Menu

#ethicalhacking

Practical Attacks To Test The Security Of Computer Systems Using Linux

Learn More

#hackerspace

is a place for creativity, collaboration, research, development and, of course, education.

Learn More

#thewholeworld

No borders, no limits (not even the sky not even the space), just land and sea.

Learn More

Wednesday, November 27, 2019

Arch Linux to System Rescue CD

           No comments   
pacman -S acl adobe-source-code-pro-fonts adwaita-icon-theme alsa-lib amd-ucode arch-install-scripts archlinux-keyring argon2 atk atkmm atop at-spi2-atk at-spi2-core attr audit avahi b43-fwcutter bash bc bind-tools bluez-libs borg btrfs-progs bzip2 ca-certificates ca-certificates-mozilla ca-certificates-utils cairo cairomm cantarell-fonts ccid celt0.5.1 chntpw cifs-utils clonezilla colord coreutils cpio cracklib crda cronie cryptsetup curl darkhttpd db dbus dbus-glib dconf ddrescue desktop-file-utils device-mapper dhclient dhcpcd dialog diffutils ding-libs dmapi dmidecode dmraid dnsmasq dnssec-anchors dosfstools double-conversion drbl e2fsprogs ecryptfs-utils efibootmgr efitools efivar elinks ethtool exfat-utils exo expat f2fs-tools file filesystem findutils flac flex fltk fontconfig freetype2 fribidi fsarchiver fuse2 fuse3 fuse-common garcon gawk gc gcc-libs gcr gdbm gdk-pixbuf2 geany geoip geoip-database gettext git glib2 glibc glibmm glib-networking glu gmp gnome-icon-theme gnome-icon-theme-symbolic gnome-themes-extra gnu-netcat gnupg gnutls gparted gpgme gpm gptfdisk graphite grep grml-zsh-config groff grsync grub gsettings-desktop-schemas gssproxy gtk2 gtk3 gtkmm gtk-update-icon-cache gzip harfbuzz haveged hdparm hicolor-icon-theme hidapi htop hwids iana-etc icu iftop inetutils intel-ucode iotop iproute2 iptables iputils ipw2100-fw ipw2200-fw irssi iso-codes iw iwd jansson jasper jfsutils joe js52 json-c json-glib kbd keepassxc keyutils kmod krb5 lbzip2 lcms2 ldns less lftp libaio libao libarchive libassuan libatomic_ops libbsd libcanberra libcap libcap-ng libcroco libcups libdaemon libdatrie libdmx libdrm libedit libelf libepoxy libevdev libevent libexif libffi libfontenc libgcrypt libglvnd libgpg-error libgssglue libgudev libgusb libice libidn libidn2 libimobiledevice libinput libjpeg-turbo libksba libldap libmm-glib libmnl libndp libnetfilter_conntrack libnewt libnfnetlink libnftnl libnghttp2 libnl libnm libnma libnm-glib libnotify libnsl libogg libomxil-bellagio libpcap libpciaccess libpgm libpipeline libplist libpng libproxy libpsl librsvg libsamplerate libsasl libseccomp libsecret libsigc++ libsm libsndfile libsodium libsoup libssh2 libtasn1 libteam libthai libtiff libtirpc libtool libu2f-host libunistring libunwind libusb libusbmuxd libutempter libutil-linux libvorbis libwacom libwbclient libwnck libwnck3 libx11 libxau libxaw libxcb libxcomposite libxcursor libxdamage libxdmcp libxext libxfce4ui libxfce4util libxfixes libxfont2 libxft libxi libxinerama libxkbcommon libxkbcommon-x11 libxkbfile libxklavier libxml2 libxmu libxpm libxrandr libxrender libxres libxshmfence libxt libxtst libxv libxvmc libxxf86dga libxxf86vm libyaml licenses lightdm linux-api-headers linux-atm linux-firmware linux-lts linux-lts-headers llvm-libs lmdb lm_sensors logrotate lrzip lshw lsof lsscsi lua51 lua lvm2 lz4 lzip