Grey Panthers Savannah

Author: gpanther

  • Circumventing web filtering software

    I was reading the Messing with Web Filtering Gateways post from GNU Citizen, and here are some comments / ideas: The problem is the impedance mismatch between the way the filtering software is parsing the headers and the way the webserver parses them. There will always be corner cases… For example, it would be interesting…

  • grcsucks.com revival – #2

    These posts republish content from the now defunct grcsucks.com site. The following one is a very good one, by somebody who knows networking: Martin Roesch, the author and lead developer of Snort. Dissecting GRC’s NanoProbes by martin.roesch http://www.snort.org Comments refer to : http://grc.com/np/np.htm Ok, so in the “broken out” packet dump at the bottom of…

  • Hack the Gibson #169

    Read the reason for these posts. Read Steve Gibson’s response. Steve Gibson says that MSRT runs when restarting the computer: … And then it runs the next time you restart your machine This is not true, not only because MS says so (The version of the tool delivered by Microsoft Update and Windows Update runs…

  • Disabling accessibility features on the Welcome Screen for Windows XP

    As I said before, one of the first thing I do when I install WinXP is to disable the accessibility features. However this is a per user setting and I would like to disable it on the welcome screen also. This is especially useful for the default setup I do: an administrative user and a…

  • Mixed links

    From splibrain.org: Graph Gear, a very nice flash based open source (!) graphing solution. Very nice if you want to display graphs online. Interesting to know: why is Italy excluded from all online contests? From devnet’s bookmarks: SS64 – command references for Windows, Linux (bash), Powershell and Oracle. This site is a good resource which…

  • Loading the Meterpreter in a DLL

    After ranting about Metasploit I played around a little bit and tried out a little and here a part of what I found: Some times it may be useful to load the Meterpreter (or any payload in fact) as a DLL. Two scenarios I can think of: Software Restriction Policies (and many other whitelisting products)…

  • Two new podcasts

    Just wanted to announce two new podcasts I’ve started listening to, and maybe they would be of interest to people interested in security: The IT Security Pubcast – a South African podcast with security professionals who have real, hands-on experience with the physical aspects of security. Being a more electronic-only guy, this is a very…

  • A quick personal todo

    Check out the Sony PS-LX300USB turntable. I’ve known about the one ThinkGeek offers, but this review sounds very good. Also, Amazon seems to offer some nice accessories for music archiving (like the record cleaner brushes / solutions).

  • On the topic of contests…

    The latest packetlife challenge is over and here is the solution. Very cool. And here is a challenge I almost forgot about (since this too is very network oriented and I currently don’t have the time to dig up all the information needed): NMAP Trivia: Mastering Network Mapping and Scanning. If you want to take…

  • Two more involved contests

    The first is the First Annual SIGMOD Programming Contest (via nconway’s blog). You need to create data structures to index a generated data stream (in fact streams, because multiple streams are presented to you in parallel) and perform operations on them (insert, update, query). The second one is the Cisco Developer Contest (link from Ubergeek.ro).…