Archive for category /dev/urandom
Goals
Posted by scriptjunkie in /dev/urandom on March 11, 2017
In any complex system, a solution that best meets one goal will fall short in other areas. Computer programs to solve nearly any problem in the fastest manner will not be the algorithms that use the least memory. Solutions that can be written in the least amount of time will neither be the fastest nor […]
Defying Analysis With Sparse Malware
Posted by scriptjunkie in /dev/urandom on August 19, 2016
If you’re writing tools for red teaming or pentesting, the main point of your backdoors, or implants as people are starting to call them, is to enable remote control of a system without being detected. If that fails, and your backdoor is found, the next best option is to avoid analysis so any of your […]
Installing Linux on a Live Windows System
Posted by scriptjunkie in /dev/urandom on February 4, 2014
As you may know, I run the Red Team for the Collegiate Cyber Defense Competition (CCDC) in the southwest region. One of the more interesting things I put together for the regional competitions this year was a way to install Linux remotely over a command-line interface (such as meterpreter). I actually originally wrote it for […]
Adding Easy SSL Client Authentication To Any Webapp
Posted by scriptjunkie in /dev/urandom, webapps on November 30, 2013
Let’s face it, if you are using passwords on your web site or application, you are part of the problem. It doesn’t matter if you’re using bcrypt or scrypt, or all the salt in the world, you’re still perpetuating these 11 password problems and pains. But client certificate authentication and even issuance is actually easy with modern browsers. Want to see how easy it can be? Check out the example below.
The Infosec Revival – DerbyCon 2013
Posted by scriptjunkie in /dev/urandom, Defense on September 29, 2013
DerbyCon this year was awesome as usual. I presented “The Infosec Revival: Why owning a typical network is so easy, and how to build a secure one.” The video is here on Youtube: Or you can check out the slides here: The RDP video is here: And the VM isolation video is here: I should […]
Secure random password generation
Posted by scriptjunkie in /dev/urandom, Crypto on September 8, 2013
Ideally you never use a password, but sometimes, you have to anyway. One very common scenario is in signing up for a web application. Such passwords can be stored on the server, hashed with a fast algorithm such as MD5, and over which you have no control. You do not want your password to be […]
Economics in One Lesson
Posted by scriptjunkie in /dev/urandom on March 13, 2013
This is off the security topic, but I was really excited to find this online, so deal with it. Everyone who votes needs to understand this. We have all heard the fallacies before, and it’s hard not to disagree. When people need jobs, why can’t the government create jobs with public works projects? Don’t all […]
Authenticated Remote Code Execution Methods in Windows
Posted by scriptjunkie in /dev/urandom, Defense on February 3, 2013
All of the below are supported ways of remotely executing code that are built-in to Windows. If psexec isn’t working since a service is not running or ports are blocked, you can try all these other options; defenders who want to detect intruders moving through the network need to detect all of these; incident responders might want to look for evidence of these…
Running Code From A Non-Elevated Account At Any Time
Posted by scriptjunkie in /dev/urandom on January 2, 2013
You may have found yourself in a situation where you have access to a system through a limited user account, or could not or did not want to bypass UAC (AlwaysOn setting for example) and you needed to continue running code even when the account logged off and/or the system rebooted (and even if you […]
Attack Test
Posted by scriptjunkie in /dev/urandom, Defense on December 23, 2012
Well, the Mayan Apocalypse came and went, and since we’re all still here, it’s time to get back to computer security. It shouldn’t be a surprise that the most likely way you’ll get exploited is through your browser, so you should routinely check for vulnerabilities there. I was inspired by some of the free browser […]