March 31st, 2012 
Mourad Ben Lakhoua Information gathering is a very important step during a penetration testing project, if you are running a black box penetration test you need to check some online resources to get the details that will help you to find systems used by the organization, what online activities they have and start preparing profile of your target. [...]
March 29th, 2012 Mourad Ben Lakhoua Auditing password security level is important to have an idea if the system is secure or not, sometimes system administrators forget about using the secure password and leave it weak to remember it later, this is not good practice. To check Mysql password security or recover a lost one you can use MysqlPasswordAuditor, this tool [...]
Posted in Tools 
Tags: Mysql, Password Hacking, Password recovery, Password Security, penetration testing, Pentesting, Tools 
1 Comment » March 28th, 2012 Mourad Ben Lakhoua Windows operating system contain services and processes, some of them are required for certain tasks or operations other consume the memory without any usage and some are on the system with a malicious intent. To detect and resolve what you are running on your system you can consider Process Hacker very useful tool that will [...]
March 27th, 2012 Mourad Ben Lakhoua Drupal is considered one of the most secured CMS (content management system) and for any person that are looking to host web application securely he will give it a big priority, if you are going to audit a Drupal website you can check DPScan. DPScan is an open source python based utility that will crawl [...]
March 22nd, 2012 Mourad Ben Lakhoua Web applications are one of the most targeted systems on internet as they need to interact and be available to any user, we have on a daily bases new vulnerabilities discovered on these critical applications. Some hackers enjoy using Google search engine to identify some vulnerable website versions for attacking them or testing their knowledge [...]
Posted in Pentesting, Tools Tags: IronWASP, penetration testing, Tools, Web, Web Aplication, Websecurity, Website Scanner No Comments » March 21st, 2012 Mourad Ben Lakhoua Mandiant have just released a new version of Redline free software that you can use for incident handling, the utility allow user to report and investigate any system compromised. Usually you need to verify changes in the system to understand what really happened during the attack. Screenshot for Redline Interface (click to enlarge) After installing [...]
March 19th, 2012 Mourad Ben Lakhoua Forensics tools are important to have an idea about activities performed on any computer, sometimes you need to check information on a shared machine or recovering some necessary files. For these purposes and more you can check WinTaylor, free and open source utility that include several tools packed within a single interface. Most of these [...]
Posted in Forensics, Tools Tags: Diagnostics and Forensics, Forensics, Tools, WinTaylor No Comments »
