Xanda's Blog !~!

Protected: I Knew Kevin Mitnick’s Password ;)

Jul
29

This content is password protected. To view it please enter your password below:

My Self , , , , Enter your password to view comments.

Malsing Maps for Mapking G10/2007, R12 and PC is released

Jul
26

Malsing Maps for Mapking G10/2007, R12 and PC is now updated [18 Jul 2009] and ready to be downloaded HERE

RainbowCrack 1.4 is released

Jul
23

This version focus on more effective rainbow table file format. New features:

  • New compact rainbow table file format (.rtc) reduce rainbow table size by 50% to 56.25%
  • New rt2rtc utility convert rainbow table from raw file format (.rt) to compact file format (.rtc)
  • New rtc2rt utility convert rainbow table from compact file format (.rtc) to raw file format (.rt)
  • The rcrack/rcrack_cuda program support both .rt and .rtc rainbow table file format
  • Conversion from non-perfect to perfect rainbow table is supported by rt2rtc utility

Smaller rainbow table significantly improve table lookup performance!

Introduction
RainbowCrack is a general propose implementation of Philippe Oechslin’s faster time-memory trade-off technique. It cracks hashes with rainbow tables.

Features:

  • Full time-memory tradeoff tool suites, including rainbow table generation, sort, conversion and lookup
  • Support rainbow table of any hash algorithm
  • Support rainbow table of any charset
  • Support rainbow table in raw file format (.rt) and compact file format (.rtc)
  • Computation on multi-core processor support
  • Computation on GPU (via NVIDIA CUDA technology) support (not freely available)
  • Computation on multi-GPU (via NVIDIA CUDA technology) support (not freely available)
  • Runs on Windows XP 32-bit and Windows Vista 32-bit
  • Command line user interface

A brute force hash cracker generate all possible plaintexts and compute the corresponding hashes on the fly, and then compare the hashes with the target hash. The plaintext is found if one of them match, otherwise the intermediate computation results are discarded.

A time-memory tradeoff hash cracker need a precomputation stage, at the time all plaintext/hash pair within the selected hash algorithm, charset, plaintext length range are computed and the results are stored in files called rainbow table. It is time consuming to do this kind of computation. Once the one time precomputation is finished, hashes within the table can be cracked with much better performance than a brute force cracker.

Visit http://project-rainbowcrack.com/ for more information.

[img src]

Synchronize Thunderbird Calendar With Google Calendar + FREE SMS Notification

Jul
21

It is good to have organizer but having several organizers might cause you headache if they are not sync each other. From now on, lets sync or Thunderbird calendar with your Google calendar.. plus.. you will get free SMS notification/reminder for each event (depends on your setting) you have in your calendar.

These are what you need:

  1. Mozilla Thunderbird
  2. Lightning add-on [32bit OS] [64bit OS]
  3. Provider for Google Calendar add-on [download the modified version that allows you to receive SMS notification/reminder HERE]

The howto is as below:

  1. Download and install Mozilla Thunderbird if you don’t have one
  2. Download Lightning add-on (in .xpi file), Open up Thunderbird: Tools > Add-ons > Install… > browse to you .xpi file
  3. Restart your Thunderbird
  4. Download Provider for Google Calendar add-on, Open up Thunderbird: Tools > Add-ons > Install… > browse to you .xpi file (in order to allow you to receive SMS notification/reminder, you need to use the modified version of Provider for Google Calendar)
  5. Restart your Thunderbird
  6. Go to Google Calendar and click on “Settings” on your top right conner
  7. Choose “Calendars” and click on your account name
  8. Right click and Copy Link Location on the XLM icon at the Private Address
  9. Now go to Mobile Setup (in Settings menu) and fill in your mobile details (FREE)
  10. Open up Thunderbird: File > New > Calendar > On the Network > Google Calendar > paste your copied link URL
  11. Now wallaaa!~ Your Thunderbird  and Google calendar is sync.. Plus.. For every (default setting) event you create from Thunderbird that sync to Google Calendar, you’ll be getting SMS notification/reminder for FREE

Gud luck and have fun đŸ˜‰

[image source: xaedalus]

OpenSSH <= 5.2 REMOTE (r00t) EXPLOIT huh?

Jul
19

I’m writing this entry by refering to ‘the exploit’ released for OpenSSH 0day as mentioned in THIS post.

Lets take a look at the exploit:

And now convert the payload into binary. Personally, I use Shellcode to EXE

And finally, view the content of the payload đŸ˜‰

Now sit for a while, grab a Pepsi and think… what is going to happen if you simply download, compile and run it?

Moral of the story, “everyone might start with script kiddies, but it doesn’t mean you have to be a script kiddies forever”