Fixing ‘guake can not init’ and buggy tab titles on Backtrack 5 R3

Hi Folks, I’m a heavy Guake Terminal user and I just installed the latest Backtrack 5 revision (R3) and installed Guake on it. I was surprised when I tried to start by getting the message: “Guake can not init!\n\nGconf Error.\nHave you installed guake.schemas properly?” Long story short, it seems that the package bundled with this version of Backtrack (and maybe others) have a bug into the debian package file/script that installs the guake.

Read More

Talking about D/DoS (again) at XVII Semana de Informática (Computer Science Week)

I’m speaking at the 17th Computer Science Week at Minas Gerais, Brazil November 24th. I’ll be giving an extended version of my H2HC Talk for Computer Science students at UFV (Universidade Federal de Viçosa / Viçosa Federal University) at Minas Gerais, Brazil. More at my talk’s summary page on the event website @UPDATE It was a great talk! Thanks for everyone that attended! Slides are on my slideshare!

Read More

Quick and dirty ngrep credential (username/password) sniffer

Some time ago I’ve posted a quick (and dirty too!) command-liner using tcpdump to sniff plaintext credentials over the wire. Now I’ve acomplished the same thing with a shorter regex and ngrep tool. ngrep '[&\s?](?:login|user(?:name|)|p(ass(?:word|wd|)|w|wd))[\s:=]\s?([^&\s]*)' -q -i Where -i is for case-insensitive and -q for more precise output. See man ngrep for additional information. And the output is as follows: interface: eth0 (10.1.1.0/255.255.255.0) match: [&\s?](?:login|user(?:name|)|p(ass(?:word|wd|)|w|wd))[\s:=]\s?([^&\s]*) T 10.1.1.111:49196 -> 96.126.98.110:80 [AP] POST /users/signin <acronym title="HyperText Transfer Protocol">HTTP</acronym>/1.

Read More

About Hackers 2 Hackers Conference 9th Edition

Hi Folks, This last weekend was my talk on Hackers 2 Hackers Conference 9th Edition @ São Paulo, Brazil. The talk was in portuguese and the slides are available here (download pdf) and here (slideshare). The subject of the talk was about layer 7 denial of service techniques and tools, using haproxy and socat to create a distributed denial of service from a single node, some XSS payload for DDoS and demonstration of the GoldenEye Mobile tool released today.

Read More