Inspiration
I simply wanted to create my own -fast- NTLM hash cracker because the other ones online are ether dead, not maintained, obsolete, or the worst one: a rip off.
Of course the greatest inspiration was this:
Intro
NTLM is the hash mechanism used in Windows. It’s usually what a hacker want to retrieve as soon as he/she gets into the system.
Cracking NTLM hashes can also help normal users or administrators to retrieve a password without having to reset it.
Please refer to
quick fix: copy the libraries from your program folder (including libcrypto) into your /lib/ folder) => cp lib* /lib/
Intro
I was lately surprised by my new ‘Ubuntu Server’ computer connecting back to a strange IP address: 91.189.92.11 on port 443! I immediately started investigating the case and did a whois lookup on the IP address to discover that the IP points to this domain productsearch.ubuntu.com – a page that will display a 403 Forbidden Error.
What is productsearch.ubuntu.com?
So apparently according to this website: If you’re an Ubuntu user and you’re using the default settings, each time you start typing in Dash (to open an application or search for a file on your computer), your search terms get sent to a variety of third parties, some of which advertise to you. Ubuntu should protect user privacy by default. Since it doesn’t, you can use the code to the left to disable the parts of Ubuntu which are invasive to your privacy.
You can also read more about Ubuntu 3rd parties: http://www.ubuntu.com/privacy-policy/third-parties
I have this Dell Inspiron 6400 ^ since my freshman year and I recently decided to revive it and use it as an Ubuntu Server. Unfortunately I faced a major issues with my WiFi, and I decided to share how did I overcame them.
While I was developing Auto CCleaner I faced a problem with allowing only one instant of the application. I found many solutions (using mutex) and others, but it didn’t work or it was inefficient. What I needed is a simple, easy, and efficient method. Hence I used little help from .NET Process class as follow:
I added this block to initialize (load) function:
|
1 2 3 4 5 |
if (Process.GetProcessesByName(Application.ProductName).GetLength(0) >= 2) { MessageBox.Show("Only one instance of the app is allowed!"); this.Close(); } |
Tada! Only a single instance is allowed now.
_
note: You need to add: using System.Diagnostics; at the beginning of your cs file.
You’ve seen before how I got targeted by thousands of brute force attempts and how I mitigated the attacks earlier in this post; however, I wanted to do something better and more efficient. A filter at the firewall to block all these attempts from even establishing a basic TCP connection with the HTTP server.
The Problem
One major problem is that these attempts were not coming from a single IP address. Attackers will use TOR to hide themselves and to have different IPs to over-come the first obstacles that is: blocking the attacker’s source IP address.
Lately this blog has been targeted by many attackers varying from brute force attacks to D-DOS. Although I couldn’t do much about DDOS (servers provider takes care of that), I was able to mitigate the brute forcing attacks on my wordpress. I’ve been using this trick for a while and it keeps bad guys away from my wp sensitive pages.
First let me share with you a snippet from my logs. (I know you love these 😛 )
Yep that is a 4167 attempts to penetrate wp-login.php form. Fortunately I know this was coming so after installation I simply created a filter using Apache .htaccess to filter out all connection to wp-login.php and wp-admin/ except the one coming from my IP address!
|
1 2 3 4 5 6 7 8 9 10 11 |
/********************************************************************************** * This is another SDE/SDET Job Interview Programming problem. * Problem: Identify whether a math expression is legal. * input: (4-3)[4+5] * output: valid * input: {4--][4+5] * output: invalid * notes: refer to http://www.asciitable.com/ to understand why I used c-2, c-1 * + : My program does not check invalid operations such: ++, --, etc.. * + : I ll leave that to you as an exercise (: **********************************************************************************/ |
Problem
|
1 2 3 4 5 6 7 8 |
//----------------------------------------------------------------------------------------------------------- // This is another SDE Job Interview programming problem. // Problem: Given an array of int {1,2,3,4,5,6,7,8,9...} build a function to swap its item. // // input: 1 2 3 4 5 6 7 8 9 0 // output: 0 9 8 7 6 5 4 3 2 1 // //---------------------------------------------------------------------------------------------------- |
WordPress Permalinks create RESTful link style like: blog/category/sub-cat/post-title. These are not actual directories in your Apache DirectoryRoot hence you cannot just set a subdomain to point to a WP Permalinks via DocumentRoot /var/www/category/blog/bla/bla/bla.
In my case I was trying to set security.addaxsoft.com to point to addaxsoft.com/blog/security. Many methods failed and the only trick that worked resides in RewriteRules and WordPress URL Parameters.
<VirtualHost *:80>
ServerName security.addaxsoft.com
DocumentRoot /var/www/
RewriteEngine On
RewriteRule . /var/www/index.php?category_name=[YOUR CATEGORY NAME]
</VirtualHost>
Recent Comments