Online armour: Duncan Campbell's tech chief on anonymity 101
Of Tor, TAILS and Jabber
http://www.theregister.co.uk/2014/12/26/crypto_toolkit_2/
Saturday, December 27, 2014
Thursday, December 25, 2014
Cyber Network Security Firms and Experts
A recent Sony Pictures Hack that Spear Phishing was claimed to be used, caused me to seem how many Spear Points it would reveal or just White Hat names to drop.
A:
Ars Technica
http://arstechnica.com/security/2014/12/inside-the-wiper-malware-that-brought-sony-pictures-to-its-knees/
C::
CloudFlare, director of security operations for DEF CON, the world’s largest hacker conference, and the principal security researcher for the world's leading mobile security company, Cloudflare, NT/NT
E::
Eldos
https://www.eldos.com/rawdisk/
Malwr
https://malwr.com/analysis/MWZkZjU4Mjc1ZTNlNDQzN2FkOWFhNWI1NjNmYjk0Nzc/
N::
Network.om
http://www.networkworld.com/article/2851927/microsoft-subnet/sony-pictures-hacked-by-guardians-of-peace-with-help-from-insiders.html
Re/Code,
CloudFlare, director of security operations for DEF CON, the world’s largest hacker conference, and the principal security researcher for the world's leading mobile security company, Cloudflare, NT/NT
E::
Eldos
https://www.eldos.com/rawdisk/
Malwr
https://malwr.com/analysis/MWZkZjU4Mjc1ZTNlNDQzN2FkOWFhNWI1NjNmYjk0Nzc/
N::
Network.om
http://www.networkworld.com/article/2851927/microsoft-subnet/sony-pictures-hacked-by-guardians-of-peace-with-help-from-insiders.html
Re/Code,
Y::
YARA
The pattern matching swiss knife for malware researchers (and everyone else)
I:
Identity Finder LLC, a leading provider of sensitive data management solutionshttp://www.identityfinder.com/us/Press/20141204210449
F::
FBI http://www.fbi.gov/news/pressrel/press-releases/update-on-sony-investigation
M::
M::
R::
RBS Risk Based Security
https://www.riskbasedsecurity.com/2014/12/a-breakdown-and-analysis-of-the-december-2014-sony-hack/
http://recode.net/2014/12/03/sony-to-officially-name-north-korea-as-source-of-hack-attack/
S::
SOPHOS
http://www.sophos.com/en-us/threat-center/threat-analyses/viruses-and-spyware/Troj~Destover-C/detailed-analysis.aspx
http://plusvic.github.io/yara/
S::
SOPHOS
http://www.sophos.com/en-us/threat-center/threat-analyses/viruses-and-spyware/Troj~Destover-C/detailed-analysis.aspx
http://plusvic.github.io/yara/
Reverse DNS Lookup who where is that IP address anyway:
>>
http://support.simpledns.com/kb/a45/what-is-reverse-dns-and-do-i-need-it.aspx
Sites to use:
http://mxtoolbox.com/ReverseLookup.aspx
This test will list MX records for a domain in priority order. The MX lookup is done directly against the domain's authoritative name server, so changes to MX Records should show up instantly. You can click Diagnostics , which will connect to the mail server, verify reverse DNS records, perform a simple Open Relay check and measure response time performance. You may also check each MX record (IP Address) against 105 DNS based blacklists . (Commonly called RBLs, DNSBLs)
http://remote.12dt.com/lookup.php
http://www.dnsgoodies.com/
DNSgoodies.com - Free utilities for DNS check, Open relay tests, Spam lookups, Whois and other domain related ... Check if your IP has reverse DNS
What is "reverse DNS" and do I need it?
Reverse DNS
Reverse DNS is IP address to domain name mapping - the opposite of forward (normal) DNS which maps domain names to IP addresses.
Reverse DNS is separate from forward DNS.
Forward DNS for "abc.com" pointing to IP address "1.2.3.4", does not necessarily mean that reverse DNS for IP "1.2.3.4" also points to "abc.com".
This comes from two separate sets of data.
Forward DNS for "abc.com" pointing to IP address "1.2.3.4", does not necessarily mean that reverse DNS for IP "1.2.3.4" also points to "abc.com".
This comes from two separate sets of data.
A special PTR-record type is used to store reverse DNS entries. The name of the PTR-record is the IP address with the segments reversed + ".in-addr.arpa".
For example the reverse DNS entry for IP 1.2.3.4 would be stored as a PTR-record for "4.3.2.1.in-addr.arpa".
For example the reverse DNS entry for IP 1.2.3.4 would be stored as a PTR-record for "4.3.2.1.in-addr.arpa".