lzo lzop m4 man-db man-pages mc mdadm memtest86+ memtester mesa mkinitcpio mkinitcpio-busybox mkinitcpio-nfs-utils mlocate mobile-broadband-provider-info mpfr mtdev mtools nano nbd ncdu ncurses ndisc6 netctl nettle net-tools networkmanager network-manager-applet networkmanager-openvpn networkmanager-vpnc nfsidmap nfs-utils nilfs-utils nmap nm-connection-editor npth nspr nss ntfs-3g ntp nvme-cli openconnect openresolv openssh openssl-1.0 openssl openvpn opus p11-kit p7zip pacman pacman-mirrorlist pam pambase pango pangomm partclone parted partimage pbzip2 pciutils pcre2 pcre pcsclite perl perl-error perl-mailtools perl-timedate perl-uri pigz pinentry pixman pixz pkcs11-helper polkit polkit-gnome popt ppp pptpclient procps-ng progsreiserfs psmisc pv python python-appdirs python-asn1crypto python-cffi python-click python-cryptography python-fido2 python-idna python-msgpack python-packaging python-ply python-pycparser python-pyopenssl python-pyotherside python-pyparsing python-pyscard python-pyusb python-setuptools python-six qrencode qt5-base qt5-declarative qt5-graphicaleffects qt5-quickcontrols2 qt5-quickcontrols qt5-svg qt5-x11extras rdesktop readline refind-efi reiserfsprogs rest rkhunter rpcbind rp-pppoe rsync ruby rubygems run-parts screen sdparm sed sg3_utils shadow shared-mime-info slang smartmontools s-nail sound-theme-freedesktop spice sqlite sshfs startup-notification strace sudo sysfsutils syslinux sysstat systemd systemd-libs systemd-sysvcompat talloc tar tcl tcpdump tdb testdisk texinfo thin-provisioning-tools thunar thunar-volman tigervnc tmux traceroute tre tslib ttf-dejavu ttf-droid tumbler tzdata unzip upower usb_modeswitch usbmuxd usbutils util-linux vi vim vim-runtime vpnc vte3 vte-common wayland wayland-protocols wget which wipe wireless-regdb wireless_tools wpa_supplicant wvdial wvstreams xarchiver xcb-proto xcb-util xcb-util-image xcb-util-keysyms xcb-util-renderutil xcb-util-wm xdg-utils xf86-input-evdev xf86-input-keyboard xf86-input-libinput xf86-input-mouse xf86-input-synaptics xf86-input-vmmouse xf86-input-void xf86-video-amdgpu xf86-video-ati xf86-video-dummy xf86-video-fbdev xf86-video-intel xf86-video-nouveau xf86-video-openchrome xf86-video-qxl xf86-video-vesa xf86-video-vmware xf86-video-voodoo xfce4-appfinder xfce4-battery-plugin xfce4-panel xfce4-power-manager xfce4-session xfce4-settings xfce4-taskmanager xfce4-terminal xfconf xfdesktop xfsdump xfsprogs xfwm4 xfwm4-themes xkbsel xkeyboard-config xl2tpd xorg-bdftopcf xorg-fonts-encodings xorg-font-util xorg-font-utils xorg-iceauth xorg-luit xorg-mkfontscale xorgproto xorg-server xorg-server-common xorg-sessreg xorg-setxkbmap xorg-smproxy xorg-x11perf xorg-xauth xorg-xbacklight xorg-xcmsdb xorg-xcursorgen xorg-xdpyinfo xorg-xdriinfo xorg-xev xorg-xgamma xorg-xhost xorg-xinit xorg-xinput xorg-xkbcomp xorg-xkbevd xorg-xkbutils xorg-xkill xorg-xlsatoms xorg-xlsclients xorg-xmodmap xorg-xpr xorg-xprop xorg-xrandr xorg-xrdb xorg-xrefresh xorg-xset xorg-xsetroot xorg-xvinfo xorg-xwd xorg-xwininfo xorg-xwud xplc xz yubico-c yubico-c-client yubikey-manager yubikey-manager-qt yubikey-personalization yubikey-personalization-gui zeromq zile zip zlib zsh zstd

Friday, September 27, 2019

How To Set Up LaunchBox On Android - Retro Games on The Go!

