Friday, June 29, 2007

Defeating NOD32 AV


Defeating NOD32 AV

Ok I am going to claim victory over NOD32 but only on a technicality. But hey, I aint proud, I'll take it.so if you upload any malware, nod32 like a good AV, will give you an alert (that's good)meterpreter > upload hxdef100.exe hxdef100.exe[*] uploading : hxdef100.exe -> ...

Read More
CG

Sunday, June 17, 2007

Sunday Comic Fun


Sunday Comic Fun

Linux User At BestBuy...website: http://imgs.xkcd.co ...

Read More
CG

Saturday, June 16, 2007

Antivirus and Rootkits part 2 -nod32


Antivirus and Rootkits part 2 -nod32

More on killing AV...McAfee enterprise 8.x was kicking my butt with the killAV script so i decided to try NOD32 version 2.7. didnt go much better. it would at least kill the processes but the nod32krn.exe would just start back up automatically with a new PID :-(meterpreter > run killav[*] Killing ...

Read More
CG

Thursday, June 14, 2007

Quantifying Security using Metrics


Quantifying Security using Metrics

There is a great deal of valuable data that can be gained from the penetration test element of an assessment. Knowing whether or not your perimeter, for example, is secure and validating that knowledge is important. Looking at the scope of the assessments that I have recently been working on I think ...

Read More
dean de beer

Tuesday, June 5, 2007

Antivirus and Rootktis


Antivirus and Rootktis

So i was working on a article on using HackerDefender rootkit. Hopefully it will be published soon, i'll update on that when/if it happens. During the course of doing the demo for it i wanted to see how the metasploit killAV meterpeter script would do against mcaffee. it didnt do well at all, the ...

Read More
CG