Posted by Kedar at 9 November 2012

Category: Infosec

Intro to X86 : [http://www.ethicalhacker.net/content/view/152/2/]

Basic Reversing [http://www.reversing.be/article.php?story=20060112212536583]

R4ndom’s Tutorials: On Windows using OllyDbg  [http://thelegendofrandom.com/blog/sample-page]

Open Security Training classes :

Intro to X86: [http://opensecuritytraining.info/IntroX86.html] [12+ hrs of HD Videos + slides + code]

The instructor, Xeno Kovah does an awesome job in explaining assembly on X86.

Intermediate X86: [http://opensecuritytraining.info/IntermediateX86.html] [HD videos + slides + code]

Introduction to Reverse Engineering: [http://opensecuritytraining.info/IntroductionToReverseEngineering.html] [HD videos + slides + code]

The ‘Intro to X86′ class is required before you watch Intro to RE. Or you must already know basic assembly.

Reverse Engineering Malware [http://opensecuritytraining.info/ReverseEngineeringMalware.html] [scripts/code + lecture material]

Tuts4You : [http://forum.tuts4you.com/index.php] A Forum on RE, packers/unpackers, crackme’s etc.  

BlackStorm Team : [http://portal.b-at-s.net/download.php] Various tutorial series on RE, unpacking  

ARTeam [http://www.accessroot.com/arteam/site/download.php?list.10]

Several useful links in this discussion thread : [http://www.kernelmode.info/forum/viewtopic.php?f=13&t=1098&sid=e8372d5db5fb0c0d31e25f00b52bfac0]

Dr. Fu’s Blog : [http://fumalwareanalysis.blogspot.in/2011/08/malware-analysis-tutorial-reverse.html]

Reversing Malware Loaders, Infosec Institute : [http://resources.infosecinstitute.com/reversing-malware-loaders/]

Specific series from Tuts4You : Lenas Reversing for newbies : [http://tuts4you.com/download.php?list.17]

Secrets of Reverse Engineering : [http://www.amazon.com/Reversing-Secrets-Engineering-Eldad-Eilam/dp/0764574817/ref=pd_bxgy_b_img_c] [book]

Reverse Engineering 101 [http://www.securitytube.net/video/3978]

Reverse Engineering Malware [http://www.windowsecurity.com/articles/Reverse-Engineering-Malware-Part1.html]

That is all.

Posted by Kedar at 9 November 2012

Category: Infosec

The Shellcoder’s Handbook [Amazon.com: The Shellcoder's Handbook: Discovering and Exploiting Security Holes (9780470080238): Chris Anley, John Heasman, Felix Lindner, Gerardo Richarte: Books] [book]

Hacking: The Art of Exploitation [Amazon.com: Hacking: The Art of Exploitation, 2nd Edition (9781593271442): Jon Erickson: Books] [book]

A Guide to Kernel Exploitation [Amazon.com: A Guide to Kernel Exploitation: Attacking the Core (9781597494861): Enrico Perla B.Sc. Computer Science University of Torino M.Sc. Computer Science Trinity College Dublin, Massimiliano Oldani: Books] [book]

Intern0t forums [http://forum.intern0t.org/hacking-exploiting/]

Exploit Development with Ruby [http://archive.org/details/ExploitDevelopmentWithRuby]

Introduction to Software Exploits | Open Security Training [http://opensecuritytraining.info/IntroductionToSoftwareExploits.html] [HD videos + code + slides]

Corelan Team [https://www.corelan.be/index.php/category/security/exploit-writing-tutorials/]

Exploit-exercises [http://exploit-exercises.com/] Not any tutorial or training as such, but exploitable VMs for download.

http://securityreactions.tumblr.com/ <- Very important!

Posted by Kedar at 6 September 2012

Category: Hardware

Tags: ,

Posted by Kedar at 6 September 2012

Category: Hardware

Tags: , ,

DSM Mobile and Multimedia Apps

What good is a NAS if it doesn’t offer multimedia capabilities and you can’t stream HD content or listen to your entire music collection on the go?

DSM on the DS112j offers services for almost all your media.