           No comments   
LaunchBox for Android is now officially available on the Goole Play
Store for Android phones Tablets and Android Tv’s like the Nvidia Shield
so in this video I show you how to set Up LaunchBox on android pretty
easily.
This does require LaunchBox for PC to export games so if you do not have
that setup follow this guide: https://youtu.be/wNSP6VJpqM0

Android Version: https://play.google.com/store/apps/de...

LaunchBox website: https://www.launchbox-app.com/

Follow Me On Twitter: https://twitter.com/theetaprime
Follow Me On Instagram: https://www.instagram.com/etaprime/

Equipment I Use:
Screen Capture Device: https://amzn.to/2STpX4C
Tool Kit: https://amzn.to/2M6l9WS
Soldering Station: https://amzn.to/2FtdVeu
Camera: https://amzn.to/2M6KFLB
Tripod: https://amzn.to/2CmdYVY
Raspberry Pi 3 B Plus: https://amzn.to/2DTF0Db
Flirc Case: https://amzn.to/2OBQTXz

DISCLAIMER: This video and description contains affiliate links, which
means that if you click on one of the product links, I’ll receive a
small commission at no extra cost to you!

THIS VIDEO IS FOR EDUCATIONAL PURPOSES ONLY!

Thursday, September 26, 2019

NES Longplay [870] The Incredible Crash Dummies

           No comments   
The Incredible Crash Dummies is a line of action figures designed by David McDonald and Jim Byrne, styled after the eponymous crash test dummy popularized in a public service advertising campaign of the late 1980s, to educate people on the safety of wearing seat belts.[1] The toys were first released by Tyco Toys in the early 1990s and discontinued in 1994. From 2004 on, a new series of animated shorts involving the crash dummies was produced and the action figures subsequently revived under the Hot Wheels brand, another subdivision of Mattel.

NES Longplay [869] EarthWorm Jim 3 (Unlicensed)

           No comments   
Earthworm Jim is a series of side-scrolling platforming video games,[1] the first game of which was released in 1994. The series is noted for its platforming and shooting gameplay, surrealist humor, and edgy art style.[2] Four games were released in the series: Earthworm Jim, Earthworm Jim 2, Earthworm Jim 3D, and Earthworm Jim: Menace 2 the Galaxy. The series lay dormant for almost a decade before Gameloft remade the original game in HD for PlayStation Network and Xbox Live Arcade in 2010. Interplay announced Earthworm Jim 4 in 2008, but little has surfaced since.[3]

Tuesday, April 16, 2019

iOS 13: Dark Mode, detachable panels, Safari and Mail upgrades, undo gesture, volume HUD, more

           No comments   

Apple is expected to unveil iOS 13, the next major version of the iPhone and iPad operating system, at its annual Worldwide Developers Conference, which kicks off on June 3rd. Now, people familiar with the development of the operating system have shared exclusive details with 9to5Mac. Read on for new details about what to expect.

Dark Mode and Multitasking

First, the long-awaited Dark Mode is finally coming to the iPhone and iPad with iOS 13. There will be a system-wide Dark Mode that can be enabled in Settings, including a high contrast version, similar to what’s already available on macOS. Speaking of macOS, iPad apps that run on the Mac using Marzipan will finally take advantage of the Dark Mode support on both systems.
There are many changes coming to iPad with iOS 13, including the ability for apps to have multiple windows. Each window will also be able to contain sheets that are initially attached to a portion of the screen, but can be detached with a drag gesture, becoming a card that can be moved around freely, similar to what an open-source project called “PanelKit” could do.
These cards can also be stacked on top of each other, and use a depth effect to indicate which cards are on top and which are on the bottom. Cards can be flung away to dismiss them.

