Comments for Bill's Security Blog http://www.wrgross.com/blogs/security All manner of goodness respecting the secure operation of digital systems. Sun, 05 Feb 2012 20:38:16 +0000 http://wordpress.org/?v=2.6.1 Comment on Fix screen resolution for BackTrack VM under VirtualBox by jgg http://www.wrgross.com/blogs/security/2011/02/14/fix-screen-resolution-for-backtrack-vm-under-virtualbox/#comment-396 jgg Sun, 04 Dec 2011 19:05:56 +0000 http://www.wrgross.com/blogs/security/?p=232#comment-396 On OS X Lion (10.7.2) you might need to first run one of the following at an OS X Terminal prompt: VboxManage setextradata Backtrack CustomVideoMode1 1100x740x16 VboxManage setextradata Backtrack CustomVideoMode1 1440x900x16 Then run either the BT5 or BT4 Terminal commands shown above after logging into BT but before running startx. I was able to achieve 1024x768 from X11. I'm still working out if I can get to a higher X11 screen size. On OS X Lion (10.7.2) you might need to first run one of the following at an OS X Terminal prompt:

VboxManage setextradata Backtrack CustomVideoMode1 1100×740x16
VboxManage setextradata Backtrack CustomVideoMode1 1440×900x16

Then run either the BT5 or BT4 Terminal commands shown above after logging into BT but before running startx.

I was able to achieve 1024×768 from X11.

I’m still working out if I can get to a higher X11 screen size.

]]> Comment on Fix screen resolution for BackTrack VM under VirtualBox by mico http://www.wrgross.com/blogs/security/2011/02/14/fix-screen-resolution-for-backtrack-vm-under-virtualbox/#comment-359 mico Mon, 11 Apr 2011 15:32:28 +0000 http://www.wrgross.com/blogs/security/?p=232#comment-359 Does not work. The only available resolutions are still 800x600 and 640x480. Does not work. The only available resolutions are still 800×600 and 640×480.

]]> Comment on Setting up a pen-testing lab-in-a-box by Bill’s Security Blog » Blog Archive » Tutorial – remote buffer overflow identification and exploitation http://www.wrgross.com/blogs/security/2009/11/08/setting-up-a-pen-testing-lab-in-a-box/#comment-348 Bill’s Security Blog » Blog Archive » Tutorial – remote buffer overflow identification and exploitation Mon, 04 Apr 2011 02:06:01 +0000 http://www.wrgross.com/blogs/security/?p=188#comment-348 [...] under VirtualBox were used to develop this tutorial. I have another blog post detailing how to set up a virtual lab of this [...] [...] under VirtualBox were used to develop this tutorial. I have another blog post detailing how to set up a virtual lab of this [...]

]]> Comment on Tutorial – remote buffer overflow identification and exploitation by Bill’s Security Blog » Blog Archive » Metasploit module creation http://www.wrgross.com/blogs/security/2011/02/25/tutorial-%e2%80%93-remote-buffer-overflow-identification-and-exploitation/#comment-347 Bill’s Security Blog » Blog Archive » Metasploit module creation Mon, 04 Apr 2011 02:05:14 +0000 http://www.wrgross.com/blogs/security/?p=237#comment-347 [...] Bill’s Security Blog All manner of goodness respecting the secure operation of information systems. « Tutorial – remote buffer overflow identification and exploitation [...] [...] Bill’s Security Blog All manner of goodness respecting the secure operation of information systems. « Tutorial – remote buffer overflow identification and exploitation [...]

]]> Comment on Linux - Extract all tar files in a directory by Darren http://www.wrgross.com/blogs/security/2008/02/01/linux-extract-all-tar-files-in-a-directory/#comment-344 Darren Tue, 08 Feb 2011 22:03:32 +0000 http://www.wrgross.com/blogs/security/2008/02/01/linux-extract-all-tar-files-in-a-directory/#comment-344 It's great that this comes up as one of the first results in Google - saved me trying to work it out myself! I had to make a slight change to the code because my gzipped tar files had .tgz file extensions, not tar.gz. I used... for a in `ls -1 *.tgz`; do tar -zxvf $a; done It’s great that this comes up as one of the first results in Google - saved me trying to work it out myself! I had to make a slight change to the code because my gzipped tar files had .tgz file extensions, not tar.gz. I used…

for a in `ls -1 *.tgz`; do tar -zxvf $a; done

]]> Comment on Setting up a pen-testing lab-in-a-box by Bill Gross http://www.wrgross.com/blogs/security/2009/11/08/setting-up-a-pen-testing-lab-in-a-box/#comment-314 Bill Gross Sat, 08 Jan 2011 10:18:49 +0000 http://www.wrgross.com/blogs/security/?p=188#comment-314 John - I don't have an authoritative answer for you. From what I do know, it is possible for the physical adapter on the host to be connected to the Internet, and for all the virtual machines (connected to the same Internal Network ID) to be communicating with one another - but the virtual machines will NOT be able to interface with the Internet through the host's physical network connection. I do not believe that a bridge interface is created when the Internal Network is used - thus preventing the possibility of data leakage through the loopback interface created on the host. Bill John - I don’t have an authoritative answer for you.

