Omenix.Org » Today

Goodbye 2009

omen — Thu, 31 Dec 2009 16:32:35 +0000

I would like to wish all the readers a Happy New Year. Let’s hope a better one for 2010! Good luck!

Nessus plugin update failed?

omen — Mon, 31 Aug 2009 16:44:09 +0000

Hello nessus? I mean Tenable, what’s going on?

The same result for Nessus 4.01

Hack In The Box Security Conference 2009

omen — Sun, 23 Aug 2009 17:18:32 +0000

HITBSecConf2009 – Malaysia will also see a new and improved version of our highly popular team-based hacking competition known as Capture The Flag. First developed and presented at Defcon in the US, the idea behind a CTF competition is to allow for teams of three to hack into prepared servers running in order to retrieve marked files or flags on these target machines. Participants will also be required to defend their systems from attack. Teams will be judged on both their defensive as well as the offensive game play.

We believe HITBSecConf is an ideal platform for leading network security vendors to not only meet with some of the leading network security specialists but to also showcase their own technology and solutions with the public as well.

Venue:
Crowne Plaza Mutiara Kuala Lumpur,
Jalan Sultan Ismail,
50250 Kuala Lumpur

Technical Training – DAY 1 and DAY 2
Date: 5th and 6th October 2009
Time: 0900 – 1800
TECH TRAINING 1 – Web Application (in)Security
TECH TRAINING 2 – The Art of Network Based Forensics – Going Beyond Packet Data
TECH TRAINING 3 – The Exploit Laboratory 4.0
TECH TRAINING 4 – The Security of ASEAN Locks (CLOSED DOOR SESSION FOR .GOV / LAW ENFORCEMENT ONLY)
TECH TRAINING 5 – Forensic Acquisition and Analysis (*NEW*)

Conference DAY 1 and DAY 2
Date: 7th and 8th October 2009
Time: 0900 – 1800
Triple Track Conference
HITB Labs
Capture The Flag (CTF)
Lock Picking Village
HAM Radio Village

For more details please visit HITBSecConf 2009

Patch your CentOS 5.x OpenSSH

omen — Fri, 21 Aug 2009 18:16:11 +0000

Just follow the steps below:

# wget http://mirror.mcs.anl.gov/openssh/portable/openssh-5.2p1.tar.gz

Check your md5/sha1

(md5sum : ada79c7328a8551bdf55c95e631e7dad)

(sha1sum : 8273a0237db98179fbdc412207ff8eb14ff3d6de)

Next, prepare to build and install the RPM. Disable the building of GUI components in the spec file. We don’t need these on a server:

# tar zxvf openssh-5.2p1.tar.gz
# cp openssh-5.2p1/contrib/redhat/openssh.spec /usr/src/redhat/SPECS/
# cp openssh-5.2p1.tar.gz /usr/src/redhat/SOURCES/
# cd /usr/src/redhat/SPECS
# perl -i.bak -pe ‘s/^(%define no_(gnome|x11)_askpass)\s+0$/$1 1/’ openssh.spec
# rpmbuild -bb openssh.spec
# cd /usr/src/redhat/RPMS/`uname -i`
# ls -l
-rw-r–r– 1 root root 275808 Feb 27 08:08 openssh-5.2p1-1.x86_64.rpm
-rw-r–r– 1 root root 439875 Feb 27 08:08 openssh-clients-5.2p1-1.x86_64.rpm
-rw-r–r– 1 root root 277714 Feb 27 08:08 openssh-server-5.2p1-1.x86_64.rpm
# rpm -Uvh openssh*rpm
Preparing… ########################################### [100%]
1:openssh ########################################### [ 33%]
2:openssh-clients ########################################### [ 67%]
3:openssh-server ########################################### [100%]

# service sshd restart

Check the sshd version you are running by typing:

telnet [host] [port]

LxLabs founder was found hanged.

omen — Fri, 12 Jun 2009 19:30:13 +0000

I was shocked when I read an article about founder of LxLabs was found hanged in his house @ Bangalore right after multiple vulnerability issues was found on LxLabs product which is HyperVM (Virtual Private Server Management) and more than 100,000 websites has been wiped out!

Security researchers at Milw0rm warn that the Kloxo (formerly Lxadmin) web hosting platform from LxLabs contains 24 security vulnerabilities and exploits. The flaws include SQL injection vulnerabilities and flaws that create a way for hackers to gain file access to files hosted on a vulnerable system.

Source: http://www.channelregister.co.uk/2009/06/09/lxlabs_funder_death/

My Engagement :)

omen — Wed, 03 Jun 2009 19:43:59 +0000

Pictures of my engagement day. Thanks to Syakir and Hafez for their helps.

Date:30th May 2009

Location: Sri Putramas 2 Domain Hall

Local LFS Driver Server

omen — Thu, 19 Mar 2009 11:36:22 +0000

Hey guys, currently I’m setting up a new local lfs drift server so that we can play without so much lag. I’ve been working on setting up the server and Tengku Ezan will be doing the track layout. As for now I’m still not free enough to give a 100% concentrate for this project since I’m tight with other projects. ETA should be somewhere after April 2009 so stay tuned!

Hack In The Box @ Dubai

omen — Sun, 15 Mar 2009 08:45:41 +0000

Venue: Sheraton Dubai Creek,
Baniyas/Creek Road,
Dubai, UAE

Technical Training – DAY 1 and DAY 2
Date: 20th and 21st April 2009
Time: 0900 – 1700

TECH TRAINING 1 – Web Application Security – Threats and Countermeasures
TECH TRAINING 2 – 802.11 Ninjitsu
TECH TRAINING 3 – The Exploit Laboratory 3.0

Conference DAY 1 and DAY 2
Date: 22nd and 23rd April 2009
Time: 0900 – 1700

Dual Track Conference
Capture The Flag (CTF)

More details, please visit http://conference.hitb.org/hitbsecconf2009dubai/

New Server migrated to JARING IDC

omen — Sun, 15 Mar 2009 08:42:01 +0000

Now I’ve moved my new server to JARING IDC. It’s much faster now. Below is the spec of my new server:
# CPU: 4 x Intel Xeon X3210 (2.13GHz)
# 8GB DDR2 RAM
# WDC WD10EADS-00L5B1 SATAII (953869Mbytes @ 1Tb) – Primary Disk
# WDC WD10EADS-00L5B1 SATAII (953869Mbytes @ 1Tb) – Backup

Anyone interested to do a personal hosting site. Please contact me

Mawi & Ekin’s Reception @ Palace of Golden Horses

omen — Mon, 12 Jan 2009 17:17:01 +0000

First of all I would like to thanks to aunty jun or kak jun for giving me the invitation Nothing much to say here because the event was running smooth and wonderful. The food is good especially the brownies I also would like to share few of my photos taken on that night. Hope you all enjoy watching