RSS Feed » remote-exploit

• Home
• Portal
• Forums
• Search
• Admin

13718 items (89 unread) in 18 feeds

• security-focus (8 unread)
• secunia
• darkc0de (7 unread)
• remote-exploit (15 unread)
• darknet (2 unread)
• milw0rm
• hack-a-day (11 unread)
• register (13 unread)
• packetstorm-tools (7 unread)
• packetstorm-exploits (10 unread)
• packetstorm-headlines (12 unread)
• packetstorm-misc (3 unread)
• kernel-fun
• sophos-security (1 unread)
• sophos-top-viruses
• carnal0wnage
• securiteam
• wirevolution

remote-exploit (15 unread)

• March 11, 2010
• 1:23

  Karmetasploit problem

   » ‎ remote-exploit

  Tags:  Wireless  

  I was run karma.rc script and I have two problem.
  
  1. Karma.rc console write:
  "Exploit failde, could not obtain a database connection within 5 second. The max pool size is currently 30; consider increasing it."
  
  and
  
  " ActiveRecord:ConnectionTimeoutError, could not obtain a database..."
  
  2. When DHCP server run write:
  "Can't create PID file /var/run/dhcpd.pid: Permission denied."
  
  Could Anybody help me?
• March 10, 2010
• 23:08

  New commands for Crunch?

   » ‎ remote-exploit

  Tags:  Wireless  

  Hey guys, anyone use Crunch anymore? Or is it something outdated? All the commands I find don't work anymore. What I'm trying to do is essentially passthrough with crunch (exactly what is on page 17 in Pureh@te's CUDA guide) The command is:
  
  /pentest/passwords/crunch/crunch 8 8 123456 | pyrit -e "ESSID" -f - passthrough | cowpatty -d - -r wpa-01.cap -s "ESSID"
  
  I've tried many variations of this and can't get it to work. Please help me, thanks!
• 18:11

  HP Pavillion dv4 problem

   » ‎ remote-exploit

  Tags:  BackTrack 4 NON WORKING HARDWARE  

  hi, i have an Hp Pavilion Dv4-2012 laptop with ati hd 4200 video card, the problem is when i load the bt4 final live cd it loads everything fine until the gui mode startx, when i try to load the gui startx i receive a message Mode not supported, and returns to console mode. what can i do to solve this problem?
• 17:37

  Problema con video en Hp Dv4-2013

   » ‎ remote-exploit

  Tags:  Soporte en HARDWARE  

  Hola acabo de comprarme una laptop Hp pavillion Dv4-2013, el problema es q en antes cargaba mi live cd de bt4 en otro modelo antiguo de laptop hp; pero en este nuevo modelo Hp Dv4-2013 carga todo el bt pero a la hora de empezar la interfaz grafica startx me dice modo no soportado y solo me funciona en modo consola, me falta algun driver o configurarlo?, espero q me puedan ayudar.
• 14:42

  challenge intrusion

   » ‎ remote-exploit

  Tags:  Discussions generales  

  salut les gars vla l'ip de mon poste au boulot ceux qui veulent tenter une intru et qui prenne acces faies signe 81.93.6.24 detaillers vos methodes si vous acvez reussi a choper l'acces merci
• 6:06

  ASP-auditor result

   » ‎ remote-exploit

  Tags:  Newbie Area  

  Hi all, i want to understand ASP-auditor results
  
  ADN version matches -->
  
  sometimes i have reslut ADN version matches windows server 2003 and somtimes sql server 2005
  what does that mean ?
  
  also i did not understand brute force results ?
  
  a lot of questions because i did not know a lot about asp :rolleyes: and i want to understand results :confused:
  
  Thanks;
• 5:17

  Passthrough with Crunch

   » ‎ remote-exploit

  Tags:  Wireless  

  Hey guys, I'm reading the CUDA guide trying to passthrough with Crunch. I've tried so many different possiblities and nothing is working. Any ideas? This is the last thing that I've tried:
  
  /pentest/passwords/crunch/crunch 10 10 0123456789 | pyrit -e Riley -o - passthrough | /pentest/wireless/cowpatty/cowpatty -d - -r outfile.cap -s Riley
  