Reverse DNS is also different from forward DNS in who points the zone (domain name) to your DNS server.
With forward DNS, you point the zone to your DNS server by registering that domain name with a registrar.
With reverse DNS, your Internet connection provider (ISP) must point (or "sub-delegate") the zone ("....in-addr.arpa") to your DNS server.
Without this sub-delegation from your ISP, your reverse zone will not work.
With forward DNS, you point the zone to your DNS server by registering that domain name with a registrar.
With reverse DNS, your Internet connection provider (ISP) must point (or "sub-delegate") the zone ("....in-addr.arpa") to your DNS server.
Without this sub-delegation from your ISP, your reverse zone will not work.
Reverse DNS is mostly used by humans for such things as tracking where a web-site visitor came from, or where an e-mail message originated etc.
It is typically not as critical in as forward DNS - visitors will still reach your web-site just fine without any reverse DNS for your web-server IP or the visitor's IP.
It is typically not as critical in as forward DNS - visitors will still reach your web-site just fine without any reverse DNS for your web-server IP or the visitor's IP.
However reverse DNS is important for one particular application.
Many e-mail servers on the Internet are configured to reject incoming e-mails from any IP address which does not have reverse DNS.
So if you run your own e-mail server, reverse DNS must exist for the IP address that outgoing e-mail is sent from.
It does not matter what the reverse DNS record for your IP address points to as long as it is there. If you host multiple domains on one e-mail server, just setup reverse DNS to point to whichever domain name you consider primary.
(e-mail servers checking for reverse DNS do recognize that it is normal to host many domains on a single IP address and it would be impossible to list all those domains in reverse DNS for the IP).
Many e-mail servers on the Internet are configured to reject incoming e-mails from any IP address which does not have reverse DNS.
So if you run your own e-mail server, reverse DNS must exist for the IP address that outgoing e-mail is sent from.
It does not matter what the reverse DNS record for your IP address points to as long as it is there. If you host multiple domains on one e-mail server, just setup reverse DNS to point to whichever domain name you consider primary.
(e-mail servers checking for reverse DNS do recognize that it is normal to host many domains on a single IP address and it would be impossible to list all those domains in reverse DNS for the IP).
Special note about AOL:
It appears that AOL has recently restricted this even further:
They also require that reverse DNS points to a "fully qualified domain name" (we assume they mean a name with 3 or more segments, such as "mail.jhsoft.com"), and that this name does not contain the segments "in-addr.arpa" and is not just an IP address.
If you want to be able to send e-mail to AOL users, the reverse DNS record for your e-mail server IP address must adhere to this as well.
For details, please see http://postmaster.aol.com/Postmaster.Errors.php#whatisrdns
It appears that AOL has recently restricted this even further:
They also require that reverse DNS points to a "fully qualified domain name" (we assume they mean a name with 3 or more segments, such as "mail.jhsoft.com"), and that this name does not contain the segments "in-addr.arpa" and is not just an IP address.
If you want to be able to send e-mail to AOL users, the reverse DNS record for your e-mail server IP address must adhere to this as well.
For details, please see http://postmaster.aol.com/Postmaster.Errors.php#whatisrdns
 | How do I get reverse DNS for my IP addresses delegated to my own DNS server? |
| How to sub-delegate a reverse zone |
http://support.simpledns.com/kb/a45/what-is-reverse-dns-and-do-i-need-it.aspx
Sites to use:
http://mxtoolbox.com/ReverseLookup.aspx
This test will list MX records for a domain in priority order. The MX lookup is done directly against the domain's authoritative name server, so changes to MX Records should show up instantly. You can click Diagnostics , which will connect to the mail server, verify reverse DNS records, perform a simple Open Relay check and measure response time performance. You may also check each MX record (IP Address) against 105 DNS based blacklists . (Commonly called RBLs, DNSBLs)
http://remote.12dt.com/lookup.php
http://www.dnsgoodies.com/
DNSgoodies.com - Free utilities for DNS check, Open relay tests, Spam lookups, Whois and other domain related ... Check if your IP has reverse DNS
Wednesday, December 24, 2014
Pastebins
A pastebin is a type of web applicationwhere anyone can store plain text. They are most commonly used to share short source code snippets for code review via Internet Relay Chat.
www.alexa.com/
B::
Bit Torrent Trackers:
Trackers and indexers
Public trackers
Private trackers
A BitTorrent tracker is a server that assists in the communication between peersusing the BitTorrent protocol. In peer-to-peer file sharing a software client on an end-user PC requests a file, and portions of the requested file residing on peer machines are sent to the client, and then reassembled into a full copy of the requested file. The "tracker" server keeps track of where file copies reside on peer machines, which ones are available at time of the client request, and helps coordinate efficient transmission and reassembly of the copied file. The BitTorrent tracker is also, in the absence of extensions to the original protocol, the only major critical point, as clients are required to communicate with the tracker to initiate downloads. Clients that have already begun downloading a file communicate with the tracker periodically to negotiate faster file transfer with new peers, and provide network performance statistics; however, after the initial peer-to-peer file download is started, peer-to-peer communication can continue without the connection to a tracker.
