Computer_Security
-
Posts
179 -
Joined
-
Last visited
-
Days Won
2
Posts posted by Computer_Security
-
-
Yea i know but once you get to the download page it says Community Edition what does that mean? Is it like a dumbed down version?
-
Thanks Sitwon
Personally, I have always trusted the ThinkPad T-series as the best laptops for programmers, admins, or security folks. However I'm not sure I'm a fan of Lenovo's most recent changes. They're messing with they keyboard, which had been one of the iconic features of the ThinkPad line for almost 30 years. Still, they have fantastic hardware and construction compared to the majority of what I see on the market from other manufacturers. So, worth a look.
If you're just want power and are looking to gaming laptops for it, you should consider the MSI GS70. It packs a lot of power for it's size/price.
http://www.newegg.com/Product/Product.aspx?Item=N82E16834152589&cm_re=gs70-_-34-152-589-_-ProductAlienware laptops aren't bad, but they're really not designed for the working needs of an engineer. The keyboards are sufficient for gaming, but not fantastic for typing at all day. And unless you're also using it for gaming, that big GPU is just going to add bulk, weight, and drain your battery faster for no real benefit.
There are a lot of alternatives to Alienware out there which are worth looking at, unless you're really married to the idea of buying from Dell.Yea I know that the alienware is not the best choice because it is a waste of money because I don't give a shit about gaming! I just wanted to get the point across that I need something with power. I will definitely look into the laptop that you recommended. And while I was looking at Dells XPS line I found out that they are through the roof in prices! The new ones start at my max budget and I just can't financially do that, you know! It's hard because I wish you could just build one but you really can't because everything is soldered on in a laptop and It would just be way to big of a headache!
-Thanks
-
Hacking and pentesting is not really about writing code. It's more about creativity, and solving puzzles. Programming languages, like all other knowledge, are just tools that you can apply to try and solve the puzzle.
The question isn't really what to learn, because you should learn everything you can to have the broadest set of tools to help you in solving puzzles. The real question is which tools you want to learn first.
Learning to use a programming language is important because programming languages are one of a hacker's most useful and versatile tools. If you can write programs, you can automate tasks, compute important values, or poke and probe at the inner workings of an otherwise closed system. But often it's not the language itself, or even the programs you write, that is most valuable to a hacker. Rather, it's the deeper understanding of the underlying system. Understanding how software is made, how it works, how things are likely to be implemented, which approaches are easier or more obvious versus those which are cumbersome. The insight into what is happening, or likely to be happening, behind the scenes is what will really pay off when you're trying to solve the puzzle of breaking the system. Cracks tend to appear at the boundaries between different abstraction layers, so learn each layer well.
Learning C is a very good start, because it is a lingua franca, or universal second language, in most of the field. Much like Latin is to the scientific community. If you can understand C, you can understand virtually any language you are likely to see published, as most of them are either direct descendants or were originally implemented in C. (There are some notable exceptions, but they are uncommon enough to ignore for now.)
There is no bad language to learn, but there are some which you will want to put at the top of your list. First, figure out where you spend the majority of your time, and then learn the language which will help you best in that context. For some people, they spend a lot of time in the browser poking around at web applications. If that sounds like you, learn to use JavaScript and start writing user scripts to automate or transform the pages you interact with. Other people spend a lot of time in the shell. If you're a command-line junkie you should devote some time to really learning the ins and outs of Bash (or which ever shell you use). You might be surprised how powerful your shell's scripting language can be, and often a small investment can pay very large dividends in terms of automating or simplifying the tasks you do the most.
For some tasks you may find that you need to write stand alone applications, but shell scripts are just not suitable. Since you already know C, that's a good option to turn to. However you may find that Python or Ruby or Perl is a bit quicker and easier than writing, compiling, and linking together a C application. If you've already been learning JavaScript, you might use that in conjunction with Node.js to similar kinds of applications.
