Hackosis

I got hacked not too long ago, so I decided to setup snort patched with snortsam to stop the intruders. This acually works very well.

They got in by brute forcing a log in page for the web mail interface. The intruders also used the compose mail page to send spam after they broke in.

I wrote my own snort rule to detect and block brute forcing and sending spam through the web mail (It will only block if you have snortsam properly setup). This rule blocks anyone that does an HTTP POST more than 30 times within 60 seconds (I believe it is a ratio – average of 2 times per second).

HINT: Replace X.X.X.X with the IP of your web server. Take out the “fwsam: src, 5 minutes;” if you are not using snortsam (you should be ;p). Replace 123456789 with your own custom ID and make it large so it doesn’t conflict with default snort rules.

Have you wrote any custom snort rules or do you have a suggestion to improve this rule? Show us in the comments.

Emerging Threats hosts the only open snort rule set.

Emerging Threats is funded by National Science Foundation and the Army Research Office.

You can download the rule sets separately or all at once.

Check out the perl script to automatically update your iptables, Honeywall and Smoothwall configurations, and the inline snort config.

Confused? Read the Emerging Threats documentation site.

What is Snort?

SNORT® is an open source network intrusion prevention and detection system utilizing a rule-driven language, which combines the benefits of signature, protocol and anomaly based inspection methods. With millions of downloads to date, Snort is the most widely deployed intrusion detection and prevention technology worldwide and has become the de facto standard for the industry.

If you use snort and don’t already know about Emerging Threats I am sure it will help you out on your intrusion detecting escapade. If you have any tips for using Emerging Threat’s rules let us know in the comments.

Overspraymag.com covers a process of using bleach to create designs on t-shirts.

The process was created by Phelyx, a supposed street artist and magician.

Phelyx covers the process from start to finish and will have you making your own t-shirt designs in no time. Just be careful with the bleach!

Have you made any t-shirt designs or maybe you have other methods? Show and tell us in the comments.

Geeks love getting the most out of their gaming consoles. I hope you would agree that the Xbox 360 is the best gaming console on the market. I recently purchased an Xbox 360 so I have been looking into what I can do (I know, kinda late). With that being said, I would like to share my top 10 hack finds so far.

1. Turn your Xbox 360 into a Laptop – Like soldering? Engadget takes us through the steps of turning your Xbox 360 into a portable laptop. How. Cool. Is. That.
2. Flashing the DVD firmware to play game backups – If you have owned your Xbox 360 for some time it is possible to flash the firmware on the DVD drive to play game backups (your own backups of course ;)). WARNING – This could ban you from Xbox Live!
3. Play online without Xbox Live for Free – By using Xlink Kai you can play multiplayer LAN games online for free! MS has put a 30ms ping limit on the Xbox 360, so be sure to close all other internet apps before playing. Check out the wiki for more details.
4. Use Your Laptop as a free Xbox Wi-Fi Adapter and save $80 – Use internet connection sharing to wire your Xbox 360 to the internet instead of buying the $80 adapter.
5. DIY Xbox 360 Wifi Adapter – If you don’t want a cord from your Xbox 360 hanging out of your laptop all the time you can always follow Geeks Are Sexy’s guide to a DIY Xbox 360 Wifi adapter.
6. Stream Netflix Movies – By using vmcNetFlix you can watch all your favorite movies from your Netflix subscription.
7. Use your own HDMI cable and save $40 – Chad shows us how to fit the A/V adapter into the Xbox 360 while using your own HDMI cable instead of buying the $40 official Microsoft cable.
8. Turn your Xbox A/V cable into a VGA Cable for $7 – Once again, Engadget to the rescue with DIY instructions on how to turn your standard Xbox 360 A/V cable into a VGA cable on the cheap.
9. Mod your Case – There are limitless ways you can customize your Xbox 360 case. To start you off you can paint the face plate and the controller.
10. Surf the web – If you have Windows Media Center Editon you can surf the web from the comfort of your Xbox 360. Note that this is limited functionality only – no typing, no sound, etc. Basically just a screen shot from your PC (Good enough for pr0n).

Hopefully you ran into something new and there is still more to discover with your Xbox 360. With such an interesting machine to tweak, no wonder everyone has out-done themselves on hacking/modding the Xbox 360.

Have a hack or mod that we didn’t cover? Let us know in the comments.

The Tor Browser bundle makes it easy to use Tor without having to install any software on your PC. You can even slap it on your jump drive to use any where you go.

And it is as easy as — download, extract, run!

From the site:

The Tor software protects you by bouncing your communications around a distributed network of relays run by volunteers all around the world: it prevents somebody watching your Internet connection from learning what sites you visit, it prevents the sites you visit from learning your physical location, and it lets you access sites which are blocked.

The Tor Browser Bundle lets you use Tor on Windows without needing to install any software. It can run off a USB flash drive, comes with a pre-configured web browser and is self contained. The Tor IM Browser Bundle additionally allows instant messaging and chat. If you would prefer to use your existing web browser, install Tor permanently, or if you don’t use Windows, see the other ways to download Tor.

The bundle includes portable Firefox and also Pidgin IM software with the IM Browser bundle (separate download).

Check out the Tor Browser page for downloads and instructions.

If you like Tor you might want to check out Take Control of Tor With Vidalia, Browse Anonymously with XeroBank, and using Anonym.OS to encrypt and anonymize traffic.

You have multiple computers, and your desk is cluttered with keyboards, mice, and monitors? You desperately need more space, and you are tired of moving your hands the long way from one keyboard to the next? Do not worry any more – rescue is here in form of synergy.

Synergy is a nifty little program which allows you to share your mouse and keyboard with other computers on your network. Just move the mouse out of your screen and it magically appears on the screen of the next computer allowing you to type there. Additionally, you can share cut and paste selections, so you can cut something on one screen/PC, move the mouse to the other screen and paste your selection there . Synergy is available for Windows (XP, NT), GNU/Linux, Mac OS X, and Unix. And the best thing is you can even mix different operating systems. Sounds interesting? So let’s see how it works.

Synergy is composed of a server (synergys) and a client part (synergyc) which communicate with each other over a network to exchange keyboard and mouse events. The server is started on the main PC whose keyboard and mouse should be shared, and the client is started on each machine which should use the input devices of the server. In the configuration file, you define which screen is to the left, right, top, or bottom of each monitor. (like in other multi-monitor setups). If the mouse is moved over an edge, the control events are sent over the network to the host which is defined in the configuration.

Get it

There are binary packages available at the synergy sourceforge page, but if you are using a OS with package management system I recommend checking if it is available there first. Install synergy on every machine which should participate in the input sharing.

Read the rest of this entry …

Genius Hackers points out a quick way to convert text to speech in Windows using a Visual Basic script.

Create a new file and name it tts.vbs. Enter and save the following:

Dim msg, sapi
msg=InputBox("Enter your text","Talk it")
Set sapi=CreateObject("sapi.spvoice")
sapi.Speak msg

Run this you will be presented with a box like so:

Enter the text and it shall be read! This is reported to be working on XP/Vista only.

[via geniushackers.com]

And it works really well!

Infinity Exists features many ‘how to’ videos to quench your inner thirst for exploit information. Topics include lock picking, password cracking, email spoofing, SQL injection, and much more.

What are you waiting for? Go check out the videos!