Comments for Thoughts on Security

Comment on Network Nightmare – PXE talk at Defcon by scriptjunkie

scriptjunkie — Fri, 17 May 2013 21:34:32 +0000

Reza,
I have not tested this, but I believe the same basic PXE attack will work with UEFI by using linux EFI images. See http://docs.fedoraproject.org/en-US/Fedora/17/html/Installation_Guide/s1-netboot-pxe-config-efi.html for an example.

Creating a secure configuration depends on what your motherboard supports. Intel now recommends the use of AMT (Active Management Technology) to perform remote out-of-band management. Is that supported on your motherboards?

Alternatively, if your hardware does not support secure alternatives, you will need to rely on switch/router features like ACL’s to prevent any system other than the real PXE server from sending DHCP or TFTP messages.

Comment on Network Nightmare – PXE talk at Defcon by Reza

Reza — Wed, 15 May 2013 11:01:11 +0000

Hello.
first Thank you for such a nice video. It helps me to find out some security bugs.
second I apologize for my bad english.
I must use pxe.
so I decide to use boot integrity services. but I can’t find a way to add certificate to bis. so I decided to use UEFI for security.
can it bring security for me?
how can I run a server that uses pxe and works with secure keys?
can you help me please?

Comment on sessionthief by scriptjunkie

scriptjunkie — Sat, 27 Apr 2013 03:50:30 +0000

Thanks for the bug report! Should be fixed now.

Comment on sessionthief by genuix

genuix — Thu, 25 Apr 2013 09:20:38 +0000

Hi sir,

Congrat for you so great work, realy apreciate it.

I tryed to compile it in the new Kali system i just installed.

Just to tell you about a possible typo in 2 files of the sessionthiefSRC:

nviewFrame.h:44:27: fatal error: processthread.h: No such file or directory
processThread.cpp:3:27: fatal error: processthread.h: No such file or directory
in both case i just correct the “t” to “T” in the included file name and is’t compiled well.

Cheers
Jeff

Comment on msfgui by National CCDC Red Team – Fair and Balanced | Strategic Cyber LLC

National CCDC Red Team – Fair and Balanced | Strategic Cyber LLC — Wed, 24 Apr 2013 14:26:45 +0000

[...] they could task their own Beacons. Several tools were in play on the National CCDC Red Team. I saw msfgui, msfconsole, Core Impact, Dark Comet, and Cobalt Strike. There was some Armitage too early on, but [...]

Comment on msfgui by Metasploit 4.6 sem interfaces gráficas! « Evandro Villa Verde

Metasploit 4.6 sem interfaces gráficas! « Evandro Villa Verde — Sun, 21 Apr 2013 04:03:18 +0000

[...] mais utilizado no universo conhecido, resolveu remover as duas interfaces gráficas Armitage e msfgui da sua nova versão, a [...]

Comment on Economics in One Lesson by vesh

vesh — Fri, 12 Apr 2013 21:25:28 +0000

Economics in one lesson is an awesome read, the broken window fallacy, especially. I believe Rothbard’s Man, Economy, and State has some key items that I thought were missing, but would still be good entries. Namely, the evolution of money and central banking theory. Capital Based Economics by Dr. Garrison is a good supplement to Hazlit’s book as well.

Comment on msfgui by Metasploit 4.6 – Now with less Open Source GUI | Strategic Cyber LLC

Metasploit 4.6 – Now with less Open Source GUI | Strategic Cyber LLC — Thu, 11 Apr 2013 12:00:54 +0000

[...] B. at Rapid7 stating that the next binary installer of Metasploit would ship without Armitage and msfgui. Metasploit 4.6 drops both programs. According to Tod, the Metasploit Framework repository on [...]

Comment on Running Code From A Non-Elevated Account At Any Time by Pentest Geek » Scheduled tasks with S4U and on demand persistence

Pentest Geek » Scheduled tasks with S4U and on demand persistence — Wed, 10 Apr 2013 23:47:34 +0000

[...] came across an interesting article by scriptjunkie (which you should really read) about running code on a machine at any time using [...]

Comment on Saving shells with PrependMigrate by scriptjunkie

scriptjunkie — Wed, 27 Mar 2013 01:11:16 +0000

Fix is on the way up!