Is anyone familiar with this phrase or a tool by this name/nickname?
Printable View
Is anyone familiar with this phrase or a tool by this name/nickname?
Doesn't sound familiar to me, although it could be a possible alias/nickname for SamSpade? I dunno, I'm just throwing out ideas.. You're not sure whether or not it's an attack or a tool? Because that might help narrow things down.
That's what we thought, a module or something for Sam Spade. The skiddie claimed to have cracked a site ("I 'Sam I Am'd' it") and we have evidence he was on the system. Trying to figure out what he meant by 'Sam I Am'd' it...
Hrmm.. what do your logs say? Like, do you know exactly what he "cracked" to gain access? Perhaps he coded something or used an underground skiddie tool (named that) used to crack the website.
Again, throwing out possible scenarios trying to help.
EDIT: I might have found something, but I'm not sure.. do you think "Sam I Am" could possibly be his "handle"? Or are you confident it's a tool/attack? From the way he described it, it sounds like a tool/attack, but I'm just trying to look for things here.
Zen:
If:-
1. The server you are talking about hosts a Blog
and
2. It uses the I-Power Blogger
then
The skiddie is referring to using the same exploit that was used around the end of September to compromise these blogs. I would suggest that this kiddie also exploited the blog found here..... The name will make it familiar to you.... ;)
thanks Spyder, it's all helpful.
Unfortunately, we don't have anything except what the client has told us. They where informed that a website was cracked "Sam I Am'ed", and they believe they've seen evidence that the cracker was on the system in the time frame mentioned. We have a scoping call soon, and no one seems to know what he means by this phrase.
Several of us agree...it sounds familiar, but we aren't sure what it is. Google isn't returing a lot (except for Sam Spade general links, or Dr. Seuss sites.)
No problem man, just trying to do my best. Yeah, I was using google and nothing was coming up really. Well, post in any update or new knowledge as it becomes available.. and that's all I can really say for now.
Oh, and good luck ;)
Zen.... See my response above.... It fits quite well when you consider colloquialisms... Find the exploit agains that site and you have the hole in your client's.
Not sure, I'm doing the background work while a colleague is on site with the client for other concerns. I'll have her ask about your two points. I'd think no, but I've seen a lot of corporate blogs springing up all over. Do you have any specific info on the September vulnerabilities? Searching for anything "blog" related is like looking for a Needle in a stack of Needles... :(Quote:
Originally posted here by Tiger Shark
Zen:
If:-
1. The server you are talking about hosts a Blog
and
2. It uses the I-Power Blogger
then
The skiddie is referring to using the same exploit that was used around the end of September to compromise these blogs. I would suggest that this kiddie also exploited the blog found here..... The name will make it familiar to you.... ;)
We thought Sam Spade too, but no luck there. I was also looking at www.sam-i-am.com (another techies blog) and some other stuff. I'm digging into I-Power now.
Thanks guys!
Probably not relevant, but we are talking about a remote access intrusion?
http://mcpmag.com/reviews/products/a...itorialsID=303
:)
Now wouldn't that be the tinyest bit.... er.... sad?
hjack and I were just talking about such a tool. There is a brute force tool for the mac called samIam.
fwiw
--TH13
Ok, I'm with Hoss on this one..... While I haven't found any details I see a recurring theme regarding hacking, Mac and sam I am.....
Hmmm,
I have found a reference to "samiam.exe" but cannot find anything else other than not to permit it.
After a reasonably extensive Google search I am unable to find the software or anything related to it.
What I did find was this:
http://www.insidepro.com/eng/saminside.shtml
So I think that the kid was a little confused?
:)
I know somebody with that nickname...
but shes eleven...so I dont think SHE "sam i amed" it
Maybe its just a nickname?
MLF