Archive for the ‘Information Security’ Category
Tasting Metasploit’s Power
Just got Nessus (Tenable Network Security) version 4 and planning to use it to conduct some vulnerability assessment in our test lab. And interestingly, I found lot of machines vulnerable to MS08-067, which after the said scanning; I tried using Metasploit v3 to abuse the said flaw.
| 1. | Here I am showing that my client machine is vulnerable to MS08-067 |
 |
|
| 2. | Now I loaded up my Metasploit console |
 |
|
| 3. | I just expand the Exploits and choose windows and ms08_067_netapi; right-click and select execute |
 |
|
| 4. | So Selecting Target, I just set it to Automatic; here I am showing the current Users list on my machine |
 |
|
 |
|
| 5. | After hitting next, I have now here the Payload which is obviously to add user (with administrative privilege of course); selecting the options includes the remote IP and its remote post, username and password for that machine I will try to add. I am leaving it to you guys to look for these options/parameters using Metasploit’s user guide |
 |
|
 |
|
| 6. | Hit Apply; and now you’ll see the Metasploit user has been added and a member of Administrators and Users |
 |
|
 |
|
| 7. | Hope this is straight-forward enough and I’m able to share the power of Metasploit. Kudos to Metasploit Team! |
Google Map Earth – A Spam?
This morning, I received an email thru my Gmail account about Google Map Earth which I need to click for my email address confirmation. See below.
from Map Contacts contact@xinfonews.com
to michael {dot} mondragon {at} gmail {dot} com
date Wed, Feb 18, 2009 at 4:03 AM
subject Download New Map Contacts for Google EarthView your Friends & Family on Google Earth – Also explore the earth’s most viewed locations
Google Earth is a Free software which allows you to view the world from the comfort of your PC. There is now a great new add-on for Google Earth which allows you to easily map all your contacts.
Your Earth Code: 6208
http://xinfonews.com/re.php?lnk=1203401661&e=michael {dot} mondragon {at} gmail {dot} comThis great new feature allows you to display your friends and family on Google Earth and view their locations and surrounding areas.
Your Earth Code: 6208
http://xinfonews.com/re.php?lnk=1203401661&e=michael {dot} mondragon {at} gmail {dot} com- Easily add friends and family to your Google Earth
- Navigate and see the best locations earth has to offer
- Display your friends and family on the map for easy viewingOnce you receive this software be prepared to fly anywhere on Earth to view satellite imagery, maps, terrain, 3D buildings and even explore galaxies in the sky.
Your Earth Code: 6208
http://xinfonews.com/re.php?lnk=1203401661&e=michael {dot} mondragon {at} gmail {dot} comBest Regards,
Larry Walters
Map Contacts for EarthYou will not get anymore of our emails if you go here
http://xinfonews.com/
or write to:
Plaza Neptuno, local #7
Via ricardo J Alfaro, Tumba Muerto
Panama Ciudad
Republica de Panama
Actually, I did not subscribe on any mailing list, so how come that they know my email address then? Yes this is possible through some the use of spam software, web crawling (spiders) and email harvesting/random-guessin which I will try to create a separate post for this.
Anyway, I received this kind of spam mails even before, it just that I just got the time to post it here. Spammer is using related topic/information to lure users (including me of course) that the site and its content is legitimate (though the site is legitimate, of course), I still don’t know what or where will they use my email account – or probably they will sell it to any third parties. Whatever there reason is, it is annoying.
AVG – A Very Agressive Anti Virus
I’m just curious and doing some test with Dev-Cpp which I downloaded from Bloodshed for development IDE for C++, but for some reason, my AVG (Free Edition) detected as Trojan horse Generic 12.FKN for some reason. Their heuristic detection is quite aggressive, isn’t it?
My code is just 11-lines of code and its very simple though. 
