ClsHack:Computer Security Blog    

Many app android use the network and it's nice analyze for vulnerabilities.
And with the expansion of the growth in malcius Android app.

Let's see how to put on a Android Pentest Lab.

The first thing is to download the Android SDK:

http://developer.android.com/sdk/index.html

Now unpack the file:
tar xfz android-sdk*
We enter the directory:
cd android-sdk*
E andiamo nella directory tools.
(more…)

Of DEFT Linux had already talked about here:
DEFT Linux for Computer Forensic


However,
DEFT is a live linux distribution, created by Stephen Fratepietro, especially suitable for uses related to Computer Forensics and a little 'less than the security.
From the official website:

DEFT is a new concept of Computer Forensic live system that uses LXDE as desktop environment and thunar file manager and mount manager as tool for device management. It is a very easy to use system that includes an excellent hardware detection and the best free and open source applications dedicated to incident response and computer forensics.

(more…)

No one is one of the tools (open source) of vulnerability assessment more used to the auditing of websites and web servers especially.

Work according to a database which is updated monthly with more or less the last published exploits.
Plus, is very easy to use.

No one unlike other tools, not only proves the exploits available in its database, but it also looks all those files and notes mis-configurations that can cause breaches in a website or disclosure of important information.

You can enable multiple tests simultaneously as in the previous year and also activate the filter evasion of IDS.

No one, simply check for known vulnerabilities on the host target.

It’ this is particularly effective for the assessment of sites that use public or commercial code, somewhat less useful for those sites with custom code for which the assessment is left to the experience of the person in charge of the test.

This new version of nikto, includes numerous changes:
(more…)

There “persist ” to seek proxy to view pages otherwise blocked, but often the services that we allow this, are also blocked by a good administrator.
However, I already talked about this here:

How to surf blocked sites at school or at work(facebook…ect)

Unfortunately, proxies used in the above mentioned, are blocked because they are often known ;)
But, you think that the translation services online sites serve only to translate the web?

(more…)

I am in school, utilization su ubuntu USB in persistent mode, unfortunately, between my pc and the internet there is a proxy / firewall and so can not give the good Comandini available shell on ubuntu =)

I'm talking about sudo apt-get install SOFTWARE ,update, wget etc.. :(
The problem, these commands is that they connect to the Internet directly, without passing the POXY and therefore does not work.

Then, to solve the problem, we simply configure the shell so that it connects to the proxy to go to discharge packages etc..
(more…)