Metasploit Unleashed – Updates

muts — Thu, 26 Aug 2010 18:25:59 +0000

Once again, we have a few exciting updates we would like to inform you about. First and foremost, our Metasploit Unleashed Free Training course is going through a major overhaul, and will be updated and maintained on a monthly basis. You can expect a whole lot of new content being added onto the Metasploit Unleashed Wiki in the next few months.

Microsoft DLL Hijacking Exploit in Action

muts — Tue, 24 Aug 2010 14:15:05 +0000

The "new" Insecure Library Loading vulnerability (2269637) in action... The Metasploit team has added a exploit module for this vulnerability. Check it out.

Security Awareness Training – A New Era

muts — Tue, 17 Aug 2010 15:10:10 +0000

Each year companies lose millions in security breaches. High quality Information Security Awareness is probably one of the most important remedies for these attacks. For a long time we have held to the thought that the human element is the weakest link in the chain, and the Social Engineering Contest at Defcon 18 really drove the point through.

Metasploit 3.4 and SET 0.6.1 on iPhone 4

muts — Sun, 08 Aug 2010 03:00:35 +0000

Just a quick update on getting your favorite tools on iOS 4 - Metasploit and SET. You need to have a Jailbroken iPhone with SSH access for this. You will also need to install nano and APT 0.7 Strict via Cydia. Unlike all other major revisions of Cydia, getting everything up and running is a breeze now.

BlackHat, BackTrack and EDB Updates

muts — Sat, 07 Aug 2010 18:09:06 +0000

The Offsec crew is back from BlackHat and Defcon, alive and well. The PWB and AWE trainings were a blast and the crowd was awesome. The BackTrack R1 BlackHat edition release went well, with over 5500 DVDs distributed. We thank everyone who came to our booth - it was nice to put a face to some of those names...

BackTrack 4 R1 BlackHat Edition

muts — Wed, 21 Jul 2010 03:10:03 +0000

The time is again upon us for the years biggest security conference event - Black Hat Vegas, USA. The folks at Black Hat have prepared a stellar week of great trainings and cutting edge briefings.

OSX ROP Exploit Article, EDB updates

admin — Tue, 06 Jul 2010 22:15:52 +0000

A great start for our EDB DEV group. Last week we dug into some published HP vulnerabilities, and came out with 3 exploits which were published this week. Our highlight this week is an awesome writeup about a OSX ROP Exploit case study by didn0t. Check it out!

How to Update to BackTrack 2.6.34

admin — Mon, 05 Jul 2010 14:38:02 +0000

Several people have been asking for instructions on updating hard drive installs of BackTrack - here's a quick set of commands to upgrade your BackTrack machine - and prepare the kernel sources - for example VMWare tools or VirtualBox tools kernel module compilations.

BackTrack ISO Kernel 2.6.34 Upgrade

admin — Fri, 02 Jul 2010 14:53:41 +0000

Last night we moved a new kernel package (2.6.34) out of the testing repositories, and into the official ones. This kernel update marks a huge improvement in hardware support and desktop responsiveness. In addition to the kernel, we have added several external wireless drivers - madwifi-ng (ath_pci), broadcom-sta (wl, no injection), r8187 drivers and rt73 k2wrlz drivers.

BackTrack 5 and Exploit-DB Updates

admin — Sun, 27 Jun 2010 17:04:06 +0000

Exciting times here at Offensive Security. Two of our most major projects are off to new and amazing directions - BackTrack and the Exploit Database. The BackTrack development team is now officially funded by Offensive Security, bringing a new era of a high quality penetration testing distribution. In addition, the EDB has started a new R&D initiative which will result in some interesting blog posts.

How to Hack your Way to BlackHat Vegas

admin — Thu, 24 Jun 2010 14:02:02 +0000

This past weekend Offensive Security ran its second cyber hacking challenge, “How Strong is Your Fu – Hacking for Charity“. We first separated the contestants into groups of 10 and each had 48 hours to hack into our 5 evil machines that were conjured up by the VM gremlins of the Offensive Security Team.

Penetration Testing Tools

admin — Thu, 24 Jun 2010 14:00:29 +0000

We are coming close to a public release of BackTrack R1 – the world’s leading penetration testing distribution. We wanted to provide an opportunity for our users to make last suggestions for tools which are currently NOT present , but should be included. Please use the following form to submit your suggestions to our development team.

Evocam Remote Buffer Overflow on OSX

d1dn0t — Fri, 04 Jun 2010 15:38:41 +0000

This guide comes from my own journey from finding a buffer overflow in an OS X application to producing a working exploit. I have reasonably good exploit development skills having completed the Penetration Testing with BackTrack and Cracking the Perimeter training courses, and working on several buffer overflow exploits. The majority of my exploit development skills are based around Windows vulnerabilities and using the OllyDBG debugger.

How Strong Is Your Schmooze ?

admin — Thu, 03 Jun 2010 16:09:26 +0000

Are you looking for a real Social Engineering CTF challenge? Join Social-Engineer.Org and Offensive Security in the Official Social Engineering CTF hosted at Defcon 18.

Hacking Challenge #2 – HSIYF for Charity

admin — Wed, 26 May 2010 23:57:21 +0000

Offsec has teamed up with the crew at Hackers For Charity and the world's premier Hacker Con - BlackHat, to provide another amazing cyber hacking challenge.