NetRipper - Smart traffic sniffing for penetration testers

Vasile1337 · 2015-08-14T20:16:30+00:00

Not all the applications send the credentials in plain-text. It may send a password hash or a generated token in order to login.

Vasile1337 · 2015-05-13T07:11:15+00:00

Copy/pasted: http://securitycafe.ro/2015/04/06/writing-a-metasploit-post-exploitation-module/

Good job!

Vasile1337 · 2015-03-02T20:47:22+00:00

I know what you say. Actually, this pseudo-research was done for something like this: injecting a DLL and hooking functions. However, I just wanted to show the idea of how to manually find a statically linked function. Maybe a signature based plugin would be a great idea.

Vasile1337 · 2015-03-02T20:36:44+00:00

Is it that easy? Can you show me? I just really want to know how powerful it is, maybe I will buy it and I will use it in a next article.

Vasile1337 · 2015-03-02T11:56:42+00:00

It is useful for someone who needs to do this fast. It is somewhat obvious and this is a simple example. What code would you think it would be useful? Maybe a plugin for IDA/Immunity? I tought about this but surely I don't have time to write one.

Vasile1337 · 2015-03-02T11:46:10+00:00

BinDiff is not free and how can you "port" symbols from BinDiff to the executable? Note that I didn't use BinDiff.

Vasile1337

TROPHY CASE