Brute Force | Hackosis

29
Aug

Snort: Simple Rule To Block HTTP Brute Force
Filed under Featured, Networking, Security, Web development. 2 Comments.

I got hacked not too long ago, so I decided to setup snort patched with snortsam to stop the intruders. This acually works very well.

They got in by brute forcing a log in page for the web mail interface. The intruders also used the compose mail page to send spam after they broke in.

I wrote my own snort rule to detect and block brute forcing and sending spam through the web mail (It will only block if you have snortsam properly setup). This rule blocks anyone that does an HTTP POST more than 30 times within 60 seconds (I believe it is a ratio – average of 2 times per second).

alert tcp any any -> X.X.X.X 80 ( content: "POST"; nocase; msg: "Webmail Brute Force Attempt or Spam Attack"; threshold: type both, track by_src, count 30, seconds 60; sid:123456789; rev:1; fwsam: src, 5 minutes;)

HINT: Replace X.X.X.X with the IP of your web server. Take out the “fwsam: src, 5 minutes;” if you are not using snortsam (you should be ;p). Replace 123456789 with your own custom ID and make it large so it doesn’t conflict with default snort rules.

Have you wrote any custom snort rules or do you have a suggestion to improve this rule? Show us in the comments.

12
Jan

Security: Brute Force a Car Keyless Entry Pad
Filed under Security. 1 Comment.

Everything2.com explains how to crack a key less entry pad on a vehicle.

image via link

Usually key less entry pads have 5 buttons, each with 2 numbers. With a combination of 3,129 pushes you can, and will crack the vehicle code within 20 minutes.

On top of that, you can also use a telecoil from a cellphone to unlock car doors.

22
Nov

How Secure are Firefox Saved Passwords?
Filed under Featured, Security, Tutorials. 3 Comments.

Firefox Logo Secure I hear a lot of people that are whole heartedly against saving passwords in their browser. I would agree if these were not encrypted in any way, but by implementing a master password in Firefox, we can encrypt our saved passwords. Beware that any passwords saved before you set your master password are NOT encrypted and it is still possible for malicious code to steal your passwords through a web site.

Just for giggles, I will to try to crack my Firefox master password. I will do this by using Nagareshwar Talekar’s FireMaster Firefox master password recovery tool.

Firemaster is a Windows only tool so I am going to load it up in my VMware and see how long it takes to crack my Firefox master password.

Download Firemaster.

Extract the Firemaster.exe to a folder, like your desktop.

I am going to use the brute force method. If you like, run firemaster without options to see the syntax switches. The most important switches are the -n for number of characters and the -a to specify which characters to use when brute forcing. Now run FireMaster as so:

firemaster -q -b -n 15 -a "qwertyuiopasdfghjklzxcvbnm1234567890!@#$%^&*()" "C:\Documents and Settings\Username\Application Data\Mozilla\Firefox\Profiles\XXXXXX.default"

Crack Firefox 1
Read the rest of this entry …

Hackosis

Featured

Profile

Recent Comments:

Sponsors