S-a lansat versiunea 3.3 Metasploit!(2009-11-30)
Ce este Metasploit ?

Metasploit este o unealta open source de testare a vulnerabilitatii unui Server/PC. Are exploit-uri predefinite, si este o unealta de vis pentru orice ‘script-kiddie’.

Mai jos am pus o descriere in engleza.

The Metasploit Framework is a development platform for creating security tools and exploits. The framework is used by network security professionals to perform penetration tests, system administrators to verify patch installations, product vendors to perform regression testing, and security researchers world-wide. The framework is written in the Ruby programming language and includes components written in C and assembler.

Metasploit v3.3 il puteti gasi aici:

Windows – Metasploit-3.3.exe
Linux – Metasploit-3.3.tar.bz2

Detalii cu functionalitati: Metasploit Release Notes
Homepage: Metasploit.com

No tags

Websecurify – Web Security Testing Framework

Ce este Websecurify?

Websecurify este o initiativa de auditare a aplicatiilor web. Acest tool poate fi folosit atat pentru ataca cat si audita o aplicatie web.
Este compatibil atat cu Windows si Linux cat si MAC!(printre primele ce functioneaza si pe Mac).

Cum functioneaza?

JavaScript – Websecurify Security Testing Framework is the first tool of its kind to be written entirely in JavaScript using only standard technologies adopted by the leading browsers.
Multiple Environments – The core technology can run in normal browsers, xulrunner, xpcshell (command line), inside Java or as part of a custom V8 (Chrome’s JavaScript Engine) build. The core is written with extensibility in mind so that more environments can be supported without changing even a single line of code.
Multi-platform – The tool is available and successfully runs on Windows, Mac OS, Linux and other operating systems.
Automatic Updates – Every single piece of the tool is subjected to automatic updates. This means that newer and more advanced versions of the tool can be shipped to your front door without you lifting your finger. This however is completely optional. The automatic update can be turned off if needed.
Extensions – Because the tool comes wrapped in xulrunner by default (keep in mind that we can support any other JavaScript environment) we benefit from all cool features that Firefox has, such as extensions. Extensions are easy to write and maintain and can customize every single aspect of the tool and there are already tones of resources and documentation, including books and what not, out there to teach you exactly how to do that. We will be providing documentation as well.

Download:
Windows – Websecurify 0.3.exe
Linux – Websecurify 0.3.tgz
Mac – Websecurify 0.3.dmg

auditing · hacking tool · Websecurify

Cuprins

1. Notiuni de baza……………………………………………………………………………………………4
1.1. IDE = Integrated Development Environment………………………………………………….4
1.2. Debugger ? gdb ? The GNU Debugger………………………………………………………….4
1.3. Debug symbols……………………………………………………………………………………..4
1.4. Version Control……………………………………………………………………………………..4
1.5. ANSI C………………………………………………………………………………………………..5
1.6. Core file………………………………………………………………………………………………5
2. Debugging in Linux………………………………………………………………………………………5
2.1. Notiuni generale…………………………………………………………………………………….5
2.2. Debugging ?pasiv? (folosind core files)………………………………………………………….7
2.3. Debugging ?activ?…………………………………………………………………………………10
3. Detectia memory leak-urilor………………………………………………………………………….12
3.1. Notiuni introductive……………………………………………………………………………….12
3.2. Valgrind…………………………………………………………………………………………….12
4. Utilizarea file descriptor-ilor…………………………………………………………………………..15
4.1. Terminologie……………………………………………………………………………………….15
4.2. File descriptor-i standard………………………………………………………………………..15
4.3. De ce nu facem piping mereu?………………………………………………………………….16
4.4. De ce sa folosim toti file descriptor-ii standard?…………………………………………….16
4.5. Exemplu de utilizare a file descriptor-ilor standard intr-un program…………………….16
4.6. Exemple de utilizare a programului……………………………………………………………17
5. Pipe-uri cu nume………………………………………………………………………………………..18
5.1. Notiuni introductive……………………………………………………………………………….18
5.2. ?Viata? pipe-urilor cu nume……………………………………………………………………..18
5.3. Utilizarea pipe-urilor cu nume…………………………………………………………………..19
6. Patch-uri………………………………………………………………………………………………….20
6.1. Diff…………………………………………………………………………………………………..20
6.2. Patch………………………………………………………………………………………………..22
6.3. Diferente intre directoare………………………………………………………………………..23
Versiune: 1.1/2006-11-24 Pagina 2/23





