What was the site?
Joel R. Helgeson
Director of Networking & Security Services
SymetriQ Corporation
"Give a man fire, and he'll be warm for a day; set a man on fire, and he'll
be warm for the rest of his life."
- Original Message -
From: "Geraldo Rivera&quo
If someone installs a backdoor, that can be detected by AV scanner. If you
gain temporary shell, open up the management interface, you'll have full
control of the box without anyone becoming the wiser.
Joel R. Helgeson
Director of Networking & Security Services
SymetriQ Corporation
&q
Email me off list at [EMAIL PROTECTED] for your free
invite.
Joel R. HelgesonDirector of Networking &
Security ServicesSymetriQ Corporation
"Give a man fire, and he'll be warm for a day; set
a man on fire, and he'll be warm for the rest of his life."
someone is going to go through those pains to recover the data then there
are much easier ways to hack into/gain access to your secrets.
FWIW...
Regards,
Joel R. Helgeson
Director of Networking & Security Services
SymetriQ Corporation
"Give a man fire, and he'll be warm for a day; set
computers on my network, that are not within compliance?
-How do I report to Management that we have done all we could to lock down?
-How do I detect unknown and/or rogue devices/connections?
Joel R. Helgeson
Director of Networking & Security Services
SymetriQ Corporation
"Give a man fire,
"Just a day after Cisco released a security warning about its WLSE
access point management tool, a tool to crack wi-fi
networks using LEAP authentication has been released, reports Wi-Fi
Networking News. The tool, called Asleap and developed
by Beyond-Security, actively de-authenticates user
that he can put into his
resume' to spice it up... I always thought the default MCSE logo was a bit
booring so I spiced it up. Give it to your friend, or do whatever you wish
with it.
I'll attach it to this message (mcse.gif).
Enjoy... 8o)
Joel R. Helgeson
Director of Networ
Click here, then OPEN the file:
http://torrent.spyderlake.com/download.php?info_hash=f03fc1e04869294d5644d3c8c5d0fb8f2d26aa59
If you aren't familiar with Bit Torrent, Shame on you. Download it here:
http://bitconjurer.org/BitTorrent/
Joel R. Helgeson
Director of Networking & Security
Hell yeah, I just got BOMBARDED with a couple hundred bounce messages from
the MyDoom Virus, and I can say without question that I am not, nor have I
ever been infected with th e MyDoom Virus.
Joel R. Helgeson
Director of Networking & Security Services
SymetriQ Corporation
"Give a man
1) It spoofs the from: field - therefore it could show as coming from
anyone.
2) If someone opens the virus, it will propegate to all addresses in the
victims address book. If FD is in your address book, it'll send a copy to
the list - which has happened several times.
Joel R. Helgeson
Dir
I remember there being a website that was dedicated
to publishing information about unpatched IE vulnerabilities. I also seem
to recall that the site was voluntarily shut down at the request of Microsoft
for a period of time?
Can anyone offer any detail about this issue?
What is/was the
se. I am not a paid endorser of any
product, nor do I have any financial interest in any wireless gateway
company. I'm pretty sure they can now export the product overseas.
Regards,
Joel R. Helgeson
Director of Networking & Security Services
SymetriQ Corporation
"Give a man fire
There once was a sailor from Brighton,
who said to his girl "yer a tight one!";
She said, " 'pon my soul, but yer in the wrong hole,
there's plenty of room in the right one!"
Joel R. Helgeson
Director of Networking & Security Services
SymetriQ Corporation
"
name and password to the entire web!!
Joel R. Helgeson
Director of Networking & Security Services
SymetriQ Corporation
"Give a man fire, and he'll be warm for a day; set a man on fire, and he'll
be warm for the rest of his life."
- Original Message -
From: "T
ecode
Looks like they wanted to get someone into their site, but didn't want to
actually 'give' the username and password out, so they tinyurl'ed it.
Someone wanna perl script it and find a goldmine it all out?
Joel R. Helgeson
Director of Networking & Security Services
Syme
That reminds me of a joke:
What do you call a prostitute with a runny nose?
...
Full!
> Another from Tinyurl...
>
> From News.COM.AU:
> "War stress wears out prostitutes"
> http://tinyurl.com/49b
>
> And we thought we had it hard...
___
Full-Disc
e string.
Thoughts?
Joel R. Helgeson
Director of Networking & Security Services
SymetriQ Corporation
"Give a man fire, and he'll be warm for a day; set a man on fire, and he'll
be warm for the rest of his life."