It's somewhat less common for hackers or pentesters to write code in Java, but it is still worthwhile to learn either Java or .Net to become familiar with languages which run in a VM and the ways in which their development cycle differs from other types of languages. It's primarily useful if you plan on attacking these languages. Java applications are commonly vulnerable to manipulation of the classpath, for example.
I would point out, though, that even if you don't end up using every language you learn, it is usually still valuable to have learned them. Learning a new language gives you a different perspective on familiar problem sets. It shows you new ways of looking at problems and different approaches to solving them. Often, even if you don't end up using a language that you've learned, you will find yourself re-apply patterns from one language in a different language. And as I mentioned before, understanding the design and trade-offs of a given language can leak information about where to find mistakes or weaknesses in applications written in that language.
Once you have a couple of languages under your belt, you might take a pass at Seven Languages in Seven Weeks.
http://pragprog.com/book/btlang/seven-languages-in-seven-weeks
Or even the sequel, Seven More Languages in Seven Weeks.
http://pragprog.com/news/seven-more-languages-in-seven-weeks
Remember, the point is not that you will ever have a need to directly use any of these languages. Rather, the point is to inspire you with different ways of looking at familiar problems. Because at the end of the day, hacking and pentesting are about your ability to be creative and solve puzzles with the tools available to you, not your ability to write code.
Thanks SItwon for the in-depth review and the great ideas, it really helped!!!
-Jack
-
So I am currently learning C with the all-in-one Dummies book and it is going well! but I want to know what language is best for hacking and pentesting? Is there any language that was very useful in a pentest? What I am thinking is that once I am good with C I will learn java and python, Is that a good idea or NO?? I am completely lost when it comes to programing so any help or pointers would be greatly appreciated!!
-Thanks
-
The only thing that I can think of is using Wireshark and filter every thing out but HTTP or.....
I found this http://www.netfort.com/solutions/user-activity I have never tried it before and I don't know how reliable it is but that is just what came up on google so....
You can also use VNC to remote into the computer!
- Hope this helped
-
I don't completely understand what you are asking but I think the answer is no
Here is some things you can refer to....
http://www.youtube.com/watch?v=pZ809uTlENE
http://www.youtube.com/watch?v=WFdVkSaHRpU
http://www.ehow.com/how_6903423_splice-cat-5-cable-together.html
-Hope this helped
-
I added up the price of everything and it's around 3000$ which when you think about it isn't too bad but the only bad thing is that technology moves way too fast and all of this gear will be old news and out dated in about 2-3 years
-
While I was researching I found thishttp://wellresearchedreviews.com/keylogger-software-reviews.html?gclid=CNOWxMnxvb8CFUwV7AodDlAAQw
Since you said that you don't mind spending money the top rated keylogger is 100$
And with some Ducky Script I bet that you could put it on a Ducky!!! I don't know how you would do that but I'll try to write it and if I'm sucsessful i'll post it!
-
Thanks cooper and gnomeprogramming but I think I want a windows 7 machine because I hate 8/8.1 and macs are overpriced in my opinion and they arent worth it! I was actually looking at dells xps line which is really nice and alienware like I said before!
-Thanks Guys
-
Ohhh thanks Mr-Protocol
-
Thanks barry99705 and cooper for clearing that up
-
Okay so back to Sockstress
I found this on youtube that was published only 2 days ago.... this guy re-wrote Sockstress in python and now it is very responsive and works great!!
https://www.youtube.com/watch?v=FyVUgrYu_eg
here is the code: https://github.com/hack1thu7ch/Python-SockStress
-
Lol
Haha, lesson learned eh? Read the links before posting them? :P
WTF is unicorscan.org!!! lol
-
wow that's embarrassing
-
So my laptop is about 5 years old and I am looking for a huge upgrade because I'm out of space on my current laptop and It just doesn't have as much power as I wan't! This laptop would be used as a pentes laptop so I wan't as much power as I can get! So I have a Dell Inspiron 1545 which has 2GB of RAM and a Pentium dual core CPU T4300. I am looking for something that has 16GB of RAM and a Quad core CPU. I don't want to get a 2 in 1 were it is a laptop and a tablet because that is the stupidest thing I've ever heard of. Ohhh and I would like it to run Windows 7 but its okay if it runs 8/8.1 because I could always change that. My max budget is around 1600$. If you guys have any suggestions I would love to hear them.