Undo gesture, Safari improvements, and font management

Another thing many iOS users complain about is the lack of a standard undo system, which on the iPhone and iPad currently requires physically shaking the device.
With iOS 13, Apple is introducing a new standard undo gesture for text input on the iPad. The gesture starts as a three-finger tap on the keyboard area, sliding left and right allows the user to undo and redo actions interactively.
There will be a tutorial the first time the keyboard is opened to teach users how to use the new feature. It’s possible that developers will be able to adopt this interaction in custom controls through a public API.
Safari on iOS 13 for the iPad will automatically ask for a desktop version of websites when necessary, preventing a common issue where websites will render their iPhone version even when running on an iPad with a big screen. YouTube is notorious for this behavior, forcing users to rely on a ‘Request Desktop Site’ button.
Font management is getting a major upgrade on iOS 13. It will not be necessary to install a profile to get new fonts into the system anymore. Instead there will be a new font management panel in Settings. A new standard font picker component will be available for developers and the system will notify the user when they open a document that has missing fonts.

Smarter Mail, improved multiple item selection, more

The Mail app is getting smarter for the first time in a while: the upgraded app will be able to organize messages into categories such as marketing, purchases, travel, “not important” and more, with the categories being searchable. Users will also be able to add messages to a “read later” queue similar to third-party email apps.
Engineers are also working on bringing easy collaboration to third-party document-based apps, similar to what’s already available in Apple’s own productivity apps including Pages, Numbers and Keynote.
The focus on productivity on iOS continues with the inclusion of new gestures to allow for the selection of multiple items in table views and collection views, which make up for most of the user interfaces found in apps that list large amounts of data. Users will be able to drag with multiple fingers on a list or collection of items to draw a selection, similar to clicking and dragging in Finder on the Mac.
There will also be the ability for developers to use a different status bar style (light or dark) for each side of an in-app splitview, which should prevent issues that currently happen in some apps where the status bar will lack contrast with the background in one side of the splitview. Split Views on Marzipan apps based on iPad designs that run on the Mac will get the ability to be resized by dragging the divider and have their position reset when double-clicking the divider, like existing Split View apps on the Mac.

New Volume HUD and other changes

Other features to come with iOS 13 include a redesigned Reminders app, which is also coming to the Mac, a new volume HUD (the current obtrusive one has been a UI joke for a while now), better “Hey Siri” rejection for common mistaken noises such as laughter and crying babies, better multilingual support for keyboards and dictation, and expanded in-app printing controls.
Thanks to Steve Troughton-Smith for his help with this report.

Tuesday, January 1, 2019

OpenVAS 8.0 Vulnerability Scanning

           No comments   

Vulnerability scanning is a crucial phase of a penetration test and having an updated vulnerability scanner in your security toolkit can often make a real difference by helping you discover overlooked vulnerable items. For this reason, we’ve manually packaged the latest and newly released OpenVAS 8.0 tool and libraries for Kali Linux. Although nothing major has changed in this release in terms of running the vulnerability scanner, we wanted to give a quick overview on how to get it up and running.

Setting up Kali for Vulnerability Scanning

If you haven’t already, make sure your Kali is up-to-date and install the latest OpenVAS. Once done, run the openvas-setup command to setup OpenVAS, download the latest rules, create an admin user, and start up the various services. Depending on your bandwidth and computer resources, this could take a while.
root@kali:~# apt-get update
root@kali:~# apt-get dist-upgrade

root@kali:~# apt-get install openvas
root@kali:~# openvas-setup
/var/lib/openvas/private/CA created
/var/lib/openvas/CA created

[i] This script synchronizes an NVT collection with the 'OpenVAS NVT Feed'.
[i] Online information about this feed: 'http://www.openvas.org/openvas-nvt-feed
...
sent 1143 bytes received 681741238 bytes 1736923.26 bytes/sec
total size is 681654050 speedup is 1.00
[i] Initializing scap database
[i] Updating CPEs
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2002.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2003.xml
...
Write out database with 1 new entries
Data Base Updated
Restarting Greenbone Security Assistant: gsad.
User created with password '6062d074-0a4c-4de1-a26a-5f9f055b7c88'.

