blog.spoofed.org
Jon Hart's Blog: Why SSL?
http://blog.spoofed.org/2008/04/why-ssl.html
Wednesday, April 9, 2008. Over the years I've been involved in a number of projects where SSL was needed to help secure communications between endpoints. Without fail, every time I was rolling out a certificate authority or installing an X.509 certificate on a particular node I was met with some level of resistance. Encountering someone who was pleased with this effort is truly a rare experience. This all begs the question, "Why SSL? I'm glad you asked. By using SSL, a system is able to provide:. For sak...
blog.spoofed.org
Jon Hart's Blog: Improving Nokogiri XPath operations through predictive hashing
http://blog.spoofed.org/2012/01/improving-nokogiri-xpath-operations.html
Saturday, January 7, 2012. Improving Nokogiri XPath operations through predictive hashing. A significant portion of my day job involves me writing large amounts of code to massage, manipulate and transform various different data sources from third parties into things that ultimately result in my "bread and butter", so to speak. But, its the weekend. What on earth. Am I doing writing about this now. Memory and CPU are not really a concern, but time is. While the documents are numerous, large and compl...
blog.spoofed.org
Jon Hart's Blog: Hawler, the Ruby crawler, 0.3 released
http://blog.spoofed.org/2009/01/hawler-ruby-crawler-03-released.html
Friday, January 2, 2009. Hawler, the Ruby crawler, 0.3 released. I received an email yesterday from ET LoWNOISE, a Metasploit. Contributor, regarding adding proxy support to Hawler. Apparently the hope is to be able utilize Hawler for the crawling duties within WMAP. The new web application scanning framework in Metasploit. Proxy support ("-P [IP:PORT]"). Support crawling frame and form tags. Add a useful default banner to calling scripts if none provided. Print out defaults when help is called. The obst...
blog.spoofed.org
Jon Hart's Blog: Racket 1.0.6 Released
http://blog.spoofed.org/2009/11/racket-106-released.html
Saturday, November 28, 2009. Racket 1.0.6 Released. Over the Thanksgiving holiday and thanks to the fact that I've been trapped indoors for two weeks, I've made some major improvements to Racket. Released in version 1.0.6. For those not in the know, Racket is a Ruby Gem used for reading, writing and handling raw packets in an intuitive manner. Between 1.0.2 and 1.0.6, there have been countless changes, including but not limited to:. Much improved IPv6 support, thanks largely to Daniele Bellucci. From C:/...
blog.spoofed.org
Jon Hart's Blog: June 2008
http://blog.spoofed.org/2008_06_01_archive.html
Monday, June 30, 2008. Defeating Private Domain Registration. The concept of private domain registration has probably been around longer than I think it has, but if I had to guess its rise in popularity coincides approximately with the rise in identity theft, spam and other Internet-related annoyances. Actually, you can just ask one of the largest providers of private domain registration, domainsbyproxy.com. You be the judge. Domain theft or abuse. Private domain registration works. And this is where thi...
blog.spoofed.org
Jon Hart's Blog: December 2008
http://blog.spoofed.org/2008_12_01_archive.html
Monday, December 22, 2008. Cisco AnyConnect 2.x Local Privilege Escalation. Exploit code for Linux. Platforms is available, however the code is in an unknown state. At one point I had attempted to unify the code so that it would work regardless of where it was run, however I never got much further than the thought. Since I cannot validate the exploit code any further, the code is being release "as is". Directory used as part of the Java applet is not checked for existence prior to use and, since there is...
blog.spoofed.org
Jon Hart's Blog: Various Racket Updates
http://blog.spoofed.org/2012/01/various-racket-updates.html
Tuesday, January 3, 2012. No, I have not fallen off the face of the earth. Lets just say I've been preoccupied. There have been several updates on the Racket front. In no particular order:. Racket has been yanked from Metasploit and replaced by Todd's Packetfu. Hosting of the Racket gem has moved to rubygems.org. So now you can just 'gem install racket'. Source and the SVN repository are still in the original places if you are so inclined. Subscribe to: Post Comments (Atom). View my complete profile.
blog.spoofed.org
Jon Hart's Blog: May 2008
http://blog.spoofed.org/2008_05_01_archive.html
Friday, May 23, 2008. Temporary files - yer doin it wrong. The number of security vulnerabilities I've discovered over the years that have started from casually observing how a particular system operates is a non-trivial amount. I don't recall where i was reading this or what the exact wording was, but it boiled down to the fact that some of the best hacker minds are those that act upon the thoughts that start with "I wonder what happens if I .". What if the filename is predictable? These are the breedin...