hakin9_03_2007(1).pdf

~ t q w ~

~ t q w ~

~ t q w ~

hakin9

Editors Words

We admit that there were some unexpected changes and

modiications in the early phases of hakin9 English edi-

tion. Now, however, everything is ixed and well organized.

We release two IT security magazines: hakin9 and hakin9

starterkit. First is a ‘regular’ hakin9 – Hard core IT Security

Magazine. It is a bi-monthly directed to quite advanced IT

security specialists, both professionals and hobbyists. It

contains various articles covering both attack and defense

techniques and comes with two free cover – mount CDs.

Second mag is hakin9 starterkit – IT security magazine

for less advanced readers. It is also a bi-monthly and we

try to make each edition devoted to one, speciic aspect of

IT security. hakin9 starterkit is available with one free cover

– mount CD.

As both journals are released every second month, there

are few week when two of them are on sale simultaneously.

Readers can choose the magazine that suits them better

and that meets their expectations. The companies can take

advantage of both editions as the need to educate employ-

ees on IT security is prevalent and urgent in the face of

omnipresent vulnerabilities and threats. hakin9 ‘regular’ will

be a great source of knowledge for the specialists from the

company's IT department.

hakin9 and hakin9 starterkit are possible to subscribe

separately ($49 for one year – 6 issues) and together ($79

– for one year, 12 issues in total). We encourage our dear

readers to subscribing to hakin9 for it lets you save 60% of

the shop prize and have great magazine delivered right to

your place or ofice.

There is also a special offer for the companies which

apart from magazines’ delivery provides the irm with attrac-

tive advertising space in the magazine.

To learn more about subscription or to buy it visit our

website – www.en.hakin9.org

We hope that this explanation helps you to decide which

of our IT security magazines you prefer and which you would

like to recommend to your employees or friends.

In this issue of hakin9 magazine we are proud to offer

you great articles from which you can learn some new hack-

ing techniques; 2 free CDs containing full versions of useful

applications, CISCO training and the second episode of our

exciting Wargame.

In brief

Section hosted by Zinho and www.hackerscenter.com team

Selection of news from the world of IT security

CD Contents

Magdalena Błaszczyk

What's new in the hakin9.live 3.2.2-aur and what must-have

applications you will ind ( Intelli HyperSpeed 2005, Asham-

poo AntiSpyWare, Vip Privacy, a-squared Anti-Malware).

Tools

ZmbScap: Zombie Scappeer 12

Aditya K Sood, Pranay Kanwar

Authors describe an open source tool preventing distrib-

uted denial od service attacks, scanning the target machine

for speciic ports and killing the agents.

TrueSword 4

Jennifer Allen

The author presents a tool developed to protect the com-

puter against malicious programs that break the privacy.

TrueSword scans the hard disk, the registry and removes

dangerous objects.

Basics

Security of Web Servers

and Web Services

Volker Hockmann

From this article you will learn how to conduct a simple attack

against the Microsoft IIS web server and will get to know a lot

about web servers and web services associated with them.

Attack

LD_PRELOAD Tricks

Stefan Klaas

The author shows how to hijack syscalls with LD_PRELOAD,

how to sniff various protocols in userland and what is the

best way of reversing dynamically linked executables.

Magdalena Błaszczyk & hakin9 team,

magdalena.blaszczyk@hakin9.org

Factorization Attack to RSA 30

Daniel Lerch Hostalot

After reading this article you will know much more on

inner RSA functioning and will be able to run factorization

attacks.

Analysing and Mapping

Wireless Networks

Andrej Komarov

This writing provides some great information on Wi -i posi-

tioning, creating a wardriver's map and running common

attacks in the wireless infrastructure.

