Our blog
Since July 2010 Ubuntu has disabled support for SSLv2 in OpenSSL library. If you are testing remote hosts for SSLv2 using a client that does not support it, you are getting false negatives.
Here is how you can check if you system supports SSLv2:
alla@notsoshiny:~$ socat OPENSSL-LISTEN:1080,method=…
May 9, 2012 | by alla
UPDATE: Newer version of sslcaudit is available here.
Here is sslcaudit v1.0 RC1. The goal of the project is to develop a utility to automate testing SSL/TLS clients for resistance against MITM attacks. The project is GPL-licensed, source code hosted at github. PDF user guide is available at here.…
May 1, 2012 | by abb
I've written a custom TCP port scanner, to handle a broken target sporadically responding with SYN-ACKs even on filtered ports. Nmap detect such ports as open (in syn- and connect-scan modes).
$ sudo ./run.sh -s 172.16.33.1 -d 172.16.33.144 --p0 21 --p1 25 -i vmnet8
INFO:Scanner:res 172.16.33.144…
April 13, 2012 | by abb
We are looking for a penetration tester. Most of the work is in or around Brussels. Some of the work will have to be done remotely. Employee or subcontractor.
You'll get a lot of opportunities to hack stuff. Actually, you'll be trying to break stuff most of your working time. Except when you are…
March 8, 2012 | by alla
MagicTree 1.1 is released and available for download. This release includes:
Rapid 7 NeXpose XML import (both simple XML and full XML formats are supported)
Arachni XML import (as of 0.4.0.2. Thanks to Herman Stevens of Astyran for contribution)
OWASP Zed Attack Proxy XML import (development…
February 14, 2012 | by alla
Herman Stevens has developed an XSLT for importing Arachni data into MagicTree.
To test his XSLT I went to install the latest development version of Arachni on my Ubuntu 11.04 (natty). Having fought with it for a while and finally managing to install it, I thought that the description of the…
January 28, 2012 | by alla
As promised here I am working on XSLT for Rapid7 NeXpose XML reports.
There is one great big problem though. "NeXpose Simple XML" format (which is the only XML format available, at least in community edition) contains almost no vulnerability information.
That is:
* It does not contain a human…
January 5, 2012 | by alla
I have created a forum for MagicTree. You can ask and answer questions, discuss features, post tips and tricks, or complain.
December 22, 2011 | by alla
Here is a little tool which help finding and dumping any serialized Java objects in a binary stream. It accepts just one parameter -- the name of the file to load the binary stream.
First run:
$ java -jar jsersearch.jar /tmp/payload.dat
Found objectStream at offset 55, dumping ...
Caught exception…
November 10, 2011 | by abb
Well, maybe the title is a bit ambitions, but at least the script below is is an improvement comparing to these two approaches: 1 and 2:
* It validates server-side certificate instead of ignoring them
* Logs out to invalidate the session cookie and wipes the temporary file used to store it
* Does…
October 29, 2011 | by abb
Contacts
+32 (0) 2 215 53 58
Gremwell BVBA
Sint-Katherinastraat 24
1742 Ternat
Belgium
VAT: BE 0821.897.133.