Recent Posts

Pages: 1 2 [3] 4 5 ... 10
Hacking and Security / Re: Corelan (bootcamp and advanced exploit development)
« Last post by chapp on February 09, 2016, 12:17:49 pm »
I know it's an old post (I am being told by a big fat red box...), but anyway. All slides provided in this course are made for each individual and heavily water marked with the participant's full name. All slides are images, thus just scraping the pdf for text isn't possible.

The course is not that exepensive compared to other similar courses e.g. Offensive Security's advanced windows exploitation and exodus intelligence (I haven't attented exodus', but the topics are very similar).

It is a very good course and corelan has spend a lot of time refining and developing the material. It is really worth the price.

Note that I have no affiliation with corelan, just really liked the course.
Reverse Engineering / Re: [Beginner Challenge] Screen Locker
« Last post by Deque on February 09, 2016, 09:14:20 am »
Thanks Trevor. Great analysis. What I love about your posts is that you often use an entirely different approach than me. I can learn from your posts as well by just seeing more possibilities to go about it; like in this case restricting the screen locking area. Great idea.  ;D

Edit @everyone else: Feel free to try and find more approaches for disabling the screen locking.
Tutorials / Re: Injecting metasploit payloads in arbitrary APKs
« Last post by Async on February 09, 2016, 07:01:58 am »
@m0rph: I added some things that may interest you on my post
Tutorials / Re: Injecting metasploit payloads in arbitrary APKs
« Last post by m0rph on February 09, 2016, 05:31:09 am »
Async, he didn't mean the script kiddie way of doing this, he meant the way where if someone were to follow your tutorial they would actually learn something.

For example, apktool doesn't actually decompile the apk into code it unpacks the apk into referenced objects. The dex class file has to be converted into jar format before it can be decompiled into actual code. Of which, apktool does not do.

Also, blindfuzzy already knows this. He's asking to see if you know this and if you can elaborate on it so that - again - you and other users can actually learn something.
General discussion / Re: Fuck the system! We can bring it down
« Last post by r4kk00n on February 09, 2016, 03:40:57 am »
In life there are two courses we can take.
1. Acceptance of circumstance (ie. Do nothing)
2. Apply force against the status quo (ie Take Action)

Both are choices either willfully made or made out of ignorance. Some battles are worth fighting. Some are worth ignoring.

So long as my family and friends are safe and successful, there is no need for me to take action.

Being rebellious for the sake of rebelling is childish and ignorant.

This highlights the type of thinking that is one of the biggest problems we face as a species.
"Who cares if a large portion of the planet's life is being wiped out, who cares that millions of people struggle with lack of  necessary survival resources, as long as I am not directly affected, why should I care?"

It is really too bad that these people who are driven by greed and selfish motives don't realize that we as a species benefit more from cooperation and sharing than we do from constant infighting ad exploitation.
Humans are the only species that  utilizes intraspecies competition more than cooperation.
Doesn't seem to be working very well for the vast majority of us.
Tutorials / Re: Injecting metasploit payloads in arbitrary APKs
« Last post by Async on February 09, 2016, 03:14:59 am »
How can someone put the payload in a legit app?
He could do it by following my tutorial :)

How and what do you use to decompile the metasploit apk?
How :
Code: [Select]
apktool d app.apk -o app/
What : apktool

What issues might someone have if they are doing this to legit apps?
Maybe they'll get some problems to find the good hook points since some apps have many
That's the only issue they could get from this script

Will something like this make it into the Google Play store?
Dunno, never tested tbh
But with some work to 'obfuscate' this injection, it could be better :)

Any more questions? Or more specific questions?
General discussion / Re: What were your Christmas presents?
« Last post by r4kk00n on February 09, 2016, 02:10:53 am »
I don't celebrate Xmas because it is a shitty commercial holiday where people are pressured to show their "love" for family and friends by buying things.
It is called the "jolliest time of the year," yet statistically it is one of the peak times for suicides.
People trample each other to death during sales to get whatever item is hot that season.
It is pretty much the worst of materialism and capitalism all condensed into one shitty holiday.
General discussion / Re: Hey everyone! Newbie asking some questions
« Last post by r4kk00n on February 09, 2016, 01:44:49 am »
I can totally empathize with the OP.
That is kind of where I am now. My specific problem is that there is such an over-abundance of information, I have trouble choosing and sticking with a starting point.

The other problem I have is that  much of the information available is written to an audience that already has some understanding of  given topic.  I know, for example, that a good place to start would be with networking basics, but as I don't have much of an existing knowledge base, it is difficult for me to find good sources for beginners that are not out of date.
If I don't have a good understanding of networks, how can I tell if the info in a source is outdated, as I have no basis of comparison.
I would greatly appreciate any suggestions and advice.
Unless it is just to tell me I am a n00b, which I already know, so that would really just be a waste of your time, and mine (unless talking down to people makes you feel superior, then by all means, ego boost away)
General discussion / Re: Precrime on the way
« Last post by x40a0e on February 09, 2016, 01:43:35 am »
While I completely disagree with the mass surveillance going on, I just feel the need to play devil's advocate here.

It doesn't sound like they are actually not allowing people to enter the store or calling the police. Many stores (especially those that have a staff monitoring CCTV) have a bunch of photos they use to identify people that have shoplifted before, which I don't think is unreasonable at all. This sounds like it could be an efficient way of multiple store collaborating on these lists, and helping to just warn, and keep an eye on them. I don't know about the laws in the UK, but here in the US you can't accuse somebody of shoplifting and kick them out, or you will face some big legal/civil consequences. All this being said, I don't think the technology in and of itself is bad, but has a lot of potential to be abused. It is indeed a scary thought.
General discussion / Re: Hey everyone! Newbie asking some questions
« Last post by r4kk00n on February 09, 2016, 01:37:00 am »
Your post sounds like a bad troll attempt and shows zero self-motivation.

I mean you can talk big and say that you've tried over and over again, to feel better about yourself, yet I believe you've never even googled about what a IP really is.. And that doesn't leave a good impression on the community.

If you really want to know some of the basics, grab a copy of TCP/IP Illustrated(maybe a little bit outdated, but still top-notch knowledge) and lose yourself in this book. Or start with the OSI model. Or write a gui in visual basic to track IPs in facebook.

This sounded maybe a little bit harsh, but questions like yours are polluting the community and forum and this is not okay.

It did seem a bit harsh. Worse, it seemed counter-productive.
Supposedly, this is supposed to be a "community" to communicate and share knowledge with people who have similar interests.
The OP came asking advice, acknowledging that they have had issues with quitting things in the past due to lack of motivation and other factors, and were asking people who have maybe been there before, and come through it, for advice.
Immediately insulting someone and shutting them down isn't the best way to handle that.
Especially with this push by admins for a "more active community" where they are encouraging people to post more.
If this is the typical response that can be expected upon posting,  I wouldn't expect to see many new, lasting active members.
But perhaps people on here would prefer it to remain a small community of  "elites."
Maybe it is an ego boost?
Pages: 1 2 [3] 4 5 ... 10

Intern0t SoldierX SecurityOverride programisiai
Want to be here? Contact Ande, Factionwars or Kulverstukas on the forum or at IRC.