20 05 2013
Using spotimc you can lísten to spotify on your Raspberry Pi. I’ve turned back to OpenELEC after using XBian for a while. How to get Spotify on your Raspberry Pi: Install ZIP file containing spotimc Reboot the device Enjoy! Here are some screenshots:
17 05 2013
A binary analysis, count me if you can: Really impressive skills! See how cracking can be a lot of fun! AttackVector Linux: Combine BackTrack/Kali, TOR and Tails for high anonymity. I liked that one: “Nmap can’t UDP via Tor” Skype Big Brother Microsoft is watching you: You should take that into consideration before having your [...]
6 05 2013
Introduction AltoroMutual is an vulnerable-by-design web application created by !WatchFire (now !AppScan Standard) as a demo test application for their !BlackBox Scanner. (Source:https://www.owasp.org/index.php/AltoroMutual) The demo can be found at http://demo.testfire.net/. This is not an usual wargame! I have simply not found an appropriate name for it.
2 05 2013
Solution for level2: Here is the code:
|
1 2 3 4 5 6 7 8 9 10 |
#include <stdlib.h> #include <stdio.h> #include <sys/types.h> int main(int argc, char **argv) { char *args[] = { "/bin/tar", "cf", "/tmp/ownership.$$.tar", argv[1], argv[2], argv[3] }; execv(args[0], args); } |
2 05 2013
Solution for http://www.overthewire.org/wargames/vortex/vortex1.shtml. Here’s the code they have used:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 |
#include #include #include #include #define e(); if(((unsigned int)ptr & 0xff000000)==0xca000000) { setresuid(geteuid(), geteuid(), geteuid()); execlp("/bin/sh", "sh", "-i", NULL); } void print(unsigned char *buf, int len) { int i; printf("[ "); for(i=0; i < len; i++) printf("%x ", buf[i]); printf(" ]\n"); } int main() { unsigned char buf[512]; unsigned char *ptr = buf + (sizeof(buf)/2); unsigned int x; while((x = getchar()) != EOF) { switch(x) { case '\n': print(buf, sizeof(buf)); continue; break; case '\\': ptr--; break; default: e(); if(ptr > buf + sizeof(buf)) continue; ptr++[0] = x; break; } } printf("All done\n"); } |
The executable was at /vortex/vortex1:
30 12 2012
Description The 29th Chaos Communication Congress (29C3) is an annual four-day conference on technology, society and utopia. The Congress offers lectures and workshops on a multitude of topics including (but not limited to) information technology and generally a critical-creative attitude towards technology and the discussion about the effects of technological advances on society. For 29 [...]
1 04 2012
This is probably the most useful command when it comes to ”’splitting large mp3 files”’. You’ll need ”’mp3splt”’ (http://mp3splt.sourceforge.net) and you’re ready to go:
|
1 |
mp3splt -s -p th=-40,min=6,rm |
26 01 2012
Why Nginx? Since I wanted to improve my sites load speed I thought I should look around for some lighttpd-alternatives which I have used for so many years. The really annoying thing about ”lighttpd” is its configuration syntax. I don’t think it’s comprehensive nor easy to learn. Besides that I wanted to have a configuration [...]
19 12 2011
Received from Mr.Sh3ll: ”hi.my name is saied.” ”if u permit.i want upload shell in ur site for access from another site on this server.” ”i promise dont damage ur site” ”if u accept. send email to me.and i will send u shell and u upload.” ”dont worry” WTF?
30 11 2011
I thought this could be useful for other Namecheap customers. ”’Namecheap”’s Open-Xchange servers use only ”’secure”’ connnections (STARTTLS, SSL/TLS). Supposing ”domain.com” is the domain you have purchased, you’ll have to configure Thunderbird using these settings: