Friday, 27 April 2012

Pulling out precious Lost/ Disappeared/ Evaporated Breakpoints from udd file for immunity and ollydbg

So I came across this problem when I reloaded the app in Immunity and all my breakpoints were gone. I went into Immunity folder, backed up the udd and bak files and had a look at them in Hxd. Turn out that my breakpoints were still in the udd file but for some weird reason, Immunity refused to load it up. Hence I scripted the following python script to extract the breakpoints and notes for me out of the annoying udd files. Code only tested with my udd file so you may wanna modify it a bit to get it to work.
Well this is a simple python script I scripted up to extract the breakpoints out of udd files.


 import binascii  
 import sys  
 if(len(sys.argv) < 2):  
      print "ExtractBP.py <name of extracted binary bp file>"  
 else:  
      f = open(sys.argv[1],'r')  
      a = f.read()  
      b = a.split("\nUs6")  
      print "Addresses\t-->\tNote(If presented)"  
      for c in b[1:]:  
           if c!='':  
                print binascii.hexlify((c[4:6]+chr(ord(c[6])+64)+c[7:8])[::-1])+"\t-->\t"+c[8:-1]
Posted by at No comments:
Labels: , , , , ,

Monday, 16 April 2012

Cool sites

Good blog about hacking tools:

http://holisticinfosec.blogspot.com.au/
2011 tools:


Good blog:
http://www.room362.com/blog/author/r362
http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/


Tools to look at:
http://code.google.com/p/psychofolder/
http://code.google.com/p/fm-fsf/
http://labs.portcullis.co.uk/application/bsql-hacker/
http://www.mavitunasecurity.com/communityedition/#!prettyPhoto
http://intrepidusgroup.com/insight/mallory/
Posted by at No comments:

Monday, 9 April 2012

Eclipse + ZAP Proxy + ArchLinux



Install jdk: pacman -S openjdk6


Install eclipse: pacman -S eclipse 


Get Subclipse:

http://subclipse.tigris.org/update_1.8.x

Select everything except Integration for Mylyn.

Go to Windows/Open Perspective/Others --> SVN

Check out trunk from http://zaproxy.googlecode.com/svn/

Add build.xml to ant

You are done!

PS: Tmux = screen+Terminator. GET TMUX now! :)
Posted by at No comments:

Sunday, 1 April 2012

Random tips and tricks

Runas without domain trust:
runas /user:custdomain\account /netonly cmd


 Fiddler NTLM Auth:
Under OnBeforeRequest: 

oSession.oFlags["x-AutoAuth"]="DOMAIN\\Username:Password";

ssh sharing connection in linux (avoid re-typing the password to connect to the same server again by leveraging existing connection:


Modify ~/.ssh/config or /etc/ssh/ssh_config:

ControlPath ~/.ssh/control-%r@%h:%p
ControlMaster auto
ControlPersist 1


Posted by at No comments:
Subscribe to: Comments (Atom)