___
Full-D
tools with precision
Tier III
- "Script Kiddies"
- Inexpert
- Ability to download exploit code and tools
- Very little understanding of the actual vulnerability (launching Linux
attacks against MS boxes)
- Randomly fire off scripts until something works
Joel R. Helgeson
Director of
e?
LOL, Just kidding...
Joel R. Helgeson
Director of Networking & Security Services
SymetriQ Corporation
"Give a man fire, and he'll be warm for a day; set a man on fire, and he'll
be warm for the rest of his life."
- Original Message -
From: "Stephen" <[
Does anyone care to wager how many security vulnerabilities Microsoft will
create by making this change?
Joel R. Helgeson
Director of Networking & Security Services
SymetriQ Corporation
"Give a man fire, and he'll be warm for a day; set a man on fire, and he'll
be warm for t
I came across an intersting event today. I haven't
been able to research it as much as I'd like, but I'd like to toss it out to the
community just the same.
A customers machine appears to be infected with
some type of malware that apparently harvests email addresses and puts them into
a fi
Its not any worse than the DMCA...
Joel R. Helgeson
Director of Networking & Security Services
SymetriQ Corporation
"Give a man fire, and he'll be warm for a day; set a man on fire, and he'll
be warm for the rest of his life."
- Original Message -
From: "mo
Well, it goes like this:
If you kill 1 man, you're a murderer
Kill 20, and you're a mass-murderering maniac.
Kill 6 million, and you're a revolutionary.
- Original Message -
From: "Georgi Guninski" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, October 01, 2003 2:06 PM
Subje
sPort Proto Path
432 Explorer -> 1024 TCP C:\WINDOWS\Explorer.EXE
432 Explorer -> 123 UDP C:\WINDOWS\Explorer.EXE
4 System -> 123 UDP
Any insight into this would be appreciated.
Joel R. Helgeson
"Give a man fire, and he'll be w
Why would any virus writer do this? This leads a clear audit trail that
would lead the authorities directly back to the creator.
I suppose it wouldn't be a bad thing if the virus author was looking for
some free room & board for the next 5-10 years.
Joel R. Helgeson
Director of N
#2
- Original Message -
From: "Arthur Corliss" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, August 21, 2003 3:11 PM
Subject: [Full-Disclosure] Re: Full-Disclosure digest, Vol 1 #1052 - 29 msgs
> > Date: Thu, 21 Aug 2003 10:43:02 -0700
> > From: Chris Cappuccio <[EMAIL PROT
Title: TCP port 25 traffic?
Yeah, I think its called SPAM, not new
though
Try connecting to your server via telnet on port 25
and see if you can get an interactive connection.
type in the following commands:
expn
vrfy
and see if they are accepted. If so, your
server is open to possib
How exactly does this differ from any other Host based IDS system?
- Original Message -
From: "Shanphen Dawa" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Saturday, August 16, 2003 7:13 AM
Subject: [Full-Disclosure] Execution Flow Control (EFC)
> This was posted to bugtraq.
>
> http
<[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, August 07, 2003 11:47 AM
Subject: Re: [Full-Disclosure] Red Bull Worm
> Joel R. Helgeson wrote:
> > Lets see, the last big worm to exploit windows was named Code Red after
the
> > Mountain Dew Code Red was brought to m
Lets see, the last big worm to exploit windows was named Code Red after the
Mountain Dew Code Red was brought to market. Being that this worm is much
more effective than Code Red ever was, I say worm should be named Red Bull
as it is sure to exhibit much more energy than the Code Red worm.
O
> > Also, full disclosure, including exploit code, frees you from the
> > obligation to believe in software vendor advisories and patches -
> > another critical issue, demonstrated again by the RPC/DCOM flaw:
>
> Exploit code *does not* solve the problem. I can do just as well by
> providing no c
If they did that, how could we write NESSUS plugins that would accurately
scan for vulnerabilities?
I say it'll never happen. Full Disclosure is the way to go.
Managing security by applying patches is fundamentally flawed. The
programmers need to write secure code. The onus is on them, not us.
Advertise your products in a magazine. Don't come here for free advertising.
Go fuck yourselves and your stupid product, we don't care!
"Give a man fire, and he'll be warm for a day; set a man on fire, and he'll
be warm for the rest of his life."
- Original Message -
From: "Executable Se
I just tested it against one of my test cisco routers.
nuthin happened.
"Give a man fire, and he'll be warm for a day; set a man on fire, and he'll
be warm for the rest of his life."
- Original Message -
From: "amilabs" <[EMAIL PROTECTED]>
To: "'amilabs'" <[EMAIL PROTECTED]>; <[EMAIL PROT
34 matches
Mail list logo