Guerilla activists hack Bank of America ATMs all over San Francisco

They turned them into “Automated Truth Machines.” (Now they’re exponentially more useful than the totally useless Wells Fargo ATMs in the Mission.) Hacking! Rainforest Action Network explains how it was done.

[1] http://www.missionmission.org/2012/01/13/guerilla-activists-hack-bank-of-america-atms-all-over-san-francisco/

DEFT - Computer Forensics Live CD

DEFT Linux 7 RC1

..a very stable DEFT Linux 7 release [1], solving all problems responsible for postponing the release date for RC1. We performed several tests on different computer platforms: laptops, servers and desktop PCs. Our main focus was based on Lenovo, DELL, ASUS, Acer, Apple, IBM laptops, IBM and DELL servers as well as Acer, Lenovo and Dell desktop PCs. We tested everything both booting as a live CD and installing the distro on the test machine: compatibility tests suceded with excellent results.

From this year DEFT 7 will also add more support to mobile forensics: we added several tools that allow you to analyze files and databases used in new generation smartphones (Android and iPhone). From the next release there will be a section completely dedicated to Cyber Intelligence.

[1] http://www.deftlinux.net/

Arachni: Web Application Security Scanner Framework

Arachni Web Application Security Scanner [1], is a Free/Open Source project, the code is released under the GNU General Public License, version 2 and you are free to use it as you see fit. On the January the 12th of 2012 the software Arachni is moving away from GPLv2 and towards Apache License v2.0. This is due to several license reasons [2].


[1] http://arachni-scanner.com/overview
[2] http://trainofthought.segfault.gr/2012/01/12/arachni-is-moving-away-from-gplv2-and-towards-apache-license-v2-0/

Metasploit - How to log the output of what you are doing

Yes, I admit it, I also was one of the people scrolling up and down to find the information I was looking for in a module's output, or copying the whole stdout to a file in order to make my life a bit easier. As of revision r13028 [1] the console now supports the spool command.
(To access the new command, use the msfupdate command on Linux (or just "svn update") or the Metasploit Update link on Windows)


No more hassle, you can use the spool command to log all the stdout to a file automatically! So, while in metasploit, you can type:


spool on


or


spool /root/msfoutput.txt


and anything you do will be logged in that file (all output will always append).




If you want to stop this just type:


spool off




As a quick tip, you can either check the contents of the log file by using the 'cat' command or follow the stream as it is being generated by using the 'tail -f' command


Hope you find this helpful as I did! :D







[1] https://community.rapid7.com/community/metasploit/blog/2011/06/25/metasploit-framework-console-output-spooling

Free Up Hard Disk Space On Windows

This is a proper quick-list for freeing disk space on your Win7 System. Obviously, if you want to free up space consider uninstalling unwanted programs using the Programs and Features feature in your Control Panel. Also, consider running a search for large files that you might have missed/forgot to delete (such as virtual machines, music video files or installation package). Compared to other lists on the web, the order in this list is actually important.