Archive for March, 2007

Security Links !!

March 21, 2007

ArazSamadi have a nice list of security websites and weblog you can view this list here .

  • FIRST global security
  • netsec
  • Mega security
  • Digg security
  • Donna’s SecurityFlash
  • Symantec SR blog
  • Mike Rothman
  • ISC sans
  • Mike Rothman
  • frsirt
  • osvdb
  • milw0rm
  • secunia
  • nnov.ru security
  • National Vulnerability DB
  • ONLamp – Security
  • securiteam
  • SecurityFocus
    (list is long … read more )

    (more…)

    • Posted in Security Websites | 5 Comments »

    Cpanel BruteForce problems

    March 21, 2007

    some months ago i coded a perl script. this perl script is a Cpanel BruteForce .
    some visitors (damn to skidds) mail  me about “how to use it ?” or “how can i found password list for it?”.
    this script have not special password list and for example you can use milw0rm password list . and if this script have low speed use php script. and can other information about usage in script.

    [PLEASE DON'T ASK ME ABOUT THIS SCRIPT ]

    =====
    Site again started with new desing www.hessamx.net

    Posted in Other | 1 Comment »

    Exploiting Windows NT 4 Buffer Overruns

    March 15, 2007

    This paper show how to exploiting buffer overruns on windows nt 4.
    This document is for educational purposes only and explains what a
    buffer overrun is and shows how they can be exploited on the Windows
    NT 4 operating system using RASMAN.EXE as a case study. We will take a
    look at Windows NT processes, virtual address space, the dynamics of a
    buffer overrun and cover certain key issues such as explaining what a
    stack is and what the ESP, EBP and EIP CPU registers are and do. With
    these covered we’ll look into the buffer overrun found in RASMAN.EXE.
    This document may be freely copied and distributed only in its
    entirety and if credit is given.
    View this paper .

    Posted in Exploiting, Papers | Leave a Comment »

    Month of PHP Bugs

    March 6, 2007

     Month of PHP Bugs started and now have 13  advisrories :
    1 – PHP 4 Userland ZVAL Reference Counter Overflow Vulnerability
    2 – PHP Executor Deep Recursion Stack Overflow
    3 – PHP Variable Destructor Deep Recursion Stack Overflow
    4 – PHP 4 unserialize() ZVAL Reference Counter Overflow 
    5 – PHP unserialize() 64 bit Array Creation Denial of Service Vulnerability
    6 – Zend Platform Insecure File Permission Local Root Vulnerability
    7 – Zend Platform ini_modifier Local Root Vulnerability
    8 – PHP 4 phpinfo() XSS Vulnerability (Deja-vu) (!!)
    9 – PHP wddx_deserialize() String Append Buffer Overflow Vulnerability
    10 – PHP php_binary Session Deserialization Information Leak Vulnerability 
    11 – PHP WDDX Session Deserialization Information Leak Vulnerability
    12 – mod_security POST Rules Bypass Vulnerability 
    13 – PHP 4 Ovrimos Extension Multiple Vulnerabilities

    Posted in Other | 1 Comment »

    malware analysis (Nailuj)

    March 4, 2007

    again analysis a malware .”The malware, named Nailuj by some antivirus companies, is composed of 3 files: VideoAti0.exe, VideoAti0.dll and VideoAti0.sys. I won’t talk about all the files, but will focus my attention on only one, the sys file. This malware represents a nice target for those who want to approach a malware for the very first time because it uses well-known techniques, such as hiding files and hooking functions. Nothing hard once you have dealt with them at least once. In addition, the sys file is compiled in debug mode and every operation performed by the malware is documented inside the code. Yes, every time it does something it reveals its success or failure, printing out a comment using DbgPrint function. This is really useful because you know what it will do before starting to analyze the code, not so bad”
     (more…)

    Posted in Analysis, malware | Leave a Comment »