Arachni v0.1 is here
Published on 2010-09-04 13:10:11.
After approx. 2 months of development version 0.1 of the Arachni Framework is ready.
And so is the documentation, both for users and prospective developers.
So go ahead and give the first Beta version a shot:
Homepage: http://github.com/Zapotek/arachni
Downloads: http://github.com/Zapotek/arachni/downloads
Documentation: http://github.com/Zapotek/arachni/wiki
Feedback/Bug reports: http://github.com/Zapotek/arachni/issues
I think that you’ll enjoy it. :)
And so is the documentation, both for users and prospective developers.
So go ahead and give the first Beta version a shot:
git clone git://github.com/Zapotek/arachni.git
Homepage: http://github.com/Zapotek/arachni
Downloads: http://github.com/Zapotek/arachni/downloads
Documentation: http://github.com/Zapotek/arachni/wiki
Feedback/Bug reports: http://github.com/Zapotek/arachni/issues
I think that you’ll enjoy it. :)
Get a free vulnerability scan for your web application
Published on 2010-07-13 07:10:30.
Hello dear readers,
As those of you who read my blog already know,
I am developing an FOSS web application vulnerability scanner called Arachni.
The problem is that I don't have any live servers to test it on and I don't
want to harass random sys admins and their servers.
So I'll make you a deal.
If you let me test Arachni against your web applications I'll report the vulnerabilities Arachni finds, if any, to you immediately.
For free of course....
And you'll also earn a nice acknowledgment on Arachni's website, my blog and http://www.segfault.gr -- if you want to.
If you're interested contact me using this form: http://trainofthought.segfault.gr/contact/
Cheers,
Zapotek.
As those of you who read my blog already know,
I am developing an FOSS web application vulnerability scanner called Arachni.
The problem is that I don't have any live servers to test it on and I don't
want to harass random sys admins and their servers.
So I'll make you a deal.
If you let me test Arachni against your web applications I'll report the vulnerabilities Arachni finds, if any, to you immediately.
For free of course....
And you'll also earn a nice acknowledgment on Arachni's website, my blog and http://www.segfault.gr -- if you want to.
If you're interested contact me using this form: http://trainofthought.segfault.gr/contact/
Cheers,
Zapotek.
raw2vmdk 0.1 has just been released
Published on 2010-06-15 02:14:37.
Those of you who read my last blog post already know the troubles that someone has to go through to mount a raw image with VMware.
And then salvation came with the manual solution I presented that works on, probably, every system.
Well, I thought why not automate the process?
After all LiveView has already done most of the work required, and it's open source.
So I started hacking up some Java and created a nice little utility that analyses raw images and automatically creates appropriate .vmdk files to be used with VMware enabling you to mount the image right away.
It's already on SourceForge, feel free to test it and let me know how it worked for you. :)
Project page: http://raw2vmdk.segfault.gr
And then salvation came with the manual solution I presented that works on, probably, every system.
Well, I thought why not automate the process?
After all LiveView has already done most of the work required, and it's open source.
So I started hacking up some Java and created a nice little utility that analyses raw images and automatically creates appropriate .vmdk files to be used with VMware enabling you to mount the image right away.
It's already on SourceForge, feel free to test it and let me know how it worked for you. :)
Project page: http://raw2vmdk.segfault.gr
The true reasons behind the LHC site defacement
Published on 2008-09-14 13:41:50.
Many news sites have misinterpreted the message of the defacement of CERN's LHC website left by Greek crackers.
As a result the Greek media, which have never seen the real message, translated the misinterpreted text leading to public misinformation.
Thankfully, a friend of mine, George Chlapoutakis (also known as DarkSYN)
got his hands on a genuine screenshot of the defacement containing the full message in the Greek language and proceeded to write an accurate translation.
The purpose of GST (or Greek Security Team's) intrusion was neither to disrupt the experiment, nor to humiliate the CERN admins.
Their statement was against their adversaries in the Greek underground scene and the only reason they chose this site was due to it's extraordinary traffic.
The screenshot follows:
Read the full article on the GrayHatForensics blog...
As a result the Greek media, which have never seen the real message, translated the misinterpreted text leading to public misinformation.
Thankfully, a friend of mine, George Chlapoutakis (also known as DarkSYN)
got his hands on a genuine screenshot of the defacement containing the full message in the Greek language and proceeded to write an accurate translation.
The purpose of GST (or Greek Security Team's) intrusion was neither to disrupt the experiment, nor to humiliate the CERN admins.
Their statement was against their adversaries in the Greek underground scene and the only reason they chose this site was due to it's extraordinary traffic.
The screenshot follows:
Read the full article on the GrayHatForensics blog...
tags =
{
"secbible.org"
,
"security"
,
"defacement"
,
"lhc"
,
"cern"
};
bookmarks = {
,
,
,
,
,
,
,
};
bookmarks = {
,
,
,
,
,
,
,
};