A quick and dirty Windows password recovery: Boot the Backtrack CD. Change dir to your Windows mount point: # cd /mnt/hda2/WINDOWS/system32/config Copy the SAM and the system Registry hive to the temp dir: # cp SAM /tmp # cp system /tmp Prepare our wordlist: # cd /pentest/password/dictionaries/ # gunzip ...Read More

Crack local Windows passwords with Backtrack v1.x

PREPARE: # airmon-ng start ath0 # airodump-ng -w tmp ath0 ctrl+c, search your "victim".. copy the bssid of the victim and read the channel, for example we use channel 1: DUMP: # airodump-ng -w Neo -c 1 ath0 switch to another shell.. GENERATE TRAFFIC#1 - no host ...Read More

Aircrack-ng

As I have explained earlier, using XDMCP to display X across Internet is basically a no-no, due to it's lack of encryption across the Internet. One way to enforce the traffic security is to use the SSH by the way ...Read More

x11 forwarding

200W (WSXGA)">

I use debian with XFree86 4.3.x but the WSXGA is not supported by default. To enable the video resolution of 1680x1050 (WSXGA)  you need to edit the XFree86 config file, located at /etc/X11/XF86Config-4: Section "Monitor" Identifier      "philips200w" Option        "DPMS" HorizSync    30-93 VertRefresh    56-85 DisplaySize    433 271 Modeline    ...Read More

XFree86 and Philips 200W (WSXGA)

SSH tunneling Part 3, out from the inside…">

The scenario: There is a Remote Server in a large company behind a firewall. You own the MiddleServer, a public available SSH server. Last but not least there is your Workstation - you want to control the RemoteServer from this machine. [REMOTE ...Read More

SSH tunneling Part 3, out from the inside…

TSM Gui v1.31 for BartPE released">

The only change in this release is, that you can enter the Servernames (TSM Client, TSM Server and TSM port) directly in the GUI. Of course you can still use the .cfg file. Download TSM Gui v1.31 A short reminder: use the ...Read More

TSM Gui v1.31 for BartPE released