Search:

Hi!
U can search network Security by W. Stallings.
Search in Direct Connect++, a peer 2 peer system like eMule.
Also, Hacking Exposed (http://www.hackingexposed.com/) is a good book.
Luck!
Groby

Hi!
Opera web browser lets a file vlink4.dat with visited address in /home/user/.opera/ or Documents and Settings/user/Application Data/Opera/Opera7/profile
When we want delete our traces from...

Great magazine!!

Hi people!
Phrack 61 is out!
There is the index!

1 Introduction (.txt) Phrack Staff
2 Loopback (.txt) Phrack Staff
3 Linenoise (.txt) Phrack Staff
4 Toolz Armory (.txt) Phrack Staff
5 Phrack...

Good post dynamoo!
We are talking about this in 3 threads rigth now:
http://www.antionline.com/showthread.php?s=&threadid=247226
http://www.antionline.com/showthread.php?s=&threadid=247294...

most of the servers are in covad.net and attbi.com. The others are in san.rr.com and lsan03.pacbell.net. I believe that this could indicate from where it was begun to spread the worm.

Thats rigth r8devil. And, when u reinstall u must be offline, because your system is vulnerable while is updating...

Maybe Grinler but there are other things aside from this worm exploding the RPC vuln and you never know if you have an backdoor or no. I think that if your system is hacked, is reasonable to begin...

I'm agree w Maverick811. Windows Update dont have any relation w this worm...

Hi!
The solution posted by Grinler dont work 'cause is a worm and even your have luck and delete msblast.exe, your PC could be infected again. I post a solution at...

Hi!
Some tip 2 remove & prevent msblast worm...
* Block tcp port 135 at your firewall.
* Delete the registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "windows auto...

Hi people!
Hispasec (www.hispasec.com) report today a new worm based on RPC exploit...
The worm send commands to windows shell in tcp port 4444.
There is captured traffic...

...

Hi!
Tedob1, for sniff a dial-up conection, try www.sniff-em.com/sniffem.shtml

See u!

yeap! is a good tool.
maybe u wanna test Advanced Intrusion Detection Enviroment: http://www.cs.tut.fi/~rammer/aide.html
Is a nice tool too.
See u!

nice work! keep going! Maybe u can merge the html files into pdf? 'cause my link is sloooow!!
thanks!!

Hi!
Exist some certifications: SANS's GIAC (www.giac.org) is great!
And maybe CISCO too.
See u!

Hi!
Thnks 2 all! I'll look this links. And yes, I mean Distributed Intrusion Detection Systems.

see u!
groby

Hil!
I'm looking for some hot theme on DIDS to begin my PhD. I have some ideas, but I see all them trivials and I dont know what can I do.
Thnks!
groby

http://www.mod-x.co.uk/

it looks like u dont have NetBIOS installed

Hi!
Maybe u most reinstall the system. The oponent, may be install another backdoor or a root-kit. (i'm really paranoic)
Best wishes!!

groby

2 more...

http://www.sysinternals.com/
Good tools (win*) & source code

http://packetstormsecurity.nl/
Advisories, tools & xploits!

I found it!!
and I going to try it: http://www.nrh-up2date.org/
It's a sustitute for rhn service, and is free!!
now... let's rock! ;)

like rdev say,
$arp -s host mac

and...
if u wanna learn more about arp poison tricks, try ettercap at http://ettercap.sourceforge.net/ or dsniff at
http://naughty.monkey.org/~dugsong/dsniff/...

I see a game: uplink
u are a hacker/cracker & receive some instructions and gain $ and buy a new machine, and so..
it's fun!