Currently I am looking at an Alienware 14 with an i7 and 16GB of RAM I know that this is a gaming laptop but It still is really powerful!
-Thanks
-
So I was watching a video the other day (DefCon Talk) and the guy mentioned a piece of software called SOCKSTRESS. What he said was that it sent packets with a value of 0 or something like that and what it did was eat up the ram on the victims machine ridiculously quick! So I wanted to know if I could put this on a linux based machine like UBUNTU or BT5. And if anyone has any information on this software I would love for you to share it because I would love to learn how to use it!
Here is the download: https://defuse.ca/sockstress.htm
Here is the Wiki: http://en.wikipedia.org/wiki/Sockstress
-
You can pick up a 2013 nexus 7 on sale pretty cheap. Then just install the free version of the software. It's a bit older than what they're selling, but it has most of the bells and whistles.
Yea someone said that in a video I was watching but he wasn't sure that you could do it but then I found this https://www.pwnieexpress.com/support/downloads/
-
They're basically the same thing, but a ddos is a shit-ton of people doing a dos attack to a single host. They're harder to stop since they're from multiple ip addresses. If you get a system in place like the anonymous morons had, you can have several hundred thousand machines hitting a single site. That little netgear device would crap itself from that kind of attack.
Yea, and thanks for the clarification! So a DDOS is like a BOT NET in a way!
-
I would absolutly love to own a pwnpad or a pwnphone but the price is killing me! Don't get me wrong the product looks amazing and would be a great piece of hardware to have.
-
Still need to do more testing on it. But for my intentions it seems stable. ( no longtime test yet ). Also i'm not running it with wifi.
Your saying DoS prevention not DDoS. Big difference there. And yes it will probably just drop all packets it receives from that ip. Kinda loled they call a NAT a firewall. Even a home and kitchen router for 30$ got NAT and spi
Yea I was asking the same thing! Why did they add NAT as a firewall lol!
So what exactly is the difference between a DOS attack and a DDOS i know that DOS either stands for denial of service or disk operating system and DDOS stands for distributed denial of service but I never understood the diference between the two could you explain it to me?
-
That petition is not going to do anything.
I'm sorry that website is very sketchy and there are only 10 people that signed it!
-
That's cool did they say anything else?
-
So I was looking at NETGEARS and under the more expensive line I saw this...
- Double firewall protection (SPI and NAT)
- Denial-of-service (DoS) attack prevention
So my question is how reliable is the DDOS prevention? and how does it work does it like block ip's that send too many pings to it?
And how reliable is the double firewall?
-Thanks
-
In that case pfsense.
Yup thats what I'm gonna go with! Thanks again
I need help finding a high performance laptop
in Everything Else
Posted
I was looking at their website and I found this
MSI GT60 0NF-612US
PROS
• Windows 7 Professional • Intel® Core™ i7-3630QM Processor • 15.6" Full HD Anti-Reflective 95% NTSC Display (16:9; 1920 x 1080) • NVIDIA® Quadro® K1000M (2GB DDR3 VRAM) • Matrix Display • Cooler Boost 2 • Full-Color Programmable Backlit Keyboard by SteelSeries • Killer E2200™ Networking 802.11 b/g/n WLAN • 750GB HDD (7200 RPM) • 12GB DDR3 1600MHz System Memory • USB 3.0 x 3; USB 2.0 x 1 • VGA, HDMI, mDP • Blu-ray Disc Burner • Built-in 720p HD Webcam • World-Class Dynaudio Premium Speakers • Audio BoostCONS
-I don't know what I can upgrade( like how much ram can it hold and stuff like that ) usually I use crucial, You go to their site put in what computer you have and it tells you what you can upgrade and were you can get it but crucial.com dosent have it in their database Do you guys know any other way I could find out???
-Price (it is priced at 1600$ which is my top and its gonna take some time to scratch up the cash)