• You are currently browsing the Things and Stuff blog archives for .

    • goo.gl URL Shortener

    I’m a google fan, I admit it fully.  I use lots of their services, I like their stuff and I am at peace with their devling into my personal space.  It’s gonna happen, unless you choose to live your life 100% offline, you are trading personal privacy for access to services.

    Their latest creation (which has been around for a while, just not public) is their very own URL shortener called goo.gl.  It does some of the usual things, it tracks metrics and it does one other things I think is really cool.  It creates a QR code for your url.

    Here is one I created earlier (ha, sounds like a cooking show).

    http://goo.gl/YgTu.qr for the url http://goo.gl/YgTu

    Very cool.  I like QR codes.  For those of us with smart phones, a simple scan of the code and you can open the site.

    I do wish the service had an easy way to copy the new urls to the clipboard though.

    So what else can it do?  Well #1, I want it to tie in with their safe browsing serivce (http://www.google.com/safebrowsing/diagnostic?site=google.com) so that I can’t create a URL to a known bad site.  I’d also like them to regularly scan the urls and disable those that link to malware.  There are lots of URL shorteners and they definately pose a security risk and it’s about time someone took the step of removing bad URL’s.

    Thoughts?

    Post to Twitter

    Written on September 30th, 2010 , Security, Technology Tags: , , , , , , , , , ,
    It’s the small victories…

    So one of the major “issues” with the Nessus for Metasploit Plugin right now is that it does not handle large reports well.  Not even the usual db_import_nessus handles large reports well and this is because it reads the entire file in one big blob then parses it.

    The nexpose importer and the nmap importer both use REXML Stream Processors.

    So tonight I copied the nmap_xml.rb file and am working on making it process Nessus v2 files.  I am hoping that both the Nessus plugin, and the db_import will benefit from these changes.

    I’ve been looking at it for a few days and kind of avoiding it because it’s difficult and is going to require large portions of my time fumbling through learning how the current one works enough to know how/what to modify.

    Well turns out it’s simpler than I thought. Read the rest of this entry »

    Post to Twitter

    Written on September 28th, 2010 , Bananas, Security, Stuff, Technology, Things Tags: , , , , , ,
    Nessus Bridge for Metasploit :: Scan Commands

    Welcome to part 4 of my Nessus Bridge for Metasploit coverage.  Here is part 1 and part 2 and part 3 if you are just joining us.

    The Scan Commands are where this plugin starts to really differ from previously importing nessus scans from flat files.  With these commands we can stay within the metasploit framework and reach out and examine things with Nessus.  We can then use the Report Commands we just learnt about to pull that data back to later pwn stuff.

    Scan Commands are as follows:

    • nessus_scan_new
    • nessus_scan_status
    • nessus_scan_pause
    • nessus_scan_pause_all
    • nessus_scan_stop
    • nessus_scan_stop_all
    • nessus_scan_resume
    • nessus_scan_resume_all Read the rest of this entry »

    Post to Twitter

    Written on September 28th, 2010 , Bananas, Security, Stuff, Technology, Things Tags: , , , , , , , , , , , , , , , , , , , ,
    Nessus Bridge for Metasploit :: Report Commands

    Welcome to part 3 of my Nessus Bridge for Metasploit coverage.  Here is part 1 and part 2 if you are just joining us.

    Report commands are where we get to actually do things.  They concist of some commands to manage/import reports directly on your Nessus server.  No more going to the web console, exporting a report, moving it to your msf box and running db_import_nessus to get it into your workspace and available to db_autopwn or work with.

    The implemented (so far) commands are:

    • nessus_report_list
    • nessus_report_get
    • nessus_report_hosts
    • nessus_report_host_ports
    • nessus_report_host_detail

    Ok, make sure you are loaded up and authed to your server and we will check these out. Read the rest of this entry »

    Post to Twitter

    Written on September 27th, 2010 , Bananas Tags: , , , , , , , , , , , ,
    Nessus Bridge for Metasploit :: Generic Commands
    (some features discussed in this post are not yet in msf, grab the latest code from here if you want to test)

    Ok, so you have your msf installed (I like to install from the svn) and you have run “svn update” to ensure you have all the latest goodies.
    Go ahead and fireup the msf console (“msfconsole” at your prompt) and you should be presented with the standard msfconsole banner and blurbage telling how much cool shit you just loaded up.

    Lets load up some more, type “load nessus” and press enter.  Some new lines should scroll by telling you that you just loaded the Nessus Bridge for Nessus 4.2.x.  So yeah, just incase you are curious, this plugin works with the latest Nessus.  Prior to 4.0 will not work, neither will OpenVAS.

    The line below that says to type nessus_help for a list of commands.  So go ahead and do that.

    So it shows us the following commands available for the “Generic” group. Read the rest of this entry »

    Post to Twitter

    Written on September 26th, 2010 , Bananas Tags: , , , , , , , , , , ,
    Nessus Bridge for Metasploit :: Intro

    One of the most frustrating things for me when I started with metasploit (known as msf from here in) was not exploiting something, but finding something to exploit.  I had all these exploits at my finger tips but my ability to find something to pwn was limited by having to move back and forth between a bunch of tools and cross reference things.

    This changed when I did my PwB v3 course, I got much better at determining when and how to use msf to take advantage of something I found.  There was still a lot of moving between tools but I was at least able to identify vulnerable hosts.

    I use Nessus in my day job to scan for vulns and sometimes I need to be able to turn those results into demonstrations or do false positive checking.  It was a little annoying to run the scan either from the cli, or usually from the Nessus Web Client and then have to manually import the Nessusv2 report.

    At the same time MSF Express came out.  WoW, that is some slick shit. Read the rest of this entry »

    Post to Twitter

    Written on September 26th, 2010 , Bananas, Security, Stuff, Technology, Things Tags: , , , , , , , , ,
    New Things

    Been a while since I have written.

    So what have I been upto?  Well.  Looking back over old posts let me update a couple of things.

    • Got the phone.  Ended up with the Nexus One, on ATT, bought it outright (no contract).  Totally LOVE this phone.  It’s rooted, ROM’d and rockin.  Running Cyanogenmod 6 on it.  Seriously rocking phone.
    • I completed the OffensiveSecurity.com PwV v3.0 course.  Did 30 days worth of labs and then sat the exam for my OSCP.  Passed it too.  Was probably the best training I have ever attended and next to bootcamp for the army, one of the most intense 30 days of my career.  Loved every second of it.
    • Not working on HFC so much anymore.  The project just kind of petered out with Johnny going through some changes over in Uganda.  STill keep tabs on it and offer to help where I can.

    So, new projects and things coming up, lets see. Read the rest of this entry »

    Post to Twitter

    Written on September 25th, 2010 , Bananas Tags: , , , , , , , , ,

    Things and Stuff is proudly powered by WordPress and the Theme Adventure by Eric Schwarz
    Entries (RSS) and Comments (RSS).

    Things and Stuff

    A Blog about things and stuff.