Networking

A chain is only as strong as its weakest link – DNS Hijack Monitoring

Published December 29, 2013 |

It doesn’t really matter how much time your developers have spent writing secure code and how many layers of security you have implemented to protect your website from being hacked and defaced. Recent incidents have demonstrated that the bad guys will simply look for and find an easier way to hurt your business. Instead of […]

Posted in My Free Tools, Networking, Scripts | Tagged a-chain-is-only-as-strong-as, a-chain-is-only-as-strong-as-the-weakest-link, backtrack-wpa2, changes, corelan, deface, dns, DNS Hijack, dns-hacking, dns-hijacking-in-lan, dnshjmon, ha9-is-only-the-strongest-as-its-weakest-link, hacker, monitor, public dns, record, registrar, report, resolution, teamstrong-and-weakest

Cheat sheet : Installing Snorby 2.2 with Apache2 and Suricata with Barnyard2 on Ubuntu 10.x

Published February 27, 2011 |

By Peter Van Eeckhoutte (corelanc0d3r)

After spending a few hours fighting a battle against Snorby and Apache2 + Passenger, I finally managed to get it to run properly on my Ubunty 10.x box (32bit). Looking back, I figured I might not be the only one who is having issues with this.

So I decided to publish the notes I took while setting everything up, and as a little bonus, explain how to install and configure Suricata as well (configured in combination with barnyard2 which will pick up local logs and send them to the remote MySQL server).
Continue reading →

Posted in 001_Security, Linux and Unix, Networking, Papers | Tagged a2enmod, apache2, apt-get, barnyard, bind-address, bundle install, cheat sheet, cheatsheet, configuration, daily cache, database.yml, emerging, emerging-threats, ezprint, gem, HOME_NET, ids, installation, ips, libhtp-0.2.so.1, my.cnf, mysql, passenger, passenger-install-apache2-module, passenger.conf, passenger.load, PassengerRoot, PassengerRuby, procedure, qt patch, rails, ruby, sensor cache, setup, snorby, snorby_config.yml, snort, step by step, suricata, ubuntu, unified2.alert, waldo, wkhtmltopdf, www.testmyids.com

Script to backup Cisco switches via telnet / tftp

Published October 21, 2009 |

By Peter Van Eeckhoutte (corelanc0d3r)

A couple of days ago, I have released a small perl script to back up Cisco IOS based switches via telnet. I know there are a couple of similar scripts available on the internet, but most of them either use the “expect” functionality (which does not work all the time), or use SendKeys (which only […]

Posted in Cisco, My Free Tools, Networking, Scripts | Tagged backup, Cisco, cisco-script-backup, cisco-switch-telnet-linux-script, cisco-telnet-script, configuration, expect, free tool, ios, linux-script-backup-cisco, perl, sauvegarde-config-switch-cisco-en-perl, schedule, script, sendkeys, telnet, tftp, tftp server, vlan, vlan configuration

WPA TKIP cracked in a minute – time to move on to WPA2

Published August 29, 2009 |

By Peter Van Eeckhoutte (corelanc0d3r)

Just a quick note to let you know that 2 Japanese scientists (from Hiroshima and Kobe Universities) have found a practical way to crack WPA TKIP in about one minute, using a technique called “Beck-Tews”. This technique is not new. It has been discovered by some Germans back in november, but was somewhat limited in […]

Posted in 001_Security, Networking | Tagged backtrack-wpa-tkip-exploit, beck-tews, crack, crack-wpa-tkip, cracked, how-to-crack-wpa-tkip-backtrack, japanese, minute, mitm, qos, tuto-wpa-1-minute, wifi, wireless, wpa, wpa tkip, wpa-hack-tools-2011, wpa-tkip-crack, wpa-tkip-psk-vulnerability, wpa-tkip-tutorial, wpa2

Spread the word ! nmap 5 released

Published July 16, 2009 |

By Peter Van Eeckhoutte (corelanc0d3r)

Insecure.org has released a new major version of the free, open source “nmap” security scanner. (Don’t just call nmap a port scanner – Thanks to many improvements over the last years, nmap has become an excellent security scanner). Visit http://nmap.org/5/ for more information about this new version. Although there are roughly 600 updates in this […]

Posted in 001_Security, Networking | Tagged discovered open, fyodor, i-couldnt-scann-with-nmap-vmware-local-network, initiating, nmap, nns, nnt, nnt nns, nse, open port, port tcp, scan, script, smb, syn, syn ack, tcp, tcp discovered, tcp open, tcp-sequence-prediction-difficulty261-good-luck

Juniper ScreenOS : Active/Passive clustering

Published July 5, 2009 |

By Peter Van Eeckhoutte (corelanc0d3r)

Introduction In this blog post, I’ll show the easy steps to set up a screenOS based active/passive cluster. I’m not going to discuss the configuration of active/active clusters because, in my opinion, this configuration is only needed in rare circumstances and may introduce some weird behaviour issues. Furthermore, active/passive clusters have been working quite well […]

