I recently had to actually do a fast forensic job for a friend, he asked me some help as he was taking over some business which were “abandoned” by an “open source consultant” which is to say pretty much installs everything on linux and does half coding in this case. The problem raised when as [...]
[Your worst enemy: The rogue consultant/admin] py_util.pyc LOCK/UNLOCK backdoor over email
mar 23rd, 2012 por Enrique Alfonso Sanchez Montellano 3 Comentarios
Tags: backdoor · django · Enrique Alfonso Sanchez Montellano · ethics · hacker · python
Trapper from sniffer to hydra
jun 13th, 2010 por Enrique Alfonso Sanchez Montellano 3 Comentarios
This is the presentation I’m going to push in Campus Party and in Sec-T in Sweden in september. This is a complete recode of trapper, even changing the language for ruby, having namespaces on it and the capabilities to attack and exploit miss-configurations. I’m going to be exporting a git repository the first week of [...]
Tags: campus party · Enrique Alfonso Sanchez Montellano · hacker · hydra · ruby · Security · trapper
[Your Worst Enemy] Your Web Scanner
feb 21st, 2010 por Enrique Alfonso Sanchez Montellano 1 Comentario
Recently I saw an article about web scanners, I personaly don’t like them, why? well 1. They are slow 2. They don’t have a sense of “weight” on the exploits 3. They miss half of the complex stuff Couple of weeks ago we lost a bid based on the fact that the client tought we [...]
Tags: Enrique Alfonso Sanchez Montellano · hacker · NTOSpider · Security · Tu Peor Enemigo · web scanner · your worst enemy