From what I do know, it is possible for the physical adapter on the host to be connected to the Internet, and for all the virtual machines (connected to the same Internal Network ID) to be communicating with one another - but the virtual machines will NOT be able to interface with the Internet through the host’s physical network connection.

I do not believe that a bridge interface is created when the Internal Network is used - thus preventing the possibility of data leakage through the loopback interface created on the host.

Bill

]]> Comment on Setting up a pen-testing lab-in-a-box by john winkleton http://www.wrgross.com/blogs/security/2009/11/08/setting-up-a-pen-testing-lab-in-a-box/#comment-313 john winkleton Sun, 02 Jan 2011 17:18:31 +0000 http://www.wrgross.com/blogs/security/?p=188#comment-313 So.. Is the host only adapter swtiched on when internal networking is active? Can it be removed and still have guest communicate? So..

Is the host only adapter swtiched on when internal networking is active? Can it be removed and still have guest communicate?

]]> Comment on Setting up a pen-testing lab-in-a-box by Jshmoe24 http://www.wrgross.com/blogs/security/2009/11/08/setting-up-a-pen-testing-lab-in-a-box/#comment-305 Jshmoe24 Sat, 28 Aug 2010 22:45:21 +0000 http://www.wrgross.com/blogs/security/?p=188#comment-305 Hey Bill, Just wanted to say thank you. This was a very simple, quick to the point guide that helped me tremendously. It's really nice to have a little setup to test out my ethical hacking skills on. This was especially nice for me seeing as how I run Ubuntu as my host anyway and run backtrack 4 R1 and Windows Xp sp 3 as my guests. I found this info in the virtualbox help but It wasn't as straight forward as your blog was. You have me as a fan of the blog, thanks again! Hey Bill,

Just wanted to say thank you. This was a very simple, quick to the point guide that helped me tremendously. It’s really nice to have a little setup to test out my ethical hacking skills on. This was especially nice for me seeing as how I run Ubuntu as my host anyway and run backtrack 4 R1 and Windows Xp sp 3 as my guests. I found this info in the virtualbox help but It wasn’t as straight forward as your blog was. You have me as a fan of the blog, thanks again!

]]> Comment on What needs to be put in place to protect web servers from DOS attacks? by Orlando Stevenson http://www.wrgross.com/blogs/security/2008/10/27/what-needs-to-be-put-in-place-to-protect-web-servers-from-dos-attacks/#comment-275 Orlando Stevenson Sat, 26 Dec 2009 08:00:59 +0000 http://www.wrgross.com/blogs/security/?p=164#comment-275 It's worth noting that one particularly nasty DOS attack is <a href="http://en.wikipedia.org/wiki/Sockstress" rel="nofollow">SockStress</a>. It doesnt require much in the way of resources, just a stateful TCP connection to the target. Migitations center on just not letting communication take place - i.e. filtering or blocking the attacking system. More: <a href="https://www.cert.fi/haavoittuvuudet/2008/tcp-vulnerabilities.html" rel="nofollow">CERT-FI Advisory on the Outpost24 TCP Issues</a> provide a number of vendor responses to this issue. It’s worth noting that one particularly nasty DOS attack is SockStress. It doesnt require much in the way of resources, just a stateful TCP connection to the target. Migitations center on just not letting communication take place - i.e. filtering or blocking the attacking system.

More: CERT-FI Advisory on the Outpost24 TCP Issues provide a number of vendor responses to this issue.

]]> Comment on Setting up a pen-testing lab-in-a-box by Bill Gross http://www.wrgross.com/blogs/security/2009/11/08/setting-up-a-pen-testing-lab-in-a-box/#comment-265 Bill Gross Thu, 03 Dec 2009 21:10:47 +0000 http://www.wrgross.com/blogs/security/?p=188#comment-265 True, Since I ran through and did the install of BT4, I simply recompiled with LibSSH support. I don't remember the exact steps, but here's a link to how to rebuild Hydra with support for LibSSH: http://forums.remote-exploit.org/backtrack-4-package-feature-requests/23874-hydra-compiled-without-libssh-support.html Bill True,

Since I ran through and did the install of BT4, I simply recompiled with LibSSH support.

I don’t remember the exact steps, but here’s a link to how to rebuild Hydra with support for LibSSH:
http://forums.remote-exploit.org/backtrack-4-package-feature-requests/23874-hydra-compiled-without-libssh-support.html

Bill

]]>