Search this site

Thursday, February 23, 2012

Google Hacking Diggity Project for Penetratio Testing!! Binding to a specific Proxy !!

Google Hacking Diggity Project is a tool developed by Stach & Liu ( http://www.stachliu.com/). It uses Google and Bing databases to look for vulnerabilities in web sites. It can provide great help in securing a large website or domain.

There is very less available on configuring the tool. I had multiple proxy installed and wanted to bind the tool to one of the proxy, but it was not picking that one.

After playing around its configuration files and several settings, I found a simple solution for binding the tool to a specific proxy: It is: configure your IE browser to use that specific proxy. Search Diggity by default relays to the proxy bound to IE. ( not Firefox ;) )

Posted by at No comments:
Labels: , ,

To Disable ‘Guest Session’in Ubuntu 11.10

Ubuntu 11.10 provides option to run “Guest Session” which allows any person to login to Ubuntu system with a guest account and no password is required.

To disable “Guest Session “', simply open the lightdm.conf file with the following command:

$ sudo gedit /etc/lightdm/lightdm.conf

And, add the line given below at the end of this file.

allow-guest=false

Restart the system. The guest session option should not appear on the login screen.

Posted by at No comments:
Labels: , ,

Ubuntu Linux: Searching, installing or/and removing packages/software using 'apt-get'

Here are the simple steps for searching, installing, or/and removing packages:

1. To search Adobe Flash Plug-in for Firefox browser:

$ sudo apt-cache search flash

Above apt-cache command displays a list of all packages including the word "flash". There is no need for sudo as apt-cache makes no changes to your system. You can also simply try:

$ apt-cache search flash

2. If you wanted to search more than one keyword for example “adobe flash plugin”, you could input

$ apt-cache search adobe flash plugin

flashplugin-nonfree-extrasound - Adobe Flash Player platform support library for Esound and OSS

pyjamas - Python web widget toolkit and Python-to-Javascript compiler

konqueror-nsplugins - Netscape plugin support for Konqueror

flashplugin-installer - Adobe Flash Player plugin installer

flashplugin-downloader - Adobe Flash Player plugin installer (transitional package)

3. To Install a Package: for example 'flashplugin-installer' (as searched above), type the following:

$ sudo apt-get install flashplugin-installer

To install multiple packages, just specify packages separated by spaces. Example: For installing Compiz Fusion 3D desktop:

$ sudo apt-get install compiz compiz-gnome compizconfig-settings-manager compiz-fusion-plugins-extra libcompizconfig0 compizconfig-backend-gconf fusion-icon pdfcube

4. To Remove a Package:

$ sudo apt-get remove eclipse

Posted by at No comments:
Labels: , ,

Is there any bug with Network Proxy of Ubuntu 11.10?

Recently I installed Ubuntu 11.10 Desktop on a system, and configured 'Network > Network Proxy' to use a proxy for Internet access. I selected ‘Apply System Wide'.

Unfortunately, I couldn't access the Internet through Firefox browser's default settings. I had to configure Firefox browser explicitly to access Internet through proxy.

Tip: for getting updates/upgrades behind proxy, read the blog: 'Ubuntu Linux: Update/Upgrade the Linux from behind an Internet proxy server'

Posted by at No comments:
Labels: , ,

Ubuntu Linux: Update/Upgrade the Linux from behind an Internet proxy server

If you use Internet connection that needs proxy, user name and password, then in order to update your system (installing security patches/bug-patches) or upgrade to new version following configuration can be done from command line:

1. Open apt.conf file with root privileges by simply typing following command in terminal:

$ sudo gedit /etc/apt/apt.conf

2. If IP address of your Internet proxy is 10.1.1.1 and port is 8080, then add following lines in the apt.conf:

Acquire::http::proxy "http://10.1.1.1:8080/";
Acquire::ftp::proxy "ftp://10.1.1.1:8080/";
Acquire::https::proxy "https://10.1.1.1:8080/";



2. If your proxy requires username and password for authentication, then add following lines:

Acquire::http::proxy “http://username:password@10.1.1.1:8080/";
Acquire::ftp::proxy “ftp://username:password@10.1.1.1:8080/";
Acquire::https::proxy “https://username:password@10.1.1.1:8080/";

Note that:

  • If your proxy doesn't allow PING, then you won't be able to ping.
  • If you are using special characters such as !,@,#,$,%... in your password, then you must use URL encoding for each of them. For example, "#" in password would be "%23". You can get the encoded values for special characters from online encoders available on Internet, for example:

http://www.opinionatedgeek.com/dotnet/tools/urlencode/Encode.aspx

3. Now, to update (packages), simply type:

$ sudo apt-get update
$ sudo apt-get upgrade

Note that:

  • Synaptic Package Manager has been dropped from Ubuntu 11.10
  • Ubuntu 11.10 Update Manager should also work with this settings.







Posted by at No comments:
Labels: , ,
Subscribe to: Posts (Atom)