Once openvas-setup completes its process, the OpenVAS manager, scanner, and GSAD services should be listening:
root@kali:~# netstat -antp
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 127.0.0.1:9390 0.0.0.0:* LISTEN 9583/openvasmd
tcp 0 0 127.0.0.1:9391 0.0.0.0:* LISTEN 9570/openvassd: Wai
tcp 0 0 127.0.0.1:9392 0.0.0.0:* LISTEN 9596/gsad

Starting the OpenVAS services

If you have already configured OpenVAS, you can simply start all the necessary services by running openvas-start.
root@kali:~# openvas-start
Starting OpenVas Services
Starting Greenbone Security Assistant: gsad.
Starting OpenVAS Scanner: openvassd.
Starting OpenVAS Manager: openvasmd.
If you need to troubleshoot any issues, you can use openvas-check-setup to identity the problem.

Connecting to the OpenVAS Web Interface

Point your browser to https://127.0.0.1:9392, accept the self signed SSL certificate and plugin the credentials for the admin user. The admin password was generated during the setup phase (look at the output above if you missed it).
openvas vulnerability scanner
openvas vulnerability scanner

That’s it! Now OpenVAS is ready for you to configure it and run a scan against a given IP or range. Happy vulnerability scanning!

Friday, December 28, 2018

Metasploit Unleashed Requirements

           No comments   


Prepare your Metasploit Lab Environment

Before learning how to use the Metasploit Framework, we first need to make sure that our setup will meet or exceed the system requirements outlined in the following sections. Taking the time to properly prepare your Metasploit Lab Environment will help eliminate many problems before they arise later in the course. We highly recommend using a system that is capable of running multiple virtual machines to host your labs.
Launching msfconsole
Launching msfconsole

Metasploit Unleashed Hardware Requirements

All of the values listed below are estimated or recommended. You can get away with less in some cases but be aware that performance will suffer, making for a less than ideal learning experience.

Hard Drive Space

You will need to have, at minimum, 10 gigabytes of available storage space on your host. Since we are using virtual machines with large file sizes, this means that we are unable to use a FAT32 partition since large files are not supported in that filesystem, so be sure to choose NTFS, ext3, or some other filesystem format. The recommended amount of space needed is 30 gigabytes.
If you decided to create clones or snapshots of your virtual machine(s) as you progress through the course, these will also take up valuable space on your system. Be vigilant and do not be afraid to reclaim space as needed.

Available Memory

Failing to provide enough memory to your host and guest operating systems will eventually lead to system failure and/or result in being unable to launch your virtual machine(s). You are going to require RAM for your host OS as well as the amount of RAM that you are dedicating for each virtual machine. Use the guide below to help in deciding the amount of RAM required for your situation.
  • Linux “HOST” Minimal Memory Requirements
    • 1 GB of system memory (RAM)
    • Realistically 2 GB or more
  • Kali “GUEST” Minimal Memory Requirements
    • At least 1 GB of RAM (2 GB is recommended) // more never hurts!
    • Realistically 2 GB or more with a SWAP file of equal value
  • Metasploitable “GUEST” Minimal Memory Requirements
    • At least 256 MB of RAM (512 MB is recommended) // more never hurts!
  • (Optional) Per Windows “GUEST” Minimal Memory Requirements
    • At least 256 MB of RAM (1 GB is recommended) // more never hurts!
    • Realistically 1 GB or more with a page file of equal value

Processor

To ensure the best experience, we recommend a 64-bit quad-core CPU or better. The bare-minimum requirement for VMware Player is a 400MHz or faster processor (500MHz recommended) but these speeds are inadequate for the purposes of this course. The more horsepower you can throw at your lab, the better.