The apps available on Android and iOS are DS File, DS audio, DS Photo+, DS Finder, and DS Cam.

But there is no single app that does it all.

DS File just enables you to browse, list and transfer any files you are permitted to on the NAS. It uses the WebDAV protocol, which must be enabled in the control panel of DSM. The Feature description states that it can “Stream” video, but it just downloads it first and then plays the same.

DS Audio, as the name suggests, enables you to access the music you have stored on the NAS, via the Audio Station service that runs on DSM

Its comparable to any decent audio player, with Playlists and sorting according to each audio property.

You can list according to folders, artists, genre, albums, etc.

One requirement is that the Audio Station service has to be

Installed and running on the NAS. Only then will DS Audio work.

DS Finder helps you monitor the status of your NAS. Yes, that’s it.

You can get the same info, via DSM Mobile, which is the mobile version of DSM that shows up when you login from a mobile device browser.

DS Photo+ is a bit disappointing to use. High-res photos in the range of 2-3 MB do take up a lot of time to preview and show up in the app.

The DSM can also run a Service called media server with which you can stream videos and music to any DLNA enabled device, like your Television set or smartphone

The DS Photo app could do with some work, and a dedicated mobile app instead of the web interface would be better.

Posted by Kedar at 4 September 2012

Category: Android

Tags: ,

(Not in order)

Posted by Kedar at 24 May 2012

Category: Software

Tags: ,

We’ve been using WinRAR / WinZip / 7-Zip and other archive manipulation software. Most of them free. MagicRAR is different, not just because you have to pay for it (Cost of software + yearly subscription) . But it could be well worth it.

Shell Namespace Extension Technology:
So Easy it Feels Like Magic!
Find Smallest Archive:
Benchmark Compression Algorithms
Designed for SSDs:
Process Multiple Archives Simultaneously
Transparent Full Disk Compression:
Full Live Access to Your Data
Intelligent “Extract to Subfolder”
Skips Unneeded Folder Creation
Plug-In Extensible:
Add Support for New Archive Types
Outlook Add-In:
Transparent E-mail Attachment Compression
 1
Browse Windows XP Mode Files:
Navigate and Copy Files from Windows XP Mode Folders
VMware/Virtual PC Hard Disks:
Browse Inside VMDK and VHD Files without Pre-Mounting
Unified 32-64 Bit Installer:
Automatically Install the Correct Files for Your OS
Recursive Extract:
Extract Multiple Nested Archives in a Single Pass

To the left is WinZip and to the extreme right WinRAR. As you can see it completely pwns them in terms of features. The one thing that interested me was the full disk encryption feature.

This is a screenshot on their website which tells us the extent to which the contents of a disk can be compressed and used normally at the same time.

Which is simply staggering. ( Almost a 3x increase in free space). Upon noticing that the files apparently compressed by MagicRAR have the Windows option of ‘Compress contents to save disk space’ enabled, I am a bit skeptical (that MagicRAR is doing anything here) . And then again, upon compressing a few folders on my main machine using the Windows feature, there was absolutely no difference in the space occupied. But I can say that MagicRAR works.

Another feature (which may not be as interesting) is the ability to browse inside VMDK and VHD files (used by Virtual machines)

And you can see the rest of the features in the table above. ‘Find smallest archive’ benchmarks different compression algorithms for the folder in question and will tell you which type of encryption will lead to the lowest space being occupied.

I installed the software on a Win7 VM, and just skipped whenever it asked my to enter a serial key. Which should obviously stop happening after 30 days or so.

Then I immediately turned to compressing the whole drive.

This is the amount of free space  I had before compression:
Drive Press has been enhanced in this version. If you recompress your drive with it again, you will gain even more free space, as described at http://www.magicrar.com/drive-press.html.

The process is fairly simple, start MagicRAR Drive Press, select the drive and keep on clicking next.

Then it will analyze the disk:

It was already looking promising and the final steps showed a 3GB increase in free space.

Then begins the compression process. Which takes quite some time, naturally.

And finally, this was the amount of space I gained.

For $29.95 + $9.95 each year. I think it is well worth it, taking into consideration other features of course.

