TechBulletin

CPL is a simple, near-English language for expressing cryptographic protocols. CPL lowers the barrier between abstract mathematical descriptions and working code. Potential uses include protocol design, code prototyping and functioning as a teaching aid. An accompanying compiler translates protocols expressed as CPL “code” into working Java clients. CPL is also packaged with a tool for converting protocol descriptions into LaTeX diagrams.CPL Quick Reference

This is an interesting article posted ….

Computer crimes can be separated into two categories: 1) crimes facilitated by a computer and 2) crimes where a computer or network is the target. 

When a computer is used as a tool to aid criminal activity, it may include storing records of fraud, producing false identification, reproducing and distributing copyright material, collecting and distributing child pornography, and many other crimes.

Technology has made it easier for criminals to hide information about their crimes. Because of the sophistication of the digital environment, evidence is collected and handled differently than it was in the past and often requires careful computer forensic investigation. Crimes where computers are the targets can result in damage or alteration to the computer system. Computers which have been compromised may be used to launch attacks on other computers or networks.

http://www.cert.org/tech_tips/FBI_investigates_crime.html

Good article by Mike Murray…

As systems administrators, it’s often funny how new and interesting information ends up in our hands. Sometimes, it’s through an intentional course of study; other times, it seems to arrive by accident. That’s exactly how the concept of using a halted Linux computer as a firewall occurred to me. I was at work, perusing an internal corporate mailing list and saw a message about something that was once present in Linux.

Authors: Scott A Crosby and Dan S Wallach

netfilter is a framework for packet mangling, outside the normal Berkeley socket interface. It has four parts. Firstly, each protocol defines “hooks” (IPv4 defines 5) which are well-defined points in a packet’s traversal of that protocol stack. At each of these points, the protocol will call the netfilter framework with the packet and the hook number.

Secondly, parts of the kernel can register to listen to the different hooks for each protocol. So when a packet is passed to the netfilter framework, it checks to see if anyone has registered for that protocol and hook; if so, they each get a chance to examine (and possibly alter) the packet in order, then discard the packet (NF_DROP), allow it to pass (NF_ACCEPT), tell netfilter to forget about the packet (NF_STOLEN), or ask netfilter to queue the packet for userspace (NF_QUEUE).

This document is a journey; some parts are well-traveled, and in other areas you will find yourself almost alone. The best advice I can give you is to grab a large, cozy mug of coffee or hot chocolate, get into a comfortable chair, and absorb the contents before venturing out into the sometimes dangerous world of network hacking.

For more understanding of the use of the infrastructure on top of the netfilter framework, I recommend reading the Packet Filtering HOWTO and the NAT HOWTO. For information on kernel programming I suggest Rusty’s Unreliable Guide to Kernel Hacking and Rusty’s Unreliable Guide to Kernel Locking.

Secure Shell is a program to log into another computer over a network, to execute commands in a remote machine, and to move files from one machine to another. It provides strong authentication and secure communications over unsecure channels. It is intended as a replacement for telnet, rlogin, rsh, and rcp. For SSH2, there is a replacement for FTP: sftp.

FaceTime Security Labs provides the foundation for complete instant messaging security and spyware prevention strategy, delivering detailed information about known threats that enable organizations to:

• Block P2P network use that could breach corporate security policy
• Prevent spyware from being accidentally or intentionally downloaded by users
• Secure instant messaging against worms, Trojans, malware and rootkits
• Remain in compliance with data privacy and information security legislation

The Labs also power the patent-pending inoculation and targeted remediation capabilities that keep clients spyware-free.

FaceTime Security Labs provides the foundation for FaceTime’s Defense-in-Depth spyware prevention strategy , delivering detailed information about known threats that enable the blocking of spyware distribution sites as well as powering the patent-pending inoculation and targeted remediation capabilities that keep clients spyware-free.

http://www.spywareguide.com/index.php

rsecurity is an innovative approach to security utilizing a multi-layered detection, prevention, and containment model. It is licensed under the GPL.
It offers among many other features:

• An intelligent and robust Role-Based Access Control (RBAC) system that can generate least privilege policies for your entire system with no configuration
• Change root (chroot) hardening
• /tmp race prevention
• Extensive auditing
• Prevention of arbitrary code execution, regardless of the technique used (stack smashing, heap corruption, etc)
• Prevention of arbitrary code execution in the kernel
• Randomization of the stack, library, and heap bases
• Kernel stack base randomization
• Protection against exploitable null-pointer dereference bugs in the kernel
• Reduction of the risk of sensitive information being leaked by arbitrary-read kernel bugs
• A restriction that allows a user to only view his/her processes
• Security alerts and audits that contain the IP address of the person causing the alert

download now

 dsniff is a collection of tools for network auditing and penetration testing. dsniff, filesnarf, mailsnarf, msgsnarf, urlsnarf, and webspy passively monitor a network for interesting data (passwords, e-mail, files, etc.). arpspoof, dnsspoof, and macof facilitate the interception of network traffic normally unavailable to an attacker (e.g, due to layer-2 switching). sshmitm and webmitm implement active monkey-in-the-middle attacks against redirected SSH and HTTPS sessions by exploiting weak bindings in ad-hoc PKI.

http://www.monkey.org/~dugsong/dsniff/

dsniff Frequently-Asked Questions

Here are the PuTTY files themselves:

• PuTTY (the Telnet and SSH client itself)
• PSCP (an SCP client, i.e. command-line secure file copy)
• PSFTP (an SFTP client, i.e. general file transfer sessions much like FTP)
• PuTTYtel (a Telnet-only client)
• Plink (a command-line interface to the PuTTY back ends)
• Pageant (an SSH authentication agent for PuTTY, PSCP and Plink)
• PuTTYgen (an RSA and DSA key generation utility).

