March 21st, 2012 
Mourad Ben Lakhoua Mandiant have just released a new version of Redline free software that you can use for incident handling, the utility allow user to report and investigate any system compromised. Usually you need to verify changes in the system to understand what really happened during the attack. Screenshot for Redline Interface (click to enlarge) After installing [...]
March 19th, 2012 Mourad Ben Lakhoua Forensics tools are important to have an idea about activities performed on any computer, sometimes you need to check information on a shared machine or recovering some necessary files. For these purposes and more you can check WinTaylor, free and open source utility that include several tools packed within a single interface. Most of these [...]
Posted in Forensics, Tools 
Tags: Diagnostics and Forensics, Forensics, Tools, WinTaylor 
No Comments » March 18th, 2012 Mourad Ben Lakhoua Facebook is now one of the first used social network website, many interested in the way to have access to user’s pictures and information. For this purposes you can use an interesting Egyptian project called fbpwn. Fbpwn is a cross-platform Java based Facebook social engineering framework that you can use for send invitation for any [...]
March 14th, 2012 Mourad Ben Lakhoua Today it is well-known that malwares and spams may bypass antiviruses and intrusion detection systems. if security software vendor did not develop the required signature for this attack than attacker will be able to execute the malicious software and take a full control of the corperate network. To stop the malicious activities at an early [...]
Posted in Malwares, Network security, Tools Tags: BotHunter, Malware Research, Network Monitoring, System Monitoring, Tools No Comments » March 10th, 2012 Mourad Ben Lakhoua Google chrome is now widely used for navigating online resources, chrome as any web browser allows to store passwords to help users automate their online authentication, this is good as a functionality but from the security prospective this enable hacker to get all stored passwords. Chrome Password Decryptor is a free application that you can [...]
March 3rd, 2012 Mourad Ben Lakhoua Application that are running on local system include many important information such as login passwords and other sensitive credential, it is possible for an attacker to have all these details by reversing the software while it is running on the system. Some programs are using encryption but you still can use oSpy to receive API [...]
Posted in Tools Tags: ActiveSync, API-interception, API-spying, C, CSharp, Debugging, HTTPS-sniffing, MSN, MSNP2P, Reverse-Engineering, Sniffing, Tools, Windows API Calls, x86assembler No Comments » February 28th, 2012 Mourad Ben Lakhoua Many people are speaking these days about the SSL-Exhaustion attack which is a way to make any https server out of service, this attack allow hackers to take down any server remotely by using a special vulnerability widely known since 2003. Secure SSL require 15 times more server processing power than on client, so here [...]