(more…)

boot · bootare · compilare · compile · editoare text · executie · GCC · GNU Make · hardware · Linux Install · Makefile · Netiquette · Programare · Retelistica · Scripting · securitate · security · servicii · shell scripting · Windows Hacking · xwindows

Cuprins

1. Linux install……………………………………………………………………………………….3
1.2. De ce linux pentru Workstation……………………………………………………….3
1.3. De ce Linux pentru Server……………………………………………………………..3
2. Tipuri de distributii (unstable, testing, stable)………………………………………..3
3. Linux Install……………………………………………………………………………………….4
3.2 Tipuri relatii intre pachete………………………………………………………………4
3.3. Managenentul pachtelor………………………………………………………………..5
3.3.1. dpkg………………………………………………………………………………………5
3.3.2. apt & sources.list…………………………………………………………………….5
4. Utilizatori / drepturi…………………………………………………………………………….6
4.1. Utilizatori…………………………………………………………………………………….6
4.2. Permisiuni (Drepturi de acces)……………………………………………………….7
4.3. Grupuri………………………………………………………………………………………..7
5 Mount Points……………………………………………………………………………………….8
5.1. mount………………………………………………………………………………………….8
5.2. /etc/fstab………………………………………………………………………………………8
2
(more…)

boot · bootare · compilare · compile · debian · editoare text · executie · GCC · GNU Make · hardware · instalare debian · instalare linux · Linux Hacking · Linux Install · Makefile · Netiquette · Programare · Retelistica · Scripting · securitate · security · servicii · shell scripting · ubuntu · Windows Hacking · xwindows

Cuprins

1 Ce este o interfata grafica…………………………………………………………….3

1.1 Tipuri de interfete cu utilizatorul………………………………………………………………….3
1.2 Sistemul de ferestre Linux (15 minute)………………………………………………………….3
1.3 Arhitectura X Window System……………………………………………………………………..4
1.4 X.Org si XFree86…………………………………………………………………………………….5
2 Instalarea interfetei grafice (10 minute)…………………………………………..6
3 Pornirea si oprirea interfetei grafice (15 minute)…………………………………6

3.1 Pornirea interfetei grafice…………………………………………………………………………..6
3.2 Oprirea interfetei grafice……………………………………………………………………………7
4 Configurarea serverului X (25 minute)………………………………………………7
4.1 /etc/X11/xorg.conf (20 minute)………………………………………………………………….7
5 Setari de sistem in interfata vizuala(30 minute)………………………………..10
6 Link-uri………………………………………………………………………………….12

1 Ce este o interfata grafica

1.1 Tipuri de interfete cu utilizatorul
.
CLI (Command Line Interface)
0
interactiunea cu SO se baseaza pe comenzi scrise de la tastatura
0
curba abrupta de invatare ? utilizatorul se obisnuieste greu cu comenzile
0
rapiditate in utilizare dupa ce comenzile au fost retinute (in special daca este folosit
history-ul de comenzi)
0
pot fi invocate comenzi complicate utilizand secvente scurte de caractere
0
desi de la aparitia sa a fost concurat de TUI si GUI, ramane metoda de control al SO
preferata de utilizatorii avansati datorita usurintei in utilizare (in special a usurintei
utilizarii comenzilor)
0
Exemple: Shell-ul din Linux, cmd in Windows

.
TUI (Text User Interface)
0
Interactiunea cu SO se realizeaza prin intermediul ferestrelor, meniurilor, butoanelor,
mouse-ului
0
Pentru desenarea interfetei sunt utilizate caractere disponibile pe orice terminal text
0
Exemple: mcedit, links
.
GUI (Graphical User Interface)
0
Este un sistem de interactiune de tipul WIMP (window, icon, menu, pointing device)
0
Pentru desenarea interfetei foloseste moduri grafice de rezolutie inalta (VGA=640X480,
SVGA=800X600, 1024X768, 1280X1024, 1600X1200)
0
A aparut ca o reactie la curba destul de abrupta de invatare a comenzilor din CLI
0
Exemple: Windows, interfata grafica din linux

(more…)

boot · bootare · compilare · compile · editoare text · executie · GCC · GNU Make · hardware · Linux Install · Makefile · Netiquette · Programare · Retelistica · Scripting · securitate · security · servicii · shell scripting · Windows Hacking · xwindows