Posted by Lahad Ludar on Apr 14, 2014 in Code | 0 comments
A script written by Or Halimi to install ettercap , The apt-get version of Ettercap has a bug that prevent from Etterscript to compile and run the script properly. #!/bin/bash # check permissions if [[ $EUID -ne 0 ]]; then echo "This script must be run as root" 1>&2 exit 1 fi echo -e "[ ] Setting up environment." # Check for libs libs=("debhelper"...
read more
Posted by Avi Weissman on Aug 22, 2013 in Code | 0 comments
interup7 is a script that uses the aircrack-ng package for repeated deauthentication packets sending, this cause all the clients to be disconnected from the AP. Another thing that the script does, is to obtain information about the APs and the client around the attacker and puts it into useful data. In addition there is an option to set time for the script to run. To get the script you can use:...
read more
Posted by Avi Weissman on Jul 22, 2013 in Code, Main Menu | 0 comments
So, after a way too long of a time we have updated combina! Combina is a password generator and a rainbow table generator created by Danilo Cicerone at 2006. The program is written in C and since it is so efficient and effective (and written under the GNU license agreement) we had to make some improvements since it was deprecated. Thanks to Ohad Gopher (Hacking Defined Experts 41) who made most...
read more
Posted by Avi Weissman on Apr 16, 2013 in Code | 0 comments
After I took control of a Linux machine, we want to do a privilege escalation, and get a root. So i started thinking how i gonna do it and i found a way to get the root password by faking the sudo command. If i would fake the sudo command, and abuse it when the user would want to execute some application as sudo, it will ask him for a root password,then the root password will send to the...
read more
Posted by Avi Weissman on Apr 5, 2013 in Code, Main Menu | 0 comments
Many articles and reports have been written regarding the immanent threat of AnonGhost on Israel. The attack, which have already started, should peak at the 7th of April 2013. We have decided to take a more pragmatic approach and prepare our servers. Obviously, we are running Linux and using IPTables as our protection. So, here you have it, our little script to help you avoid and block at least...
read more
Posted by Avi Weissman on Apr 2, 2013 in Code | 0 comments
WDigest is a DLL first added in Windows XP that is used to authenticate users against HTTP Digest authentication and Simple Authentication Security Layer (SASL) exchanges. Both of these require the user’s plain-text password in order to derive the key to authenticate—thus why it is stored in plain-text. Mimikatz is a slick tool that pulls plain-text passwords out of WDigest (explained below)...
read more