PuTTY is a free implementation of Telnet and SSH for Win32 and Unix platforms, along with an xterm terminal emulator. It is written and maintained primarily by Simon Tatham.

The latest version is beta 0.58.

Download PuTTY!

MD5 (Message-Digest algorithm 5) is a widely-used cryptographic hash function with a 128-bit hash value. MD5 was designed by Ronald Rivest in 1991.

“[The MD5 algorithm] takes as input a message of arbitrary length and produces as output a 128-bit “fingerprint” or “message digest” of the input. It is conjectured that it is computationally infeasible to produce two messages having the same message digest, or to produce any message having a given prespecified target message digest. The MD5 algorithm is intended for digital signature applications, where a large file must be “compressed” in a secure manner before being encrypted with a private (secret) key under a public-key cryptosystem such as RSA.”

http://md5.rednoize.com/

FreeDOS is a free DOS-compatible operating system for IBM-PC compatible systems. FreeDOS is made of up many different, separate programs that act as “packages” to the overall FreeDOS Project.

These days, there are three main uses of FreeDOS:

   1. To run old DOS games (like DOOM, etc.)
   2. To run old business software that only supports DOS
   3. To support an embedded DOS system, such as a computerized cash register or till

You can run FreeDOS on pretty much anything. While can run FreeDOS on a dedicated PC, now it’s most often run inside a PC emulator. You can find PC emulators for all computer platforms (Windows, Linux, Mac.) If you are new to DOS, we recommend you use an emulator to install and boot FreeDOS.

FreeDOS is open source software; you can view and edit our source code. Most FreeDOS programs are distributed under the GNU General Public License (”GNU GPL”) which means they are not only open source software, but they are Free software. Because of this, FreeDOS would not exist were it not for all the people who contribute to it. Even if you didn’t write code, you helped out the FreeDOS Project by submitting comments and bug reports.

http://www.freedos.org/

I am regular visitor of this site …. you will find lot of free applications very well organized…

Here are the Application categories…

Business
Collaboration
Communication
Conversion
Design
Education
Entertainment
Files
Finance
Folksonomy
Health
Language
Mobility
Music
Networking
Others
Photos
Privacy
Productivity
Programming
RSS/Atom
Search
Security
Video
Webmaster

 This site is dedicated to the growing volume of web applications out there.  Danny is the owner of this site …

http://www.webapplist.com/

you can create temp email even for one hour….

With this service you can create a temporary e-mail address that will forward all incoming mail to your usual e-mail address.  Simply enter your e-mail address and the life time of your spambox and we will generate you a temporary @spambox.info e-mail.

They claim that , We create for you a temporary e-mail address that will expire in the time you chose, all the mails directed to this e-mail will be transparently forwarded to your real e-mail.

Let me know if some one tries this service….

 http://spambox.us/

Still in beta .. but looks good…  

Pando is free personal P2P software that makes sending and receiving large files and folders a breeze. Need to email large attachments, IM a folder, or publish your downloadable videos to the Web? Meet Pando.

    * Bypasses email attachment limits with small .pando attachments
    * Never clogs your inbox
    * Accelerates and manages downloads of files and folders

http://www.pando.com/what

Thinkature brings the richness of in-person, visual communication to the web by placing instant messaging inside a visual workspace. Use it as a collaboration environment, a meeting room, a personal web-based whiteboard, or something entirely new.

Getting an account is easy, fast, and free. Visit our account creation page to get started.

The workspace above is the real deal. Try creating, moving, editing, drawing, and connecting ideas.

http://thinkature.com/

Nice website with all DNS tools at one place…

http://www.iptools.com/

Available tools …  

DNS Lookup

Spam DB Lookup

Whois Lookup(Domain)

Decimal to hex

IP Routing Lookup

and more ….

Ever wanted to convert Image to text or Ascii…. here is a nice online tool for this…

upported image file formats: JPEG, GIF, PNG, BMP and most others.

URLs to images

To convert an image to ASCII, you have to enter the address to the image location. You can usually get this by right-clicking on the image and choose COPY IMAGE LOCATION

http://asciiconvert.com/

Speedtest.net is a general use broadband connection analysis tool with many geographically dispersed testing servers. If you are experiencing slowness with your Internet connection, Speedtest.net can help you identify and prove it. Your result history is saved so you can compare against past tests to detect trends. Share links to your result images with your ISP and friends.

Speedtest.net initially recommends a server for you based on what the application thinks is the shortest physical distance between you and one of the servers. However, because the Internet does not actually operate in direct paths, this recommendation may not be ideal. To best utilize Speedtest.net, find the server that provides the fastest and most consistent results and set it as your preferred server. This will turn it into your new recommended server. Test against this server frequently to make sure you are getting what you pay for from your ISP!

One of the ways to help advertise and sell your products on the web is through a blog.  Blogs are a great way to increase the attention and visitors that see your business’s product or service.  If you are looking for a sure fire way to sell your products online, start with a blog. Read the rest of this entry » »

One of the ways that blogs are used is for blog authors to give their opinions on pop culture, general issues or politics. There are many blogs that are created in order for the author to rant or rave about issues that they are interested in or that they feel are important to others.  If you are interested in expressing your opinion, a blog is one of the best ways to do it. Read the rest of this entry » »