Book Info: Kali Linux – Assuring Security by Penetration Testing Has Been Published

My latest book on Kali Linux has been published. It is an updated version of the previous BackTrack 4: Assuring Security by Penetration Testing. My rough estimation, around 60% of the contents have been updated in accordance with the Kali Linux and the latest information in penetration testing.

You should be able to buy it via the Packt Publishing’s website or in the bookstores near you.

 

A Simple Script to Get Top Passwords Cracked

Several days ago, I took a break from doing my work. I did an exercise to sharpened my “rusty” scripting skills. My goal was to develop a simple script using Ruby to get the top passwords cracked from MD5 Statistics page. This should be an interesting exercise for my brain. :D

Unfortunately, my scripting skills was so rusty, so it took me a while to code this simple script.

Continue reading

Install CPAN’s Perl Module in openSUSE 11.x

Several days ago I had a chance to work with a Perl application again. Luckily, this application needs several Perl modules to be able to work.

The easiest way to install Perl modules is through CPAN. Fortunately there are several software packages that are available to help you working with CPAN. In openSUSE, the helper packages are :

After downloading them, I went to install those packages using the rpm :

# rpm -Uvh cpanm-1.5002-1.1.noarch.rpm perl-App-cpanminus-1.5002-1.1.x86_64.rpm
warning: cpanm-1.5002-1.1.noarch.rpm: Header V3 DSA/SHA1 Signature, key ID dcef338c: NOKEY

Preparing... ########################################### [100%]

1:perl-App-cpanminus ########################################### [ 50%]
2:cpanm ########################################### [100%]

Next, to install a Perl module, just use the following command (you need to run this command as “root“) :

cpanm <module_name>

For example, if I want to install a Perl module named Excel::Writer::XLSX here is the command to do it :

cpanm Excel::Writer::XLSX

--> Working on Excel::Writer::XLSX
Fetching http://search.cpan.org/CPAN/authors/id/J/JM/JMCNAMARA/Excel-Writer-XLSX-0.34.tar.gz ... OK

Configuring Excel-Writer-XLSX-0.34 ... OK
Building and testing Excel-Writer-XLSX-0.34 ... OK
Successfully installed Excel-Writer-XLSX-0.34
1 distribution installed

That’s it for today’s article. See you and take care.

LAME’s options for best quality/size ratio

Recently I need to convert several WAV files to MP3 format. I found the lame program can be used for this purpose. But due to my little knowledge in LAM I have difficulties to use the right options.

Thanksfully after reading the manual page and an article on the Internet, I found the following options generate the best quality and size ratio :

lame -V2 --vbr-new -q 2 -b 112  --lowpass 17 <WAV_file.wav>

And here is the picture of lame in action :

It took around 19 seconds to convert a 58 MB WAV file to MP3 format. Quite fast.

Kernel Panic Error Message. Is It ?

After doing an upgrade to MSF4, when I run msfconsole, I was greeted by the following “scary error message” :

Unable to handle kernel NULL pointer dereference at virtual address 0xd34db33f
EFLAGS: 00010046
eax: 00000001 ebx: f77c8c00 ecx: 00000000 edx: f77f0001
esi: 803bf014 edi: 8023c755 ebp: 80237f84 esp: 80237f60
ds: 0018   es: 0018  ss: 0018
Process Swapper (Pid: 0, process nr: 0, stackpage=80377000)


Stack: 90909090990909090990909090
90909090990909090990909090
90909090.90909090.90909090
90909090.90909090.90909090
90909090.90909090.09090900
90909090.90909090.09090900
..........................
cccccccccccccccccccccccccc
cccccccccccccccccccccccccc
ccccccccc.................
cccccccccccccccccccccccccc
cccccccccccccccccccccccccc
.................ccccccccc
cccccccccccccccccccccccccc
cccccccccccccccccccccccccc
..........................
ffffffffffffffffffffffffff
ffffffff..................
ffffffffffffffffffffffffff
ffffffff..................
ffffffff..................
ffffffff..................


Code: 00 00 00 00 M3 T4 SP L0 1T FR 4M 3W OR K! V3 R5 I0 N4 00 00 00 00
Aiee, Killing Interrupt handler
Kernel panic: Attempted to kill the idle task!
In swapper task - not syncing

What a “cool” welcome message. :D

Security Incident at Automattic

Automattic, the company behind the WordPress.com platform experienced a low-level break-in to several of its servers.

Although at this moment, there haven’t any information about the extend of this incident, as the Automattic’s people are still doing investigation.

If your blog is located in the wordpress.com domain, you may want to follow the suggestions offered by the WordPress about the security fundamentals located in the link mentioned above.

K3b 2.0.1 Not Able to Find cdrecord

Recently, I planned to burn several files to a CD-ROM using K3b version 2.0.1 software. Unfortunately when I started the application, it complained about missing the missing of cdrecord program. Then I checked my system and I found out the cdrecord program is in the cdrtools package. But K3b didn’t know about this.

After doing a little research I found out the solution. It’s very easy and simple. I removed the K3b configuration so it will recreate a new configuration. Here is the command I used to remove the K3b configuration file :

rm .kde4/share/config/k3brc

Note :

Several days ago I did an upgrade to my system to openSUSE 11.3. This problem may be caused by the different configuration used by previous K3b version.