Over the last week or so a number of new tools have been release either for the first time or as updated versions: tcpreplay is now at version 3.4.0 with a number of significant bugfixes. This staple of packet analysis allows for the replay of captured pcap file back over network interfaces. Its a great [...]
Security Tools update
February 6th, 2009 · 1 Comment
Tags: tools
WordPress and dealing with incoming hacks
June 7th, 2008 · No Comments
The other day morning stated out with a conversation with darb that went as follows: DARB: so…wordpress hey? BVI: I got over writing my own code BVI: now I’m waiting for my blog to be 0wn3d DARB: you know wordpress is the equivalent of an 8ft tall ogre that stands outside looking pretty, smashes tables [...]
Tags: Incidents · Security · Uncategorized
Layer 2 security is still important
June 4th, 2008 · 1 Comment
Richard Bejtlich posted a few days ago about the ‘hack’ on the Metasploit webserver as reported by SunBelt. What is interesting is that the actual website wasnt compromised, but rather another system on the same VLAN at the hosting provider which then performed some ARP spoofing magic against the gateway, in effect redirecting traffic to [...]
