Domain: hert.org
Stories and comments across the archive that link to hert.org.
Comments · 13
-
Pictures from HITB2004 and Syscan04
-
Pictures from HITB2004 and Syscan04
-
Re:Uh
After reading the review of Dan Farmer and Wietse's Forensic Discovery, you should hear about The Grugq who got fired from @stake after writing a Phrack Article in which he exposed numerous flaws in The Coroner's Toolkit by Dan & Wietse. Before you read this book, check out the video (bittorrent) of The Grugq on The Art of Defiling and see how to defeat "industry grade" forensic tools and techniques . You can also meet him at a hacker convention near you (in March at BCS2005 in Jakarta, in April at Black Hat in S'pore and Amsterdam and at HITB2005 Bahrain.
-
The Art of Anti-forensics by The Grugq
After reading the review of Dan Farmer and Wietse's Forensic Discovery, you should hear about The Grugq who got fired from @stake after writing a Phrack Article in which he exposed numerous flaws in The Coroner's Toolkit by Dan & Wietse. Before you read this book, check out the video (bittorrent) of The Grugq on The Art of Defiling and see how to defeat "industry grade" forensic tools and techniques . You can also meet him at a hacker convention near you (in March at BCS2005 in Jakarta, in April at Black Hat in S'pore and Amsterdam and at HITB2005 Bahrain.
-
There are backdoored firmware available.
Most of slashdot readers already know that there are a bunch of modified firmwares for the wrt54g such as this one. You should also be aware to realise that they are already backdoored/rootkit version (custom version of teso's adore of the wrt54g which will hide specific clients, processes, mac address and connections. It should also be noted that vulnerable linksys access point are trivial to detect using kismet (runs on linux, *bsd, zaurus, wrt54g) or kismac (runs on Mac OS X).
-
There are backdoored firmware available.
Most of slashdot readers already know that there are a bunch of modified firmwares for the wrt54g such as this one. You should also be aware to realise that they are already backdoored/rootkit version (custom version of teso's adore of the wrt54g which will hide specific clients, processes, mac address and connections. It should also be noted that vulnerable linksys access point are trivial to detect using kismet (runs on linux, *bsd, zaurus, wrt54g) or kismac (runs on Mac OS X).
-
Ida Pro 4.6, SoftICE, gdb and more...IDA Pro, the Interactive disassembler from datarescue is not only
the best disassembler but also a great debugger, it can
graph function flows, display pentium microcode, supports
nearly every processors on the market (including your car's
CPU.) Works nice with linux ELF binaries, etc... It is used by most antivirus researchers, crackers (who remove software protections), reverse engineers, hackers (who write exploits), etc. It runs perfect under wine without tweaking. Grab the
demo and give it a go.
Also under windows, SoftICE, is also an excellent debugger which lets you assemble in place and do many other neat things.
Under linux, people have been trying to make SoftICE look-a-like debugger, such as LinICE, etc. and gdb is quite a powerful tool and is scriptable.
-
'twas on http://dis.hert.org a few days agoSlashdot's always a bit late on interesting security issues. This news was on the Hacker Emergency Response team beta new website a few days ago.
The site which accidently looks a lot like slashdot, focuses on quality security news; no vuln reports people don't care about... all the latest news and white papers.
A cool white paper on utf-8 shellcodes was released on it too. -
'twas on http://dis.hert.org a few days agoSlashdot's always a bit late on interesting security issues. This news was on the Hacker Emergency Response team beta new website a few days ago.
The site which accidently looks a lot like slashdot, focuses on quality security news; no vuln reports people don't care about... all the latest news and white papers.
A cool white paper on utf-8 shellcodes was released on it too. -
'twas on http://dis.hert.org a few days agoSlashdot's always a bit late on interesting security issues. This news was on the Hacker Emergency Response team beta new website a few days ago.
The site which accidently looks a lot like slashdot, focuses on quality security news; no vuln reports people don't care about... all the latest news and white papers.
A cool white paper on utf-8 shellcodes was released on it too. -
reminds me crowd from AT&T research
This seems to be quite similar to crows.
Crowds is an idea from Michael Reiter and Avi Rubin at AT&T. The basic idea is to become anonymous by joining a crowd, and to pass browsing requests to a random member of your crowd. In effect, every member of the crowd runs a proxy server for the benefit of the eveyone else. Read all about it at AT&T crowd central.
acz -
Play win q3a full with q3demo v1.11I am really pissed
...the linux version can't be found anywhere in many countries.
They will just have to rely on stats from the master servers to guess how many linux users are playing.. So i bought the windows version, launch IDA and reversed it.
Get the 1.11 linux demo from loki and use my gdb batch !!!:)
-
genome mailing list
i just set up a genome mailing list on HERT (we might rename it Human Emergency Response Team), so we can continue this discussion there and maybe find a way to do something. i can offer web space and cvs space and eventually i can buy 30 gig of hd if we need that too. and btw HERT is non profit.