Posted: July 26th, 2009 | Author: xanda | Filed under: IT Related | Tags: 2009, G10, G12, july, malsing, map, mapking, PC, R12 | 2 Comments »
Malsing Maps for Mapking G10/2007, R12 and PC is now updated [18 Jul 2009] and ready to be downloaded HERE
Posted: July 23rd, 2009 | Author: xanda | Filed under: IT Related | Tags: crack, hash, password, rainbow table, rainbowcrack | 2 Comments »
This version focus on more effective rainbow table file format. New features:
- New compact rainbow table file format (.rtc) reduce rainbow table size by 50% to 56.25%
- New rt2rtc utility convert rainbow table from raw file format (.rt) to compact file format (.rtc)
- New rtc2rt utility convert rainbow table from compact file format (.rtc) to raw file format (.rt)
- The rcrack/rcrack_cuda program support both .rt and .rtc rainbow table file format
- Conversion from non-perfect to perfect rainbow table is supported by rt2rtc utility
Smaller rainbow table significantly improve table lookup performance!
Introduction
RainbowCrack is a general propose implementation of Philippe Oechslin’s faster time-memory trade-off technique. It cracks hashes with rainbow tables.
Features:
- Full time-memory tradeoff tool suites, including rainbow table generation, sort, conversion and lookup
- Support rainbow table of any hash algorithm
- Support rainbow table of any charset
- Support rainbow table in raw file format (.rt) and compact file format (.rtc)
- Computation on multi-core processor support
- Computation on GPU (via NVIDIA CUDA technology) support (not freely available)
- Computation on multi-GPU (via NVIDIA CUDA technology) support (not freely available)
- Runs on Windows XP 32-bit and Windows Vista 32-bit
- Command line user interface
A brute force hash cracker generate all possible plaintexts and compute the corresponding hashes on the fly, and then compare the hashes with the target hash. The plaintext is found if one of them match, otherwise the intermediate computation results are discarded.
A time-memory tradeoff hash cracker need a precomputation stage, at the time all plaintext/hash pair within the selected hash algorithm, charset, plaintext length range are computed and the results are stored in files called rainbow table. It is time consuming to do this kind of computation. Once the one time precomputation is finished, hashes within the table can be cracked with much better performance than a brute force cracker.
Visit http://project-rainbowcrack.com/ for more information.
[img src]
Posted: July 21st, 2009 | Author: xanda | Filed under: IT Related | Tags: add-on, alert, calendar, free, google, notification, sms, sync, synchronize, thunderbird | 7 Comments »
It is good to have organizer but having several organizers might cause you headache if they are not sync each other. From now on, lets sync or Thunderbird calendar with your Google calendar.. plus.. you will get free SMS notification/reminder for each event (depends on your setting) you have in your calendar.
These are what you need:
- Mozilla Thunderbird
- Lightning add-on [32bit OS] [64bit OS]
- Provider for Google Calendar add-on [download the modified version that allows you to receive SMS notification/reminder HERE]
The howto is as below:
- Download and install Mozilla Thunderbird if you don’t have one
- Download Lightning add-on (in .xpi file), Open up Thunderbird: Tools > Add-ons > Install… > browse to you .xpi file
- Restart your Thunderbird
- Download Provider for Google Calendar add-on, Open up Thunderbird: Tools > Add-ons > Install… > browse to you .xpi file (in order to allow you to receive SMS notification/reminder, you need to use the modified version of Provider for Google Calendar)
- Restart your Thunderbird
- Go to Google Calendar and click on “Settings” on your top right conner
- Choose “Calendars” and click on your account name
- Right click and Copy Link Location on the XLM icon at the Private Address
- Now go to Mobile Setup (in Settings menu) and fill in your mobile details (FREE)
- Open up Thunderbird: File > New > Calendar > On the Network > Google Calendar > paste your copied link URL
- Now wallaaa!~ Your Thunderbird and Google calendar is sync.. Plus.. For every (default setting) event you create from Thunderbird that sync to Google Calendar, you’ll be getting SMS notification/reminder for FREE
Gud luck and have fun 😉
[image source: xaedalus]
Posted: July 19th, 2009 | Author: xanda | Filed under: IT Related | Tags: analysis, oday, openssh, script kiddies, shellcode | 3 Comments »
I’m writing this entry by refering to ‘the exploit’ released for OpenSSH 0day as mentioned in THIS post.
Lets take a look at the exploit:
And now convert the payload into binary. Personally, I use Shellcode to EXE
And finally, view the content of the payload 😉
Now sit for a while, grab a Pepsi and think… what is going to happen if you simply download, compile and run it?
Moral of the story, “everyone might start with script kiddies, but it doesn’t mean you have to be a script kiddies forever”
Posted: July 17th, 2009 | Author: xanda | Filed under: IT Related | Tags: 0day, advisory, firefox, memory corruption, vulnerability | No Comments »
The critical memory corruption vulnerability has finally fixed in Mozilla Firefox 3.5.1. Beside security issues, several stability issues and issue that was making Firefox take a long time to load on some Windows systems were also fixed in this release. The complete changelog is HERE
Download / Update now