  
  
  cowpatty 4.6 - WPA-PSK dictionary attack. <jwright@hasborg.com>
  
  Collected all necessary data to mount crack against WPA2/PSK passphrase.
  Starting dictionary attack. Please be patient.
  Using STDIN for hashfile contents.
  WARNING: Version mismatch between <module 'cpyrit._cpyrit_cpu' from '/usr/lib/python2.5/site-packages/cpyrit/_cpyrit_cpu.so'> ('0.3.0') and <module 'cpyrit._cpyrit_cuda' from '/usr/lib/python2.5/site-packages/cpyrit/_cpyrit_cuda.so'> ('0.3.1-dev (svn r228)')
  
  The command 'passthrough' requires the option '-i'. See 'help'.
  fread: Success
  Unable to identify the PSK from the dictionary file. Try expanding your
  passphrase list, and double-check the SSID. Sorry it didn't work out.
  
  0 passphrases tested in 0.27 seconds: 0.00 passphrases/second
• 2:32

  Pyrit Benchmark Version Mismatch

   » ‎ remote-exploit

  Tags:  Wireless  

  I cannot figure out how to fix this. Tried googling and no help. This may not even be something to be worried about, idk. When I run: pyrit selftest, it says everything is running ok. I just don't like warnings ;) This is the warning that I am getting:
  
  root@bt:~# pyrit benchmark
  WARNING: Version mismatch between <module 'cpyrit._cpyrit_cpu' from '/usr/lib/python2.5/site-packages/cpyrit/_cpyrit_cpu.so'> ('0.3.0') and <module 'cpyrit._cpyrit_cuda' from '/usr/lib/python2.5/site-packages/cpyrit/_cpyrit_cuda.so'> ('0.3.1-dev (svn r228)')
  
  Pyrit 0.3.0 (C) 2008-2010 Lukas Lueg
  Project Hosting on Google Code
  This code is distributed under the GNU General Public License v3+
  
  Running benchmark (1382.6 PMKs/s)... |
  
  Computed 1373.47 PMKs/s total.
  #1: 'CUDA-Device #1 'GeForce 8600M GS'': 632.1 PMKs/s (RTT 2.9)
  #2: 'CPU-Core (SSE2)': 671.4 PMKs/s (RTT 3.0)
• 2:03

  Partly fix for ALFA AWUS036H in BT 4 Final Release

   » ‎ remote-exploit

  Tags:  BackTrack 4 Bugs and Fixes  

  If you run the Wireless card ALFA AWUS036H with the rtl8187 chipset out of the box on Backtrack 4 Final Release, you can experience problems with the SSID not being correct interpreted. Sometimes the clients only sees the SSID as empty squares (in windows unprintable characters). The weired SSID is also filling up the AP-list on the client.
  
  Applying this patch to airbase-ng will solve that problem:
  hxxp://trac.aircrack-ng.org/ticket/714
  
  If you from a client are able to associate with a SoftAP (Airbase-ng) but you don't get an IP address I would suggest you to try turning on the WEP flag/key.
  But not getting an IP from dhcpd could also of course be a configuration problem. For solving that question there are I'm sure other threads.
• March 09, 2010
• 20:43

  BackTrack on Macbook Pro

   » ‎ remote-exploit

  Tags:  BackTrack 4 (pre) Final  

  How does backtrack 4 work on one of the new macbook pros running on VMware Fusion??
• 19:08

  bt4 install error

   » ‎ remote-exploit

  Tags:  BackTrack 4 General Support  

  Hey all, i recently downloaded the bt4-final.iso from backtrack-linux.org and burnt the image to a dvd+r.
  
  I can boot the live cd fine, the problem is when i go to install it through the ubiquity installer i can get through
  the entire install setup (i set the partitioner to use the entire disk) then click reboot.
  
  The system begins to power down and when i am prompted to remove the disk from the tray and
  press enter the disk doesn't eject. I'm not sure if that's a problem or not so when the system starts
  to power back up from the reboot i eject it manually let it continue its boot sequence.
  
  The system then boots to the grub boot loader. (I don't see the need for this in my situation because
  im using the entire hard disk, and when i installed pre-final it didn't install grub and worked fine.)
  Anyways to cut to the chase when the system boots to grub and i choose a option like bt4 final frame buffer 1024x768
  grub gives me a error code 15:cannot find file...or something like that.
  
