Archive for July, 2008
A little script useful for phishing
by mjw on Jul.30, 2008, under
#!/usr/bin/perl -w
use strict;
use MIME::Lite;
# SendTo email id
my $src_addr = $ARGV[0];
my $tgt_list = $ARGV[1];
my $msg_file = $ARGV[2];
my $dst_addr = “”;
my $msg_body = “”;
open(MSGFILE, $msg_file);
while(<MSGFILE>)
{
$msg_body = $msg_body . $_;
}
close(MSGFILE);
open(TFILE, $tgt_list);
while (<TFILE>)
{
$dst_addr = $_;
#print localtime(time);
# create a new MIME Lite based email
my $msg = MIME::Lite->new
(
Subject => “subject here”,
From => $src_addr,
To => $dst_addr,
Type => ‘text/html’,
Encoding =>’quoted-printable’,
Data => $msg_body);
# $msg->add(”Return-Path” => $src_addr);
#$msg->attach(Type => ‘image/jpeg’,
# Path => ‘/Users/gnat/Photoshopped/nat.jpg’,
# Filename => ‘gnat-face.jpg’);
$msg->send();
}
close(TFILE);
Dell PE2950 IERR
by mjw on Jul.29, 2008, under
I recently purchased a new Dell PowerEdge 2950 as a personal R&D box… hey fuzzing in VMs and testing malware is great and I needed more horsepower. Unfortunately, when I installed CentOS 5.2 (I tried RHEL 5.2 as well) the thing would throw an IERR — specifically e1410 the error bit on the CPU after POST/Grub. I couldn’t figure out what the deal was and Dell was no help. It turned out to be the Radeon device driver. If you don’t boot into X11 or if you replace the radeon driver with generic vesa driver you’re set.
Blackhat/Defcon?
by mjw on Jul.29, 2008, under
Anyone going out to Blackhat/Defcon this year? I know a few of the G2 guys are. Bob Ricks is giving a talk at Defcon and George Saylor may be going. You should definitely check out his talk and send me an email if you’re going to be there.
Almost a year?!
by mjw on Jul.29, 2008, under
Wow, it’s been almost a year since my last real blog post. Since then times have been odd. I went to Foundstone for a while. Things there were sometimes fun and I met a lot of great people, but it wasn’ right for me. So I’m back at G2, but we’ve stood up a pen test/exploit research group inside the commercial practice so that’s awesome. Everyone here is great. We have a couple former Foundstone guys here and the team is just rocking. Since G2 doesn’t have a blog I’ll probably start posting here again. More to come soon.
