TSGrinder – Brute Force Terminal Services Server

Tuesday, July 22nd, 2008

This is a tool that has been around quite some time too, it’s still very useful though and it’s a very niche tool specifically for brute forcing Windows Terminal Server. TSGrinder is the first production Terminal Server brute force tool, and is now in release 2. The main idea here is ...

Details of Major Internet Flaw Posted by Accident

Tuesday, July 22nd, 2008

The bug has to do with the way DNS clients and servers obtain information from other DNS servers on the Internet. When the DNS software does not know the numerical IP (Internet Protocol) address of a computer, it asks another DNS server for this information. With cache poisoning, the attacker ...

Google Mail has more spam

Monday, July 21st, 2008

Roaring Penguin Software says its research shows that the proportion of email coming from Google Mail accounts that is spam has almost quadrupled, from 7 to 27 per cent. This means that more than one email message in four coming from a Google Mail account was classified as spam, which ...

Relay server attack tactic dupes auto-reporting

Monday, July 21st, 2008

Sysadmins have begun noticing a coordinated attack on servers with open SSH ports that tries to stay under the radar by only attempting to guess a password three times from any compromised machine. Instead of mounting an attack form a single compromised host, hackers have worked out a means to ...

Social Engineering 101: Mitnick and other hackers show how it’s done

Sunday, July 20th, 2008

Kevin Mitnick knows that the weakest link in any security system is the person holding the information. As a young fugitive hacker, he went to jail for breaking into computer networks, mostly by using his cunning and persuasion than his tech skills. He was an early master of the science of ...