  Is there any way to just not install grub so that it just boots bt4?
  
  thanks in advance. ;D
• 18:17

  BT3 not seeing directory in sda1

   » ‎ remote-exploit

  Tags:  Pentesting  

  I am trying to crack an administrator password on a windows xp 40g hard drive and every goes well until /mnt/sda1/windows.
  
  I checked in Konqueror and can navigate to /mnt/sda1/ but no files are shown. I know there are files there because I can boot into xp just fine. . .
  
  Any suggestions?
• 17:52

  Problema con "theharvester" e altre applicazioni

   » ‎ remote-exploit

  Tags:  Supporto Software  

  Buona sera a tutti
  Cortesemente avrei bisogno di un aiuto per capire come avviare alcuni programmi, spiego:
  Premetto che mi sono avvicinato da poco all'ambiate liunx, sto usando per fare dei test sia Bt4 (immagine Vmware), sia Bt3 (live cd) per capire un po come funzionano. E ho notato che alcune aplicazioni non riesco a farle funzionare per es "theharvester"; l'ancio l'aplicazione da Bt4 (da root), inserisco i parametri come da esempio: "root@bt:/pentest/enumeration/google/theharvester# ./theharvester.py -d microsoft.com -l 500 -b google" (La scritta /pentest etc etc è in colore violetto) e la risposta è : "bash: ./theharvester.py: No such file or directory".
  In Bt3 (sempre da root); stessa applicazione, stessa riga di comando (La scritta google è in violetto): "bt goolge #./theharvester.py -d microsoft.com -l 500 -b google". E la risposta putroppo è come sopra.
  La risposta: "bash: ./rigadicomando :No such file or directory". L'ho ritrovata anche avviando altri tools.
  Come mai? Sbaglio qualche cosa? Devo attivare prima qualche "demone"?
  Vi ringrazio anticipatamente per l'aiuto.
  
  Saluti
  Serp
• 16:54

  TCP Wrappers

   » ‎ remote-exploit

  Tags:  Pentesting  

  Hello, I posted this in the OffSec PWB forum, but I don't think it's frequented that often hence no response. Apologies for the re-post if you've already come across this.
  
  I've been doing some research into tcp wrappers recently, having noticed that a few services within the pwb lab are wrapped. As I understand it tcpwrappers are a method of applying an ACL to a service, based on IP address.
  
  I've figured that I can only talk to wrapped services if i'm bouncing through another host, but is there a reliable way of determining which hosts are in the ACL? The only ideas i've had on this so far seem to require some cache poisoning, which seems more than likely to mess things up (and poisoning is not allowed in the labs anyway!).
  
  Spoofing my source address could be an option I suppose, but that would mean responses are directed elsewhere I guess...
  
  Can anyone share any insights into this? Even a nudge in the right direction would be appreciated.
  
  Thanks
  
  
  Chris
• 12:16

  Problem with social engineering toolkiit

   » ‎ remote-exploit

  Tags:  Newbie Area  

  Everytime I want to create a java based fake website with this tool, in the last phase the following error has been occured :[*] Error : you have something running on port 80 ...
  i have checked it out, but there's no such a thing running on port 80 like apache . anyone knows where's the problem?
• March 08, 2010
• 13:45

  Voip

   » ‎ remote-exploit

  Tags:  BackTrack 4 General Support  

  Hello everyone I can't seem to find a good place to help me with VOIP testing. The reason I'm interested in VOIP is because I have three computers on my home network that use Magicjack and Skype. Now all I'm asking if someone can point me the right direction.
  
  Thanks for your time.....
• 9:53

  Out of LAN

   » ‎ remote-exploit

  Tags:  Angolo dei Newbie  

  Salve a tutti,
  
  volevo chiedervi una cosa... in pratica sono con 4 coinquilini e abbiamo solo 3 ip fastweb...
  
  quindi quello che vorrei fare ogni tanto è giocare un piccolo scherzo facendo cadere la connessione a uno dei 3 e infilarmi io ^^
  
  é una cosa possibile? purtroppo il router fastweb non è configurabile altrimenti saprei come fare ecco perchè chiedo a voi...
  