Internet Accessibility

Getting your lab set up will require downloading some large virtual machines so you will want to have a good high-speed connection to do so. If you choose to use “Bridged” networking for your virtual machines and there is no DHCP server on your network, you will have to assign static IP addresses to your guest VMs.

Metasploit Unleashed Software Requirements

Before jumping in to the Metasploit Framework, we will need to have both an attacking machine (Kali Linux) and a victim machine (metasploitable 2) as well as a hypervisor to run both in a safe and secluded network environment.

Hypervisor

Our recommended hypervisor for the best out-of-the-box compatibility with Kali and metasploitable is VMware Player. While VMware Player is “free”, you will have to register in order to download it, and the virtualization applications and appliances are well worth the registration if you do not already have an account. You may also use VMware Workstation or VMware Fusion but neither of these is free.
There are also other options available when it comes to which hypervisor you would like to use. In addition to VMware, two other commonly used hypervisors are VirtualBox and KVM but they are not covered here. Instructions for installing Kali Linux can be found on the Kali Training site.

Kali Linux

Kali Linux is an advanced Penetration Testing and Security Auditing Linux distribution that will be used throughout this course. Kali Linux comes with Metasploit pre-installed along with numerous other security tools that you can try out against your victim machine. You can download the latest version of Kali at:
Once you have downloaded Kali, you can update Metasploit to the latest version in the repos by running apt update && apt upgrade in a terminal.

Metasploitable

One of the problems you encounter when learning how to use an exploitation framework is trying to find and configure targets to scan and attack. Luckily, the Metasploit team is aware of this and released a vulnerable VMware virtual machine called ‘Metasploitable’.
Metasploitable is an intentionally vulnerable Linux virtual machine that can be used to conduct security training, test security tools, and practice common penetration testing techniques. The VM will run on any recent VMware products and other visualization technologies such as VirtualBox. You can download the image file of Metasploitable 2 from SourceForge.
Never expose Metasploitable to an untrusted network, use NAT or Host-only mode!
Once you have downloaded the Metasploitable VM, extract the zip file, open up the .vmx file using your VMware product of choice, and power it on. After a brief time, the system will be booted and ready for action. The default login and password is msfadmin:msfadmin.
The Metasploitable virtual machine
The Metasploitable virtual machine
For more information on the VM configuration, there is a Metasploitable 2 Exploitability Guide on the Rapid7 website  but beware…there are spoilers in it.
To contact the developers of Metasploit, please send email to msfdev [a] metasploit [period] com

Windows

Microsoft has made a number of virtual machines available that can be downloaded to test Microsoft Edge and different versions of Internet Explorer. We will be able to use these VMs when working with some of the exploits and tools available in Metasploit. You can download the VMs from the following URL:
Once you have met the above system requirements, you should have no trouble running any tutorials from the Metasploit Unleashed course.

source: https://www.offensive-security.com/metasploit-unleashed/requirements/

Tuesday, January 30, 2018

Whiskey in the Jar Poznan (Poland)

           No comments   

What with Stary Rynek being most people’s first port of call, it’s always good to have a bit of variety. Whiskey in the Jar ticks the box for 'good-old-fashioned rock ‘n’ roll bar,' but this isn’t your typical grubby rock pub - rather a classy joint serving steaks and burgers and killer cocktails guaranteed to leave your head spinning (Don’t believe us? See how many of their Jack Daniel’s Whisky Jars you can work your way through in one sitting).


Popular Posts

Blogger templates

Blogroll

About

Copyright © Sotiris Stylianos Personal Blog | Powered by Blogger
Design by Flythemes | Blogger Theme by NewBloggerThemes.com