ClsHack:Computer Security Blog    

[How-To]Infect GNU/Linux system with rootkit && BackBox (live cd)

Sunday, March 4th, 2012

Infect a GNU / Linux if you have physical access to the PC is something very simple.
We'll see how to give us a shell to execute commands root without changing the password to it.

To do this I used the live cd backbox, in the boot so fast but we can use any Linux distribution as deft,backtrack but more is recommended system rescue.

The most recommended fall of system rescue because it allows us to choose a live boot of kernel 32 or 64 bits depending on the architecture that we have on the victim's PC.

The first thing to do is start the live cd, Once launched we become root:
su root
(more…)

Posted in Articles on GNU/Linux, Hacking | No Comments »

sucrack: Brutaforce for sudo :)

Saturday, February 25th, 2012

sucrack is a small software that allows you to make an attack bruteforce to a local user on a Linux system.

Let's see how to prove it and try to become root with a brute force :D
wget http://www.leidecker.info/projects/sucrack/sucrack-1.2.3.tar.gz

Unpack:
tar -zxvf sucrack*
(more…)

Posted in Articles on GNU/Linux, GNU/Linux, Hacking, Software | 2 Comments »

[CVE-2012-0056]Linux Privilege Escalation kernel >=2.6.39, 32-bit and 64-bit

Monday, January 23rd, 2012

New vlnerabilità for Linux systems with kernel> = 2.6.39 indifferent if 32 or 64 bit.
This vulnerability allows a Privilege Escalation So to scale and become root privileges.
The analysis of the exploit I saved the pdf because the developer's site up and down :)

The vulnerability discovered by zx2c4 is very serious:
(more…)

Posted in Articles on GNU/Linux, Hacking | No Comments »

[CVE:2011-4862] Remote Root FreeBSD

Thursday, December 29th, 2011

This is one of those exploits that change the world :)
Almost all servers use RHEL or freeBSD 3 e questo allows a remote root exploit semplice semplice con metasploit.

Description CVE:2011-4862

Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, and Heimdal 1.5.1 and earlier allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011.
Publish Date : 2011-12-24 Last Update Date : 2011-12-27

The module for Metasploit for now works with freeBSD< = 8.2 && freebsd >= 5.2 e RHEL 3 :)
I tested all because I did not believe and the picture is clear.
(more…)

Posted in GNU/Linux, Hacking, Software | 4 Comments »

[How-To]cvechecker: local CVE vulnerability tool

Sunday, June 19th, 2011

CVEchecker is a tool to report the existence of potential vulnerabilities on the system, examining the software installed and comparing the results with the CVE database (Common Vulnerabilities and Exposures).

CVEchecker is very useful to do a check of the system to find vulnerabilities due to software not updated ;)

Let's see how to install and how to try it on ubuntu:
We install the libraries that will allow us to fill cvechecker:
(more…)

Posted in GNU/Linux, Hacking, Software | 2 Comments »

« Previous Entries