Lifedork » networking

VNCRush – utility to fuzz the vnc servers

admin — Mon, 01 Dec 2008 22:07:22 +0000

Image by mac steve via Flickr

Just played around packetstorm security (again) , and found this great tool! it’s called VNCRush , it’s used to fuzz against vnc server. Nothing more to say about this tool , download VNCRush : http://packetstormsecurity.org/fuzzer/vncrush.txt

Veency: VNC Server for iPhone

SniffIM – Yahoo and MSN Messenger Chat Sniffer

admin — Wed, 14 Nov 2007 22:30:40 +0000

SniffIM , a Yahoo and MSN Messenger Chat sniffer , is developed by the same developer of YSniff (the previous version of YM sniffer) . SniffIM is quite better than its older version , because inspite of being able to sniff Yahoo Messenger Conversation , it’s able to sniff MSN conversation too. It tries to record all the Yahoo and MSN messenger Conversation going on in a network (LAN , WLAN , etc) . SniffIM will also allow you to save the recorded / sniffed conversations into RTF files format such that you can even search for important information in those conversations.

Download : SniffIM 0.7

more reviews can be found here and here .

How to Detect Invisible Buddies on Yahoo Messenger

admin — Tue, 06 Nov 2007 19:45:32 +0000

well , lot of my friends have been asking me about how to detect invisible buddies on their yahoo messenger buddy list. I used to use BuddySpy to detect my invisible buddies before , but after i found this article , i will bravely recommend you to use Xeeber.com ’s feature. Xeeber.com is brought to you to serve you with that feature. All you have to do is just simply open the xeeber.com website , and then put your offline buddy’s id in the input box to see wether he/she’s online or not. This trick is 100 % working.

Screenshot :

More reviews about xeeber.com , can be read on Mark’s blog , baghy’s , technotrail’s , and here.

WiCrawl , Simple Access Point Auditor

admin — Sun, 28 Oct 2007 09:19:06 +0000

WiCrawl is a tool to sniff out the available Access Points and Automatically probes for their weakness. The plugins allow us to find out useful information about an AP so we donâ€™t have to manually check each access point. The program combines several existing wireless hacking tools and an easy-to-use “front end”. Once activated, WiCrawl will search for wireless local area networks within range and can automatically probe for specific vulnerabilities. It then calls up the tools needed to exploit these vulnerabilities and gain access to the protected network. The program is designed to work with multiple wireless cards, so that one card can scan for available networks while one or more other cards probe nearby networks for weaknesses.

Major features:

o Passive detection of Access Points (This means that if there are clients, we can find out the SSIDs from APs that have broadcast turned off).
o Support for multiple cards. Discovery can be run from one card, while the plugins can be run from the rest.
o Simple plugin interface with multiple Plugins (Basic association, DHCP, internet check, network mapping, WEP/WPA-PSK cracking, etc)
o Profiles to manage card scheduling and wicrawl usage (for example a profile for mobile users, and one for penetration testing).
o Support for multiple interfaces (GTK and status bar (with themes) now, text UI to come)
o Reporting and summary output in HTML, XML or Text
o Traffic packet logging in pcap format

Download here.

Other reviews can be read on: 4clover.us’s , anubis1k’s , stumpwa.wordpress.com’s , hackaday’s , budapestwireless’s , dailywireless’s .

Silica , Automatic Wireless Hacking Gadget

admin — Sat, 27 Oct 2007 08:31:54 +0000

Silica is a wireless hacking gadget produced by Immunitysec Inc . It’s purpose is to do penetration testings against Wi-fi (802.11) and Bluetooth network. It can search for and join 802.11 (Wi-Fi) access points, scan other connections for open ports, and automatically launch code execution exploits from a built-in exploit platform. The Operating system used in this gadget is a debian Linux with 2.6.18 version of kernel.

Example Use Cases:

scan every machine on every wireless network for file shares and download anything of interest to the SILICA device. Then just put it in your suit pocket and walk through your target’s office space.
actively penetrate any machines it can target

The Update of its exploits can be made when CANVAS professional updates. Just imagine , by using this gadget , you’d go to every office exists in your city , and start stealing their data , nice , isn’t it ?

For further informations about this gadget , you can also visit these blogs to get more reviews: WayOfTheGeek’s , WavingCat’s,CSO’s , and DigitalCommonSense .

the most complete Router Passwords database ever!

admin — Thu, 04 Oct 2007 22:59:28 +0000

DRPD 2007 (Default Router Password Database) has the most complete router passwords database ever. You can find almost all router brand ’s default password here. Simply select the Router Make from the dropdown list and click the Find Password button. You can even add your own Router password. Nice find , isn’t it ?

Just Give it a try : DRPD 2007 (Default Router Password Database)