hakin9 3/2007

www.en.hakin9.org

~ t q w ~

Hard Core IT Security Magazine

Defence

Editor in Chief: Ewa Dudzic ewa.dudzic@software.com.pl

Editor: Magdalena Błaszczyk magdalena.błaszczyk@hakin9.org

Editorial Advisory Board: Clement Dupuis, Matt Jonkman,

Jay Ranade, Terron Williams, Steve Lape

DTP Director: Artur Wieczorek artur.wieczorek@software.com.pl

Prepress technician: Marcin Pieśniewski

marcin.piesniewski@software.com.pl

Art Director: Agnieszka Marchocka

agnieszka.marchocka@software.com.pl

CD: Rafał Kwaśny

Proofreaders: Nick Potter, Dustin F. Leer, Mike Gibson,

Kelley Dawson, Steve Lape

Top betatesters: Nick Baronian, Nadim Taha, Steven Roddis,

Stavros Lekkas, Daniel Sligar, Shon Robinson, Łukasz Witczak,

Jarosław Pawlak, Michele Orrù, Shane Burke, Justin Seitz,

Wendel Guglielmetti Henrique, Peter Hüwe, Damian Szewczyk,

Peter Harmsen, Kevin Bewley

Malware Detection with Nessus

Vulnerability Assessment Tool 46

David Maciejak

The author presents malware behaviour detection that can be

done by Nessus, and shows how to detect clue of the infection

and how to write custom Nessus plugins using NASL.

Oracle Database Server Securtiy 58

Mikoláš Panský

The article provides general information on Oracle, teaches

a basic hacking Oracle method and basic Oracle defense

techniques.

President: Monika Godlewska monikag @software.com.pl

Senior Consultant/Publisher: Paweł Marciniak pawel@software.com.pl

Production Director: Marta Kurpiewska

marta.kurpiewska@software.com.pl

Marketing Director: Ewa Dudzic ewa.dudzic@software.com.pl

Subscription: subscription@software.com.pl

Firewall Features and Tips

Publisher: Software Media LLC

(on Software Publishing House licence www.software.com.pl/en )

Barksdale Professional Centre

Newark, DE 19711, USA

Tel: 004822 8871010

www.en.hakin9.org

(Gr@ve_Rose) Sean Murray-Ford

In this article, author sheds the light at different features

available on most irewalls and how those features pertain

to security at a low level.

The Bleeding Edge

Software LLC is looking for partners from all over the World. If you are

interested in cooperating with us,

please contact us by e-mail: cooperation@software.com.pl

In the Wild

Print: 101 Studio, Firma Tęgi

Printed in Poland

Matthew Jonkman

News from the Bleeding Edge Threat. You wanna rant?

Distributed in the USA by: Source Interlink Fulfillment Division, 27500

Riverview Centre Boulevard, Suite 400, Bonita Springs, FL 34134

Tel: 239-949-4450.

Consumers Test

Distributed in Australia by: Europress Distributors Pty Ltd, 3/123

McEvoy St Alexandria NSW Australia 2015, Ph: +61 2 9698 4922,

Fax: +61 2 96987675

Test on Antivirus Software 70

Whilst every effort has been made to ensure the high quality of the magazine, the

editors make no warranty, express or implied, concerning the results of content usage.

TopTenReviews.com team, hakin9 team

Consumers tests on antivirus software. Our goal is to help

the readers to make a right choice when buying, choosing

an antivirus to better secure your systems.

All trade marks presented in the magazine were used only for informative purposes.

All rights to trade marks presented in the magazine are reserved by the companies

which own them.

To create graphs and diagrams we used program by

Interview with...

company.

M4sterguru & Pintas on Protech 76

CDs included to the magazine were tested with AntiVirenKit by G DATA

Software Sp. z o.o

The editors use automatic DTP system

Self exposure

ATTENTION!

Selling current or past issues of this magazine for prices that are different than

printed on the cover is – without permission of the publisher – harmful activity

and will result in judicial liability.

Interview with Dr Anton Chuvakin 78

hakin9 is also available in: Spain, Argentina, Portugal, France, Morocco,

Belgium, Luxembourg, Canada, Germany, Austria, Switzerland, Poland,

Czech, Slovakia

Books reviews

The hakin9 magazine is published in 7 language versions:

EN PL ES CZ

IT FR DE

Damian Szewczyk, Carlos Ruiz Moreno

Upcoming

Magdalena Błaszczyk

Here we present the subjects that will be brought up in the

upcoming hakin9 StarterKit.

DISCLAIMER!

The techniques described in our articles may only be used in private,

local networks. The editors hold no responsibility for misuse of the

presented techniques or consequent data loss.

www.en.hakin9.org

hakin9 Nr 2/2006

~ t q w ~

Plik z chomika:

Inne pliki z tego folderu:

Inne foldery tego chomika: