Zer0Byte

Geekiest Techno News

Archive for the ‘InfoSec’ Category

  S.W.O.R.D is a web based UI for openwrt based dropboxes inspired by the minipwner (http://minipwner.com/) project. This UI is based on Reaver, MDK3 Ettercap, NMAP TCP dump , URL SNARF and etc… I started this project on TP-Links Mr 3040 3G router but it will work on pretty much on any thing which has  [ Read More ]

A very n00b friendly guide hack whatsapp chats poc

 Security researcher “Mohit Sahu” has written a very detailed step by step (n00b friendly) guide on how to create a whatsapp chat stealer application for android.  According to him, Whatsapp chats database is saved on the SD card which can be read by any Android application if the user allows it to access the SD  [ Read More ]

Being a WIFI Pentesting enthusiast,Update on  aircrack-ng suite always excites me. Even though this time there is not much much of an improvement but still we have it thanks to our super Lee7 dev “mister_x” . Aircrack-ng Changelog Version 1.2 beta 3 Finally properly fixed the buffer overflow. Fixed channel parsing (eg 108, 125) and updated  [ Read More ]

Backdoor Found In Linksys & Netgear Home Wi-FI Routers

Security Researcher “Eloi Vanderbeken” @elvanderb managed to find out a backdoor  listening on TCP port 32764 on the Following Linksys / Netgear Home Wi-Fi access points. Linksys WAG200G Netgear DM111Pv2 Linksys WAG320N Linksys WAG54G2 DGN1000 Netgear N150 Diamond DSL642WLG / SerComm IP806Gx v2 TI Python based Backdoor can be downloaded from here :https://github.com/elvanderb/TCP-32764. Presentation:- https://github.com/elvanderb/TCP-32764/blob/master/backdoor_description_for_those_who_don-t_like_pptx.pdf   Twitter:- @elvanderb  [ Read More ]

SnapChat Database Leaked – 4.6 million users affected

Website called SnapchatDB! has released SQL/CSV files that claims to contain the username and associated phone number for a “vast majority” of the service’s users, with the last two digits of the numbers obscured. That amounts to 4.6 million pairs, although actually downloading the files to actually use them or verify the claim seems impossible, presumably due  [ Read More ]

CyanogenMod would be seeing integrated, system-wide secure messaging integration with compatibility with TextSecure.  TextSecure is an open-source cross-platform (iOS and Android) client that encrypts your SMS messages both locally, and over the air when sending to other TextSecure users. The application is maintained by Open WhisperSystems, and lead engineer Moxie Marlinspike .He is in fact the same Guy  [ Read More ]

Github Bans Rubbish Passwords.

A recent brute force attack took over a number of user accounts,Github explains all in a blog post, “Some Github user accounts with weak passwords were recently compromised due to a brute force password-guessing attack,” said Shawn Davenport, director of security at Github. “I want to take this opportunity to talk about our response to  [ Read More ]

The Volatility Foundation is thrilled to announce the official release of Volatility 2.3! While the main goal of this release was Mac OS X (x86, x64) and Android Arm support, They have also included a number of other exciting new capabilities! Highlights of this release include: Mac OS X: * New MachO address space for 32-bit and 64-bit  [ Read More ]

Computer nerds at Chaos Computer CLub (CCC) have successfully hacked the Iphones 5 Fingerprint Scanner with materials that can be found in almost every household Video:- How to PWN :- [Link] First, the fingerprint of the enroled user is photographed with 2400 dpi resolution. The resulting image is then cleaned up, inverted and laser printed with  [ Read More ]

Lee7s this is some epic piece of  port scanner I have seen in A while after Nmap. MASSCAN: Mass IP port scanner claims to be the fastest port scanner yet and is able to scan the enitre internet in under 6 minutes (0.0′). On top of that its a cross platform. According the dev of this  [ Read More ]