|
Hacker
challenge: pwn3d the login form.
August 15, 2008
I came up with this pwn3d zit3 login form challenge, to kind of expose one of the many web application vulnerabilities; it consists of a login form which atuthenticates against a mysql backend database to give authorized access to the members only part of the web site. The goal is to login with full administrator rights and get the users list data stored in the mysql database....
Pentesting
MS SQL Server with SQLat, and Cain.
July 29, 2008
Ok, by now you probably now how much I enjoy hacking, ehm, ehm...sorry!,
pentesting. Well for this tutorial I will be pentesting MS SQL
Server with SQLat, Freetds, and Cain. Database store and provide
access to information and information is power. Sensitive data such
as bank account numbers, credit reports, and lots of other important
information can be obtained from an insecure database..
Pentesting Web Servers with Telnet,
HTTPrint, Nikto, and Nessus.
July 16, 2008
for this tutorial I use some of the
tools used most often for pentesting web server and web application;
open source tools like Telnet, HTTPrint, Nikto, and Nessus, I will
be using this tools to perform: Information Gathering, Scanning,
Command Execution Attacks.
Digital
Forensic II: Data Carving with Foremost.
July 3, 2008
This tutorial is the
second part of the Digital Forensic series. Digital Forensics is a
relative new discipline that has captivated
my attention. For this demo I plan to do some data carving with
backtrack 3 distribution and foremost targeting specific files like
images, word docs and pdfs...
Backtrack 3: Digital forensic I: Vinetto and Pasco.
July 1, 2008
For this tutorial I decided to take the
digital forensic tools in backtrack for a test drive, I will be
retrieving and analyzing data from a specific user’s hard-drive and
searching through the media for artifacts such as browser history,
images, email.
"Change of
website name
to Pctechtips.org"
June 18, 2008
I decided to change the website's DNS name from
Pcteckonline.org to
Pctechtips.org,
since it was available, it is shorter and easier to
remember...update your browsers links and favorites as the
redirection from the old name will expire soon, hope you keep
enjoying the tutorials, and thanks for all the emails.. the good and
the bad ones :0)
Backtrack: cracking WEP
key with aircrack-ng
June 14, 2008
In this tutorial I go over the process of cracking
wep encryption for wireless network. Here I demonstrate why
configuring your network with wep encryption is not such a good
idea, as anyone with the right tools can crack it in a manner of
minutes
Secure
browsing with SSH tunnel
June 9, 2008
In this new tutorial I will show how to setup an SSH
tunnel to browse the internet over an encrypted connection, which
makes your internet session secure, this is very useful if you
happen to be at an unsecured network like open wireless hotspot like
a coffee shop, a convention, etc..
Netcat (The Swiss
Army Knife): useful commands
June 7, 2008
In this tutorual will go over the most useful netcat
commands. Netcat is a tool that every IT professional should have in
their tool box, if you're responsible for network or systems
security, it is essential that you understand the capabilities of
netcat. The original version of netcat is a
UNIX
program. Its author is known as
Hobbit. He released version 1.1 in March of 1996. Netcat is
available for Unix and Windows OS.
Partimage: Creating and
restoring windows image.
May 30, 2008
Have you ever experience a file system error, virus,
disk failure, data corruption?, if you've experience some of this
problem you know it's hard to recover from some of this problems,
well with partimage you just have to restore the partition and in
about 10 minutes you should be back with the original partition,
also you could write the image to a CD, DVD, or even across the
network if you want to save disk space. In this tutorial I will go
over the process of saving/restoring an image of your windows (ntfs)
partition.
IPCop
firewall II: IDS(Snort) and Iptraf addon.
May 12, 2008
In this
second part of IPCop firewall tutorial, we'll go over IDS(snort) and
Iptraf addon. I consider Ipcop a robust firewall, and one of its
main feature is the ability to detect attacks as they happen on the
network (Snort), also another good feature of IPCop is the addons,
through addons you can easy install lots of application, that do not
come included in the IPCop installation, like Iptraf, Dansguardian,
Openvpn, Asterisk among others.
IPCop firewall I: installation.
April 27, 2008
If you
want to protect your network from the internet, one of the things
you need is a firewall, in this tutorial I will show you how to
install ipcop firewall, for this all you need is an old pc and the
free ipcop installation software. IPCop doesn't require a lot of
hardware to run, it will run on 64M of memory although I recommend
at least 128M, it all depends on how many services you're planning
to run, also it doesn't require a lot of hard drive, unless you're
planning to do a lot of logging, and web cache, and finally
processor speed it's not really that important….
Click here to continue.
Wireshark
III:
Analyzing Basics Protocols
april 6, 2008
This
tutorial contains some very important information about protocols,
and could help understand each protocol and give you a baseline for
analyzing protocols that you suspect are not working properly. I'll
go over each protocol and discuss how each one functions, including:
ARP, DNS, DHCP, ICMP, TCP, IP, HTTP.
Next Page...
Web Master: Mr. Jorge L. Vazquez.
|