Posted in 001_Security, Juniper, Networking | Tagged arp, backup, backup device, cluster, configuration, device, devices, eBB, failover, iBB, interface, Juniper, master, master device, mycluster, node, nsrp, OB, preempt, redundancy, rto, screenos, set, set nsrp, sync, vsd, vsi

Juniper ScreenOS : default route manipulations and redistributions

Published April 19, 2009 |

By Peter Van Eeckhoutte (corelanc0d3r)

The default route or “route of last resort” is an important route in most present inter-network connectivity configurations. It contains all public and private routes possible and is responsible for directing traffic to a next hop when no better route is found. In most cases, it is used to allow networks to access the internet, […]

Posted in Juniper, Networking | Tagged access-list, advertise, advertise-def-route, as prepend default route, as-path-access-list, bgp, change connected route preference, connected, default, default route, ecmp, export, import, Juniper, many, metric, multiple default gateways, ospf, preference, redistribute, redistribute default gateway, reject, reject-def-route, reject-default-route, route, route-map, screenos, track-ip

Juniper ScreenOS : defeating iBGP full mesh requirement using route reflectors and confederations

Published March 22, 2009 |

By Peter Van Eeckhoutte (corelanc0d3r)

As explained in one of my earlier posts, one of the requirements to successfully setup and operate an iBGP configuration is that all iBGP clients need to have a BGP connection to all other iBGP clients. (= full mesh). This is required because an iBGP device only exchanges information about its own networks and it […]

Posted in Juniper, Networking | Tagged as, autonomous system, bgp, bgpd, Cisco, cluster-id, confederation, ebgp, full mesh, ibgp, ios, Juniper, Linux and Unix, neighbor, path, peer-group, quagga, reflector-client, remote-as, route reflector, route-reflector-client, rr, screenos, zebra

Cheatsheet : Cracking WPA2 PSK with Backtrack 4, aircrack-ng and John The Ripper

Published February 24, 2009 |

By Peter Van Eeckhoutte (corelanc0d3r)

Basic steps : Put interface in monitor mode Find wireless network (protected with WPA2 and a Pre Shared Key) Capture all packets Wait until you see a client and deauthenticate the client, so the handshake can be captured Crack the key using a dictionary file (or via John The Ripper) I’ll use a Dlink […]

Posted in 001_Security, Linux and Unix, Networking | Tagged aircrack-ng, airodump-ng, backtrack, backtrack-5-crack-wpa2-without-dictionary, backtrack-to-crack-wpa2, crack, crack-wpawpa2-psk, hack-wpa-backtrack-4, how-to-crack-wpa2-with-backtrack-5, how-to-hack-wpa2-psk-password, how-to-hack-wpawpa-2-using-backtrack, john the ripper, jtr, linux-cracking-wpa-keys-with-kismet, psk, wireless, wpa, wpa handshake, wpa2, wpa2-psk

Cheatsheet : Cracking WEP with Backtrack 4 and aircrack-ng

Published February 20, 2009 |

By Peter Van Eeckhoutte (corelanc0d3r)

I know, there a probably already a zillion number of websites that show how to crack WEP. So I guess this will be website zillion+1 learning how to audit your own WEP security. To be honest, the main reason I’m putting this info on this blog because I just wanted it as a quick reference- […]

Posted in 001_Security, Linux and Unix, Networking | Tagged aircrack, aircrack-ng, aircrack-ng-crack-wep-pdf, aireplay-ng, airodump, airodump-ng, arp, backtrack, backtrack-wep-crack, cheetsheet-wep-backtrack-5, crack, enough-iv-to-crack-wep, hacking-wep-backtrack, OPN, packetforge-ng, SKA, wep, wep-mac-filter-no-client, what-switch-in-mac-to-backtrack, wireless

Corelan Cybersecurity Research

:: Knowledge is not an object, it's a flow ::

A chain is only as strong as its weakest link – DNS Hijack Monitoring

Cheat sheet : Installing Snorby 2.2 with Apache2 and Suricata with Barnyard2 on Ubuntu 10.x

Script to backup Cisco switches via telnet / tftp

WPA TKIP cracked in a minute – time to move on to WPA2

Spread the word ! nmap 5 released

Juniper ScreenOS : Active/Passive clustering

Juniper ScreenOS : default route manipulations and redistributions

Juniper ScreenOS : defeating iBGP full mesh requirement using route reflectors and confederations

Cheatsheet : Cracking WPA2 PSK with Backtrack 4, aircrack-ng and John The Ripper

Cheatsheet : Cracking WEP with Backtrack 4 and aircrack-ng

Corelan Training

Donate

Corelan Team Merchandise

Corelan on Slack

Actions

Categories

Hi there!

We have good news for you!