Public or open trackers can be used by anyone by adding the tracker address to an existing torrent, or they can be used by any newly created torrent. The most popular are OpenBitTorrent, PublicBitTorrent and istole.it.[1] The Pirate Bay operated one of the most popular public trackers until disabling it in 2009 amid legal trouble, opting to offer only magnet links.[2]
A private tracker is a BitTorrent tracker that restricts use by requiring users to register with the site. The method for controlling registration used amongst many private trackers is an invitation system, in which active and contributing members are given the ability to grant a new user permission to register at the site.[3]
http://en.wikipedia.org/wiki/BitTorrent_tracker| Web address | www |
|---|---|
| Slogan | "#1 paste tool since 2002!" |
| Registration | Optional |
| Available in | English |
| Launched | 2002 |
Alexa rank
| 1,146 (Global July 2014) |
Rapidgator
Welcome to the Support Center of Rapidgator.net
rapidgator - get the latest news at TorrentFreak
RBS>>
While politically motivated attacks and theft of intellectual property is nothing new, this incident certainly stands out for several reasons. First, via a Pastebin link, the group released a package and links to torrent files hosted on four sites consisting of 26 parts, broken out into 25 1GB files, and one 894 MB rar file. The files were also uploaded to the file sharing giants MEGA and Rapidgator, but removed by site managers shortly after. The researchers at RBS were able to access the files and analyze the content prior to the information going off-line, as well as reach out to GOP.<<
- https://mega.co.nz/
MegaMEGA provides free cloud storage with convenient and powerful always-on privacy. Claim your free 50GB now!
rapidgator.net/article/faq
rapidgator.net/site/PleaseLogin
https://torrentfreak.com/tag/rapidgator/
TorrentFreak
www.inquisitr.com/.../file-sharing-sites-continue-to-bleed-rapidgator-shu...
- stopfilelockers.com/
Nov 17, 2014 - Like almost every illegal file locker, Rapidgatorpays uploaders based on the number of downloads their filesreceive or rewards them with a ...
Sunday, December 21, 2014
A Peek at latencies for undersea and satellite data traffic. What did Ping or tracert just tell you?
>>
| Cuba following a new path via Telefonica and recording significantly lower latencies. Latency measurements from four cities are illustrated in the graphic on the right.We must emphasize lower latencies because, despite the drop, these aren’t exactly lowlatencies. Our measured latencies to Cuba are still quite high, albeit improved. The fact that the latencies to Cuba from many locations around the world have dropped below 480ms means that the new Telefonica service cannot be entirely via satellite. However, if it were solely via submarine cables, we would expect latencies from many nearby countries to be less than 50ms.(Note: Round trip latencies for crossing the Atlantic and Pacific oceans are approximately 60ms and 110ms, respectively.) |  << |
http://research.dyn.com/2013/01/cuban-mystery-cable-activated/
http://www.submarinecablemap.com/
Saturday, December 20, 2014
I remember DOS and TCP/IP
 |
| from http://brutman.com/Dos_Networking/ a nice site for review! |
Here are a few quick sites for common commands in DOS / Windows operating systems for Network and TCP.IP testing.
1) Biggest and Best:
http://technet.microsoft.com/en-us/library/cc757819%28v=ws.10%29.aspx
2) Nice and easy:
http://stickystatic.com/doscommands
3) Nice and easy 2:
www.whatismyip.com
Introduction
Here George King, X Senior Member of Technical Staff of Siemens (Telecommunications, ATE, R&D Telecom) Communications, Nokia-Siemens and a hand full of other names Siemens USA when through in America during my 29 years of service.
A also being an TDK ( the Druid King) an unreformed Techno-Druid (see my other blogs) will share what my out of work and over 65 years old life and bits and bytes
http://thedruidking.blogspot.com/
A also being an TDK ( the Druid King) an unreformed Techno-Druid (see my other blogs) will share what my out of work and over 65 years old life and bits and bytes
http://thedruidking.blogspot.com/
Subscribe to:
Posts (Atom)