  Spero di essere stato abbastanza chiaro... grazie
• 9:47

  No IP from dhcpd with softAP/Airbase-ng

   » ‎ remote-exploit

  Tags:  BackTrack 4 Software related Issues  

  Hello,
  
  Before I'm losing my mind completely, I thought I should ask you about suggestions.
  
  I'm trying to set up an soft AP with my Alfa AWUS036H
  I'll start with a short description and we will see if someone already can pinpoint the problem from there. Otherwise I'm going to be more specific:
  

  • I put my Alfa-interace in monitor mode with airmon-ng
    
  • I start airbase-ng on the monitor interface
    
  • I have configured my dhcpd.conf file and told the dhcp-deamon to work on the tap interface which is newly created with command airbase
    
  • I set the IP on the tap interface (at0) to map to the correct IP which also is specified in dhcpd.conf as router and set the mtu to 1400 and bring up the at0-interface.
    
  • I add the correct route to the specified net with the gateway set to the same IP as I specified on at0.
    
  • I start the dhcpd and everything seems OK.
    ("Wrote 0 leases to leases file")

  
  From my other laptop I'm able to see the newly created AP and I can connect to it but I don't get an IP from dhcpd.
  If I run tcpdump on at0 the only thing I see is:
  "12:24.069960 TheClient'sMAC (oui Unknown) Null > Broadcast Unknown DSAP 0x08 Supervisory, Receiver not Ready, rcv seq 0, Flags [Command], length 330"
  
  What the h am I doing wrong? I am also able to see the client's request coming in:
  "12:24 Client TheClient'sMAC associated (unencrypted) to ESSID: "secret"
  
  I'm happy to give away all the conf-files and detailed descriptions, but I thought that I'll start with this light description and see if someone comes up with the solution or ideas.
  
  Thanks / Alex
• March 07, 2010
• 16:35

  ./seat

   » ‎ remote-exploit

  Tags:  BT Videos - ES  

  Hola
  
  Siguiendo con la serie de videostutoriales sobre las herramientas de Backtrack, acá les traigo un video sobre la herramienta SEAT que esta en la categoria de information gathering :cool:
  
  
  Online:
  Youtube
  
  
  Descarga:
  
  2shared
  
  
  Mirror:
  Megaupload
  
  Mirror:
  Rapidshare
  
  Saludos! x7uk
• 15:20

  Atheros in master mode AP doesn't work in BT4F?

   » ‎ remote-exploit

  Tags:  Wireless  

  Hi all, BT4 Final is great! But creating a fake AP in master mode on my atheros ar5007 doesn't seem to work. I like master mode for its great AP speeds. I can't get a softAP over 5kB/s, no matter what MTU I try.
  I'm using nick_the_greek's great wlan_nick script, as an aid in creating them. master mode in bt4pf was like I had a 50+kB/s normal AP, low latency and everything.
  ath5k drivers don't support master mode. Now I tried the latest madwifi-ng drivers. I can make an ath0 VAP in master mode, but when I try starting airbase, it fails:
  Code: madwifi-ng drivers:
root@bt:~# wlanconfig ath0 destroy
root@bt:~# ip link set dev wifi0 down
root@bt:~# wlanconfig ath0 create wlandev wifi0 wlanmode master
root@bt:~# iwconfig | grep "Mode:"
ath0      Mode:Master

root@bt:~# airbase-ng ath0
ioctl(SIOCSIWMODE) failed: Invalid argument

root@bt:~# airbase-ng wifi0 (works fine) Code: ath5k drivers:
root@bt:~# ifconfig wlan0 down
root@bt:~# iwconfig wlan0 mode master
Error for wireless request "Set Mode" (8B06) :
    SET failed on device wlan0 ; Invalid argument
root@bt:~# iwconfig wlan0 mode managed  (works fine) So for some reason with BT4F, I can only create a softap on wlan0, mon0 or wifi0, but can't create a master mode AP. Am I overlooking somthing?
  With BT4 PF and beta it seemed to work fine tho...
  Ideas anyone?..
• 15:16

  X Chat, la securité est un echec

   » ‎ remote-exploit

  Tags:  Tutoriaux et Howtos  

  Bonjour,
  
  Ce week end grâce au soutient de sorcier je me suis penché sur la conf de BIP et donc du client IRC xchat pour le joindre et en faisant mes petites recherches je suis tombé sur quelque truc intéressant.
  