As the creator of MagicRAR, Simon King,  points out in the comment, my favourite feature has been improved!

Drive Press has been enhanced in this version. If you recompress your drive with it again, you will gain even more free space, as described at http://www.magicrar.com/drive-press.html.

If I had access to my Windows box, I would test the feature immediately, but that will have to wait until my machine gets fixed.

 

 

Posted by Kedar at 20 May 2012

Category: Linux, Script

Tags:

Nmap has an option to output the scan results to an XML file. But that is not exactly easy to read. We’ll use another tool in Linux to convert the XML file to HTML.

nmap -sV --version-all -F 192.168.1.1 -oX -output.xml

This is a simple version scan for the most common ports.

To convert it to a nice-looking HTML report, we use xsltproc

xsltproc output.xml -o report.html

Posted by Kedar at 19 May 2012

Category: Infosec

Tags:

First of all, I’m no professional, just a learner. They say one remembers better if one writes it down. Well, who uses a pen and paper anymore, so this is the way I decided to put it. There will be mistakes, not all information put here is absolutely correct. You may know more, know correct and I will appreciate if you could leave a comment.

Gathering information about the target domain is best done via public resources. This way you don’t have direct contact with the company in question. You would want to keep it that way most of the time in a black-box test.

Archive.org is a good place to get snapshots of website. For eg; they have snapshots of Google going back up to 1998.

While not all sites may be crawled regularly or even be in their database, it is a good place to start. Note that not all snapshots are useful (some have broken links/images) but it is something.

Next up is Alexa that gives more website info.. etc etc. (boring)

Something more interesting than Alexa is DomainTools.

It will tell you how many Registrars it has been with, IP and Whois history along with how many sites are hosted on the same server. But the sad part is, the actual history is only accessible if you have a paid membership. Moving on then.

To check other sites hosted on the same server, you can use:  sameip.org

Another great site to check about people themselves is pipl – People Search

Upon entering my email it pulled up my YouTube/Ustream/Disqus/Xfire profile, and a whole different section for Social Network, which is again, unfortunately, a paid service. But the free preview was enough to scare me. You cannot simply stay anonymous once you use that email account.

There are a few other services like pipl but those contained info that was seriously outdated. (Facebook profiles that didn’t exist anymore, oh wait…)

And I’ve kept the best for last.

Many times we risk being logged when performing a ping/traceroute etc. For that there is serversniff.net.

Still much stuff to be discovered on that website.

Another worthwhile mention is TinEye that acts much like Google’s image search(where you upload an image and google finds the closest match and where it came from).

TinEye puts it in a more presentable manner with a few options.

Hopefully, I will take the effort and write more as I keep learning. If you have something to add to the list, do leave a comment.

Posted by Kedar at 24 March 2012

Category: Android

Tags: , ,

The whole set is available for Download at the deviantART link at the bottom of the post.

Free Image Hosting Free Image Hosting Free Image Hosting Free Image Hosting Free Image Hosting  Free Image Hosting Free Image Hosting Free Image Hosting Free Image Hosting

Download [deviantART]

Posted by Kedar at 28 January 2012

Category: Android

Tags:

Android

Calibrating your Android Battery won’t make it last longer, but report its status more accurately:

Whenever you flash a new/custom ROM or you feel your battery is mis-calibrated, follow the steps:

Install this app from the Android Market: Battery Calibration

Completely discharge your phone battery; either let the phone shut down on its own, or multi-task/play music/videos, etc to make the process faster. After the phone is down, try to start it up after 5 minutes. If it starts up, drain again, if it doesn’t then it is completely discharged.

Charge your phone using a wall outlet, USB charging is not recommended. And do not switch the phone on, just let it charge, it will display a battery indicator as soon as you start charging. Let it charge for 8 hours continuous.

After 8 hours, switch it one, while still plugged in(charging). Stop charging and remove the connecting wire. Use the phone until battery drops to around 98-97%. Plug it in again, let it charge while being switched on. (Till 100%)

Open up the battery calibration, remove the phone from the wall outlet(stop charging) and hit the big Battery Calibration button immediately.

Your battery is now calibrated.