Wednesday, June 17, 2009

Malware Hash Fox


Malware Hash Fox is a plugin for Mozilla Firefox Web Browser compatible with most Operating Systems (Windows,Linux,Mac). The plugin will scan every downloaded file for presence of computer viruses and trojans using the malwarehash.com online service.
Some features of the plugin are:

  • Scan downloaded files for presence of viruses;
  • View analysis report;
  • Automatically delete infected files;
  • Enable/Disable the plugin.

Version 1.0
Date: 26/04/2009
Size: 37kb



Download From : Mozilla Firefox addson

Download From : Malwarehash

By H Z at 1:38 PM 0 comments
Labels: , ,

Tuesday, June 9, 2009

Installing Metasploit on Ubuntu/Kubuntu/Debian Linux

At this time, no package exists for Metasploit 3. In order to use the Metasploit Framework on Ubuntu or Debian distributions of Linux, the following packages need to be installed:

# apt-get install ruby libruby rdoc
# apt-get install libyaml-ruby
# apt-get install libzlib-ruby
# apt-get install libopenssl-ruby
# apt-get install libdl-ruby
# apt-get install libreadline-ruby
# apt-get install libiconv-ruby
# apt-get install rubygems *

*The RubyGems package may need to be manually downloaded and installed.
If you would like to use the experimental GUI, you will need to install the following packages:

# apt-get install libgtk2-ruby libglade2-ruby

If you would like to use the online update feature, you will need to install the "subversion" package as well. Once the pre-requisites have been installed, download the Unix tarball from Framework Website and extract it to the directory of your choice. If everything was installed
correctly, execute the interface of your choice to get started (msfconsole, msfweb, etc).

By H Z at 3:20 PM 0 comments
Labels:

Thursday, April 30, 2009

Nmap 4.85BETA6 now avail w/Conficker detection


The Conficker worm is receiving a lot of attention because of its vast scale (millions of machines infected) and advanced update mechanisms. Conficker isn't the end of the Internet (despite some of that hype), but it is a huge nuisance we can all help to clean up.

Thanks to excellent research by Tillmann Werner and Felix Leder of The Honeynet Project and implementation work by Ron Bowes, David Fifield, Brandon Enright, and Fyodor, we've rolled out a new Nmap release which can remotely scan for and detect infected machines. Nmap 4.85BETA7 is now available from the Nmap Site, including official binaries for Windows and Mac OS X. To scan for Conficker, use a command such as:
nmap -PN -T4 -p139,445 -n -v --script smb-check-vulns,smb-os-discovery --script-args safe=1 [targetnetworks]

You will only see Conficker-related output if either port 139 or 445 are open on a host. A clean machine reports at the bottom: “Conficker: Likely CLEAN”, while likely infected machines say: “Conficker: Likely INFECTED

for more info :

http://seclists.org/nmap-hackers/2009/0001.html
http://seclists.org/nmap-dev/2009/q1/0869.html
http://insecure.org/
http://www.doxpara.com/

Nmap Download
By H Z at 12:38 PM 0 comments
Labels: , ,

Wednesday, April 22, 2009

Ubuntu 9.04



There are only two days left until the third Alpha version of the upcoming Ubuntu 9.04 (Jaunty Jackalope) will be available...
By H Z at 3:04 PM 1 comments
Labels:
Subscribe to: Posts (Atom)