Daily Dave (dailydave) Mailing List

Citrix, PHP, SyScan,

Fri, 3 Jul 2009 07:06:06 -0400

Posted by Dave Aitel on Jul 3

The sign of a good hacker is often that they make it look really stinkin'
easy. Like today at SyScan 09 (Singapore) Brett Moore went from "remote
anonymous" to "domain admin" in about 5 clicks using various Citrixy things
(live demos are fun!). As he says "You can...

Re: So shellcode work is phun

Tue, 30 Jun 2009 11:28:00 -0400

Posted by Dave Aitel on Jun 30

So today, in class, at the very end of the day, one of the students go his
bindshell working. And he was connecting to it happily and quite pleased
with himself and checking out his admin cmd.exe in taskmanager until we
pointed out that he should probably bind to localhost instead of 0.0.0.0,...

Re: So shellcode work is phun

Mon, 29 Jun 2009 00:42:09 -0700

Posted by Chris Eagle on Jun 29

Perhaps relevant:

http://www.harmonysecurity.com/blog/2009/06/retrieving-kernel32s-base-address.html

Chris

Jared DeMott wrote:
> Dear Dave,
>
> Just for phun, I sat down to test a simple popup calc shellcode on
> Windows 7 RC today and it pooped. I verified that it worked on...

Google has a Cloud and You have a Fog part 2 :gt

Mon, 29 Jun 2009 03:11:19 -0400

Posted by Dave Aitel on Jun 29

Great blog on the subject of scalability from the ops manager at Google.
http://vijaygill.wordpress.com/

Article on recent talk (well worth reading):
Basically, Vijay Gill is like "Yeah, you're doing it wrong" to the guys who
run the infrastructure for Microsoft and Yahoo. You can't...

SOURCE Barcelona Speaker Line-Up

Sun, 28 Jun 2009 20:32:12 -0400

Posted by Christien Rioux on Jun 28

SOURCE Barcelona 2009 Announcement
...

Shakacon III - Presentations Posted to site

Sat, 27 Jun 2009 14:07:08 -1000

Posted by Shakacon on Jun 27

Aloha from Hawaii and the Shakacon 2009 Crew:

All speaker presentations have been posted to http://www.shakacon.org.
Enjoy!

Selected audio to be posted in the next Month or so.

Shakacon the Home of:
-Sun
-Surf
-C Shells

See you next year!

This message contains confidential information...

Metasploit Track at Blackhat

Mon, 22 Jun 2009 22:34:15 -0600

Posted by val smith on Jun 22

Just thought some of you might be interested, after tons of work and
coordination it's official, we will have a full day Metasploit track
at Black Hat this year.
http://www.blackhat.com/html/bh-usa-09/bh-usa-09-schedule.html. Dino,
cg, egypt, I)ruid, myself and several others will be...

So shellcode work is phun

Fri, 26 Jun 2009 14:16:43 -0400

Posted by Jared DeMott on Jun 26

Dear Dave,

Just for phun, I sat down to test a simple popup calc shellcode on
Windows 7 RC today and it pooped. I verified that it worked on XP and
Vista, and thought darn ... now I'm going to have to see why it failed
on Windows 7 and email H D Moore. Anyone else seen this or am I on
...

web browser cloud computing (Opera with upnp)

Tue, 16 Jun 2009 20:22:20 +0200

Posted by RQDQ on Jun 16

The norwegians are up to something...
Opera launched this today:

http://www.opera.com/press/releases/2009/06/16/

Which is short terms sums up to be:

- "Webserver" in the web browser
- Launch listening applications (like chat) and share info, files,
data through the browser
-...

Scalability - youre doing it wrong! (Or why Ants dont talk)

Tue, 16 Jun 2009 10:19:18 -0400

Posted by Dave Aitel on Jun 16

A while back someone I knew was trying to solve some sort of crypto-related
problem. He ended up saying "I can do it quickly and easily if it's under 40
bits" at which point another mathematician friend of mine rolled her eyes
and said "If it's that small, just exhaust."

...

Re: [Full-disclosure] Apple QuickTime 0day

Mon, 15 Jun 2009 16:36:41 -0400

Posted by Jared DeMott on Jun 15

Excellent. Doesn't trigger on Mac. I just did a talk on QuickTime
hacking at ShakaCon III -- which btw -- can I just say "best place for a
con ever!". My slides are at www.vdalabs.com. The slides might give
you some insight into the types of exceptions you're hoping for....

Re: XSS10000

Fri, 12 Jun 2009 14:32:09 -0700

Posted by Nate Lawson on Jun 12

Rauc wrote:
>> I have to admit this is in the top 10 "hacking contest" fails of all
>> time.
>
> I am not sure that this is really a fail. For only $10k, he managed to
> get a penetration test that involved numbers of hackers. Sure the
> product failed to...

Re: Web Security Is Hard

Fri, 12 Jun 2009 14:29:04 -0700

Posted by Nate Lawson on Jun 12

Jamie Riden wrote:
> OK, might as well run this by everyone.
>
> IV ++ AES/CBC/PKCS7 padding - encrypted block ++ SHA1-HMAC of secret data
>
> if the HMAC doesn't come out same as computed for decrypt we just
> abort. What's wrong with the above? (assuming we get our...

CFP: ComputationWorld 2009, November 15-20, 2009 - Athens, Greece

Thu, 11 Jun 2009 23:59:15 +0200

Posted by Jaime Lloret Mauri on Jun 11

INVITATION

Please consider to contribute and encourage your team members and fellow
scientists to contribute to the following federated events.

Thanks for forwarding the information on this Call for Submissions to
those potentially interested to submit.

===== Call for Submissions =======

...