Skip to content

Author Archives phocean

World’s worst hacker

That was so funny !

Posted 31 January 2011 § Admin § Hacking § Linux § openSUSE § Security § System Comments (1) ° Tagged: , , ,

Debugging the MBR with IDA Pro and Bochs

Analyzing the MBR is sometimes required during a forensic process, if you suspect a malicious activity that is not detected on-line. With static analysis, you may see if an obvious corruption happened, but you will need to debug to learn more. Prerequisite : IDA Pro (6.0) with the IDA Python plug-in (1.4.3) Steps : Prepare [...]

Posted 20 January 2011 § Assembler / Reversing § Malware forensics § Security Comments (6) ° Tagged: , , , , , , ,

A link between Stuxnet and the OpenBSD IPSEC backdoor rumor ?

Found on Full Disclosure, a weired but troubling connection of two security affairs : the OpenBSD backdoor rumor and the stuxnet worm.

Posted 16 January 2011 § Malware forensics § News § Security Comments (0) ° Tagged: , , , ,

Corrupted virtual disk with VMware

Wow, this article and especially one of its comments saved my day. My computer crashed and one of the VMware machine hosted on it could not start anymore : “Cannot open the disk ‘path of vmdk’ or one of the snapshot disks it depends on. Reason: the specific virtual disk needs repair. Checking on the [...]

Posted 16 January 2011 § Admin § Linux § openSUSE § System § Virtualization Comments (2) ° Tagged: , ,

Homepage mascotte, here and now !

Well, following a suggestion from my wife, I decided to bring up a mascotte for this website. I admit that it was a lot of fun playing with Gimp and Inkscape, which are really great tools. So please welcome our new little spiky friend : I hope that you have nothing against hedgehogs, which should [...]

Posted 16 January 2011 § News § Off-topic Comments (0) °

ESFS, new perspectives for stenography ?

Tomas Touceda advertised a new project on Full Disclosure. The idea sounds good, so I will keep an eye on this very interesting project. Though I would like to know more about the methods that were used for encryption and stenography. Code and explanations are on the ESFS project homepage. Beyond the pratical usage, I [...]

Posted 14 January 2011 § Cryptography § Defense § Security Comments (0) ° Tagged: , ,

Ravan, password cracking using Javascript!

Ravan is a new password cracking tool based on Javascript. Wait, what ? Javascript ? Yes, as the author explains, modern Javascript engines are not so slow anymore, and in addition HTML 5 brings a new “feature” with webworkers which allow the browser to run Javascript in the background (e.g without waiting on the page [...]

Posted 18 December 2010 § Cracking § Cryptography § Security Comments (0) ° Tagged: , , , ,

Mitigating Slow HTTP DoS Attacks

Interesting article on the latest Apache and ModSecurity techniques to prevent DoS HTTP attacks. The attacks are well explained. I personally knew about Slowloris but didn’t about RUDY and post attacks.

Posted 24 November 2010 § Defense § Firewalling § Web Comments (0) ° Tagged: , , , , ,