what education and certifications)

>>55513970
>tfw you will never have a bbq business dinner with the woz

>>55508369
No, the server will need a response to complete the handshake.

>>55509980
Yes, it's what I did and the hassle of changing the wifi when getting upstairs is nowhere near the hell I was in when having the same SSID.

>>55521136

spoofed hop count

>>55523162

it's still relevant and a good introduction to sql injection that covers way more than just and 1=1

>>55526044
>guess the sequence number

yeah good fucking luck with that buddy

>>55523963

>you are now on 500 watchlists around the world

>>55529747

to expound on this, it covers going from an sql injection to full database server control. most tutorials just cover finding the actual sqli bug and don't go over how to weaponize it. those two things are very different.

>>55526505
Autismo

can someone explain to me the difference between linux and windows? and if im into serious hacking should i be using which one? and i seriously want to learn hacking and legit tutorials?

>>55531105
linux is like a competition on autism, windows is ready to use

like you can buy hamburguer ingredients and then make your own burguer with them or buy an already done burguer

depends on if you are just hungry, hungry but autistic, or not hungry at all, you just want to try making your own burguers

ok i understand but since i'm a newbie you would obviously recommend me using windows right? and you didnt answer my last question..
A link to learn hacking?
i also heard that there are now programs that will do all the hacking for u?
lets take the most simplest example i want to hack a facebook account or something what would i do?

anyone reply?....

0/10 try harder

File: 1417322054102.jpg (146 KB, 1024x805) Image search: [Google]

146 KB, 1024x805

Thanks. It's about time this shithole had a decent thread.

>>55531105

use windows as the host and run kali in a vm then stfu and learn

File: 1427870877448.png (239 KB, 500x500) Image search: [Google]

239 KB, 500x500

>>55504034
Is it worth learning about the workings of TCP/IP in relation to netsec?

Can I ask here about baby's 1st router with OpenWRT? I'm very lost.

>>55529760

It's not impossible. You determine at a future point in time what the sequence numbers might be, then send a batch of packets in between that range. It's not guaranteed, but with enough perseverance could allow you in.

>>55534285

It's essential.

>>55534325

https://wiki.openwrt.org/doc/howto/user.beginner

>>55534547
I readed it and I figured out what I need and what I want, but there's some things I don't know how to do or research.

>>55534509

the proper way is to control a router and observe the sequence numbers.

>>55534720
>>55534547
My issue is that I'm trying to make a private network behind my ISP router, but I want to focus on security, no just plug it and do the same.

Where can I research "must have" on security? I'm new so sorry if I'm asking somrthing retarded.

>>55535112

"must have" security would be pfsense or security onion with snort or suricata for nids and squid as a reverse ssl proxy and web filter. get an ip block list and use it to create firewall rules. get a dns block list and configure local dns. learn how to do egress filtering based on your network needs. tune your nids ruleset based on the applications you're using. if you're really crazy you can get a second box and install a siem like alienvault.

>>55535190
That means that I'm not covered with a 2nd router with OpenWRT behind my ISP router?

I though it will be enough if change some rules on firewall, iptable etc at OpenWRT, but once again, I'm new.

I literally just got infected for some reason I dont even know how. I don't pirate my software, have an adblock and MSE failed me.

Which AV should I use now?

File: hacked.jpg (43 KB, 684x229) Image search: [Google]

43 KB, 684x229

>CEO purchases application
>Asks me to perform security review of product after the fact
>Stores credit card numbers plaintext
>Literally every input parameter vulnerable to SQL injection
>Has a "remind me of credit card number on file" button that display card numbers in plaintext
>Including CCV
>Present detailed report
>CEO panics. Decides to get "expert" opinion
>Spend next two weeks with "security expert"
>Implements a draconian password policy with absurd complexity requirements and 28 day rotations for all users
>Crisis averted

>>55536546

https://twitter.com/taviso/status/708719788302831616

>>55531336
download W32.Sality.exe it can hack any account but cant hack pages... do not tell anyone so facebook doesnt know.

File: 1465649110330.jpg (31 KB, 250x251) Image search: [Google]

31 KB, 250x251

>>55531282
t. brainlet who has never used gnu/linux

>>55537336
i have, its useless
its simpler to download rainmeter

teach me about fuzzing and exploit development, senpai

http://www.bleepingcomputer.com/news/security/new-cryptxxx-changes-name-to-microsoft-decryptor/

My job just got a bit tougher

>>55512194
Definitely Backbox

>>55538672
are keyloggers and trojans still a thing or it's all about ransomwares now?

>>55538888
Nice quads

The big thing that's been hitting our business lately is that CryptXXX ransomware. We have something that'll catch any files being renamed to certain file extensions, but it's a bit tougher now that they're not even renaming the file.

>>55521661
I'm not sure senpai. Some videos on FB load instantly at 800kb/s and jewtube never goes above 10kb/s.

Accessing my server without ssh is also throttled, as well as loading maps on Google Maps and a few other things.

>>55537405
What? You sound like a fucking retard, don't post in this thread

>>55538986
What is that something called?

>>55540360
Powerbroker and LogRhythm

>>55540384
And this logrhythm can't detect ransomware? Sounds like waste of money

>>55540419
It can, we're still spending time configuring it though.
Plus it's good to be redundant.

File: 1457513024855.gif (595 KB, 500x282) Image search: [Google]

595 KB, 500x282

Hey guys! I just passed the security+ exam today for work and now they want me to study for certified ethical hacker. But before I do that since it's not a huge requirement, they want my help with studying and automating Kali tools. Specifically info gathering. So I was wondering if anyone knows some good tutorials on how to use them. All I've found online and YouTube is a quick overview of what they are, and videos done by 12 year old curry niggers and spicks.

Looking for specifically SET, Maltego, GhostPhisher, and any others that you suggest.

File: Ray.jpg (17 KB, 330x334) Image search: [Google]

17 KB, 330x334

>>55534285
way she goes

>>55540419
y=ax+b type in cmd prompt and it can find some of the virus; only linear ones though

>>55540776
I passed CEH with 80% by studying 1 day, really shitty cert, absolutely worthless

>>55515053
Hot me up bro

>>55541895
Yeah well it's not my decision... It's my superiors...

>>55531282
I like making my own burgers. They taste better and arent full of shit you cant see.

>>55512194
Fedora security lab or blackarch

>>55540419
I think it was malware bytes that has an application that detects ransomware.
We tried it with mixed results

>been using a Linux system full time for over three years now
>can't even use the find command properly
damn I'm getting comprehensively [ E X P O S E D ] by bandit level 6

>>55504034
anyone using encase here?

i messed around with it for a few years a few years back

forensic was awesome, enterprise killed my brain, portable was good but I fucked up once recomending it for a job thinking you could open saved image files

what are you using ? free or not

>>55545746

i heard good things about ftk imager, but only from the guy who wrote those windows forensics books.

https://www.amazon.com/Hardening-Linux-James-Turnbull/dp/1590594444/ref=sr_1_1?s=books&ie=UTF8&qid=1468367418&sr=1-1&keywords=linux+security&refinements=p_72%3A1250221011

y/n

File: Capture.png (4 KB, 256x84) Image search: [Google]

4 KB, 256x84

I found a lot of these while scouring files on a public filehost that has a security oversight that allows anyone to view recent uploads. There's hundreds of these. Are these server login credentials or something?

File: Capture.png (27 KB, 369x681) Image search: [Google]

27 KB, 369x681

>>55547512
what is this junk?

>>55547512
>>55547605
Just google LuminosityLink, are you retarded?

>>55547643
so stolen logins from the people infected by this guys trojan?

>>55547709
It's just logs from some dude who is infected by a skid using LuminosityLink, isn't exactly hard to figure out.

>>55547803
It is if you're an idiot.

I have a Oneplus One. Anyone know what I'd need to do after installing Nethunter to crack WiFi? I have a pretty good grasp on using things like Aircrack, but I find it hard to believe I'd just be able to install nethunter and start cracking without having to buy an external WiFi dongle.

>>55546896

https://www.amazon.com/SELinux-System-Administration-Sven-Vermeulen/dp/1783283173/
https://www.amazon.com/Mastering-Linux-Security-Paul-Cobbaut/dp/9888406205/
https://www.amazon.com/Linux-Server-Security-Hack-Defend/dp/1119277655/
https://www.amazon.com/Practical-Linux-Security-Cookbook-Tajinder/dp/1785286420/

those kind of cover it, but they don't cover containers or remote syslog.

>>55546896
check out Qubes OS it has very strong security

>>55511742
Would rather see the gorilla warfare guy banned tbqh.

>>55511742
>not having the RMS copypasta filtered

>>55504034
Does /g/ have a dedicated server for netsec information? Would be nice to not just have the luck to find this thread.

>>55536648
>28 day rotation
fuck you that's too secure and I'm too lazy to do that.

>>55550585
>implying I didn't add it to my filter after posting that

>>55550742
>not having RMS copypasta filtered BY DEFAULT
Oh well, little steps

>>55550641
https://wiki.installgentoo.com/index.php/Netsec_general

>>55550806

>honeypot

>>55550897
literally the entire internet is a honeypot at this point.

>>55550948
And 3 undercover FBI agents are employees at that Coffee Shop you like to go every once in a while.

>>55551008

i see plainclothes cops and feds EVERYWHERE, mang

File: mah spaghet.jpg (29 KB, 425x450) Image search: [Google]

29 KB, 425x450

>>55550948

PIZZA PIE

>>55551008
>he doesn't know that literally every store has an undercover loss prevention employee who will detain you
>he doesn't know that undercover cop cars are literally everywhere
>he can't comprehend that everyone having cellphones with video makes them essentially walking security guards ready to record and report all illegal activities.

It's the 21st century, and we're all policemen.

/spg/ didn't answer me so I'll ask you:
How do I spoof my phone's GPS location for a specific app? Preferably without installing additional apps, or one from f-droid if necessary. I don't want a dating app to track my location all the time; I just want it to think I'm always at home.

>>55551161
>Preferably without installing additional apps
Not happening
Also, is Google down for just you or for everyone?
>first link
>https://www.google.nl/search?q=spoof+gps+android&ie=utf-8&oe=utf-8&client=firefox-b&gfe_rd=cr&ei=Qg-GV8HaIsSg8wedq6TICw

I noticed a strange file titled 'noob' in a mains folder in an old multiplayer video game that I've been playing again recently. Obviously I didn't put it there so how did someone put it in there? I'm a bit slow in terms of technology so did an admin of the game server hack me or something? Could they have accessed my other files/put a keylogger on and should I be concerned? I assume maybe because the port is open for the game that's how it got accessed?

>>55552821
I don't use Google Play.

Is this the same as natsoc?

File: 220px-Aaron_Swartz_profile.jpg (14 KB, 220x305) Image search: [Google]

14 KB, 220x305

what killed this man

>>55555243
da joos
death for betraying your own people

>>55555243
strangulation by rope