  
  
  Effectivement ici vous pouvez voir la fenetre de conf d'un chan, Bien sur nous pouvons saisir un mot de passe NickServ et le Mot de passe du serveur qui apparaissent en étoile, on est donc en droit de penser que ces donnée sont en sécurité.
  
  Sauf qu'en poussant les recherches un peu plus loin on se rend compte en fouillant dans les fichiers de conf que les données sont stockées sous cette forme.
  
  Quote:

  N=00-worldnet I=sanguinarius i=sanguinarius_ U=sanguinarius R=sanguinarius P= LE PASS DU SERVEUR EN CLAIR B= LE PASS NICKSERV EN CLAIR E=IRC (Latin/Unicode Hybrid) C=set irc_auto_rejoin on F=17 D=0 S=irc.worldnet.net/6667

  Et la, effectivement, l'on se rend compte que c'est un échec :D alors certes on est bien obligé de stocker les pass quelque part et de les avoir en clair à un moment ou un autre, mais de la à les stocker tel quel dans les fichiers de conf :D.
  
  Il aurait été intéressant de créer une moulinette dans le soft histoire de chiffrer un minimum les datas, effectivement ce n'est forcement pas une sécurité extrêmement résistante mais c'est mieux que de stocker en clair, du moins de mon point de vue.
  
  Bien cordialement
• 3:41

  d-link and it have a problem

   » ‎ remote-exploit

  Tags:  BackTrack 4 WORKING HARDWARE  

  hi my hardware:
  D-link dwl 520+ with texas instrument ACX100 chipset! i bought this cause this one is the most available and i did checked the driver capable list on aircrack-ng.org website but the drivers out there and the patch did nothing :D i mean in backtrack 4 it is not working at all (at least i can't install it) the only distru detects it automaticly is ubuntu :D and i did cracked wep (my own AP which was d-link dsl-2640) with listining to packeges (read linux newbie tut at aircrack-ng website) i'm not sure it can inject the packages cause in packet injecting test i got almost nothing :D anyway if someone knows how to work with this just let me know !!:D
• 1:16

  ALFA AWUS36H+BT4 Final+DHCLIENT = prise de tête !!!

   » ‎ remote-exploit

  Tags:  Support materiel  

  Bonjour à tous,
  
  Après plusieurs semaines de recherche intensive : pas moyen de trouver une solution.Je me permet donc de créer un nouveau topic car à mon avis je ne suis pas le seul.
  
  Symptômes : Impossible d'obtenir une adresse DHCP d'un routeur (box) dés que la connexion se fait en crypté (j'ai fait des test en open = OK en WEP = NOK).
  Pourtant, le réseau est démarré, la carte ALFA est reconnue : je peux m'associer à une AP (mais pas d'ip) et je peux aussi injecter, détecter tous les réseaux alentours etc ...
  
  Bref je peux tout faire SAUF intégrer le réseau...
  
  J'ai essayé avec WICD, WIFI Radar et Networkmanager rien à faire (la commande dhclient ne donne rien non plus)...
  
  J'ai essayé de décharger (airdriver-ng unload 35) et de recharger le driver rtl8187 rien à faire ...
  
  JE me demande si il ne s'agit pas d'un prob au niveau WPA-Supplicant ...
  
  MErci d em'aider car je nage totalement là ...
  
  Précision : Même résultat sous BT PreFinal , parcontre je me connecte sans prob avec une distrib' Ubuntu 7.10.
• March 06, 2010
• 22:41

  SSL Sniff

   » ‎ remote-exploit

  Tags:  BT Videos - ES  

  << Backtrack|Hispano >> Video SSL sniff
• 20:50

  Clear Mobile Broadband

   » ‎ remote-exploit

  Tags:  BackTrack 4 (pre) Final  

  I picked up a mobile broadband card today from a company called Clear (those of you in Texas, especially San Antonio, should know who I'm talking about) and I was wondering if there's any way to make it work in BT4, or Linux in general? It's supposed to work fine on XP, Vista, and OSX but Linux isn't supported. I read around online about making cards work even when they're not supported. Any help?