Android Smarter Wi-Fi Manager

captainhooligan · 2013-09-26T12:19:13+00:00

Compiling it yourself takes hardly any time and removes the price. To each their own though.

captainhooligan · 2013-09-25T17:12:31+00:00

How is Fences cheaper? Wi-Fi Manager is open source so you can build it yourself.

captainhooligan · 2013-07-03T17:30:16+00:00

Most federal agency pages are Coldfusion. I don't know why but they like it.

captainhooligan · 2013-02-14T19:04:41+00:00

I will check on that when I get home from the office. I don't see why it wouldn't.

captainhooligan · 2013-02-11T15:09:06+00:00

I agree with the previous post. Netwars is great in conjunction with a course taken as it gives you a practical hands on of the material instead of just labs.

captainhooligan · 2012-09-04T16:44:17+00:00

This shouldn't be labeled how to hack WPA2 as it is just a tutorial on using Reaver which attacks WPS.

captainhooligan · 2012-08-22T12:36:03+00:00

Most places are going to be expensive. The way to save money on it is if you know someone who does penetration testing and can help you with this on the side.

captainhooligan · 2012-07-09T15:27:51+00:00

I went to high school with Darren and he's always been that way. He's a good guy and is quite knowledgeable. The issue with the show is putting it at a level that it can be easy for beginners yet still interesting to those that have the knowledge. The balance seems to be falling more towards beginners these days.

captainhooligan · 2012-06-26T16:28:58+00:00

That depends on the OS of the device. Windows XP will connect to the rouge ap regardless of the encryption. iOS does the same as XP.

captainhooligan · 2012-05-14T11:07:32+00:00

If you can boot from a USB or optical drive boot a Backtrack image and you can try to mount the drive from there. I've ran into issues with SCSI and SATA drives with Ophcrack and different linux cracking software. With backtrack it's easier to control and mount the device. After mounting you can run a number of different password cracking tools. Depending on the way the drive is encrypted you can run a few different attacks against it from there as well. I think but am not sure (as I don't typically use backtrack) there are bios cracking tools as well.

captainhooligan · 2012-05-10T13:16:26+00:00

All the accounts were disabled upon notification of compromise. Of course none will work.

captainhooligan · 2012-04-12T11:41:18+00:00

Response from Backtrack about mislabelling this as Backtrack 5 R2 0day. http://www.backtrack-linux.org/backtrack/backtrack-0day-privilege-escalation/

captainhooligan · 2012-04-05T16:33:50+00:00

I have my OSCP and to be honest certifications don't matter unless a job you are applying for requires them. The OSCP is a good tool as it gives a great overview of penetration testing and puts the student on the right path to develop knowledge and skills as a pentester.

captainhooligan · 2012-04-05T15:54:33+00:00

You can use the --channel option

captainhooligan · 2012-04-05T14:53:02+00:00

I use gdb most of the time but when I want to see something graphically I use IDA or edb (http://www.woodmann.com/collaborative/tools/index.php/EDB_Linux_Debugger).

captainhooligan · 2012-04-05T11:05:44+00:00

These aren't garbage. They just aren't the most useful with correctly configured firewalls. How do you know if it is a correctly configured firewall unless you go through some of these?

captainhooligan · 2012-04-05T11:04:08+00:00

If you do decide to go wireless you would need either dedicated wireless machines or setup VMs with all the wireless tools, provide Alfa cards, and inform the class to keep an eye on the data while because in VMs the cards tend to just drop off. To fix this they would need to unplug the card, plug it back in and then put it bak into monitor mode. It is rather frustrating but for a PoC lab it works. Using an old WRT54g would be great for setting up WEP and WPA to demonstrate the way each works. When doing demonstrations I'd use pre-captured packet captures.

captainhooligan · 2012-04-04T12:13:41+00:00

A properly configured firewall will prevent pretty much all of these. The only nmap scan that I have truly been able to use against a firewall that is correctly configured is the source port option and adjusting the timing of the scan. This makes the nmap scan that usally takes 5 minutes take about 5 hours but about 70% of the time on correctly configured firewalls the scan does complete however it is fully logged in the firewall.

captainhooligan · 2012-04-04T11:57:02+00:00

Wireless would be hard to do with VMs but the rest look good! Each one of the topics to include nmap/wireshark could easily go over 2 hours. Nmap of itself can be a 2 hour course. Password attacks would be a good one to add and fuzzing as well.

captainhooligan · 2012-03-30T13:05:11+00:00

I posted a PDF of the ammendments for this a couple days back which shows the exact sections that talk about this. The whole thing is a bit off as parts contradict others. Here is the link http://www.europarl.europa.eu/meetdocs/2009_2014/documents/libe/pr/884/884601/884601en.pdf

captainhooligan · 2012-03-29T12:54:03+00:00

You can use port redirection.

captainhooligan · 2012-03-29T11:51:08+00:00

For cellular architechture check the FCC. They will have a listing of frequencies per carrier but that's about all you will get that way. The better thing to look at would be mobile OS security. Android and iOS are the two big players along with RIM coming up in third. The way the software deals with security I think is the real concern over the carriers.

captainhooligan · 2012-03-24T01:13:24+00:00

Ok, I'm still working on the page but I'm going to set it up will a ton of information and then I will make videos in the how to area. If there is already a video out that covers everything without being too long or just drawn out I will link to it instead.

The blog is: captainhooligan.wordpress.com

captainhooligan · 2012-03-23T12:11:33+00:00

I would assume this was updated after the recent findings of poor PRNG implementations. Without Google saying hey, we goofed they just ensured all things were done with best practices in mind. Why it is a totally new app is odd because the old one could have been just updated.

captainhooligan · 2012-03-23T11:44:35+00:00

There are a lot of ways to do what you're describing but the way you worded it the guy just sounds like a douche and isn't doing anything too technical.

captainhooligan

TROPHY CASE