Infinity Exists now has 200 forum members!! Which is amazing because it only took a month and a week to increase from 100 to 200 members!! Hopefully the forums continue to increase in members that this rate!!

Over the last month you may have received several false “503 Service temporarily unavailable” server errors. These error messages were cause by a security application; it checks client’s referrer and if it determines that it is forged, the server will respond with a 503 message. I believe that Wordpress was conflicting with this application, so I disabled it about a week ago. According to recent logs, the problem seems to be fixed. If you continue to receive several 503 error messages send me an email at Patchy[at]infinityexists[dot]com

—————————————————————————————————————————– Update!
If you try to make over 20 connections to the website you will receive the 503 error message.

In this episode of Full Disclosure we will demonstrate how to crack MD5 password hashes. MD5 (Message-Digest algorithm 5) is a hash function commonly used by websites to encrypt passwords. MD5 is a one-way hash; therefore, to crack the password you most try every possible dictionary word and if that does not work, every possible letter/number/symbol combination. The programs we use to crack the passwords are Cain and MDCrack-NG.

Live Stream Here
Download Here

You can watch all the Defcon 15 Speaks on Google Video. For those of you who aren’t familiar with Defcon it is “The Largest Computer Underground Hackers Convention in the World” and it is held every year in Las Vegas! Check out their website: http://www.defcon.org/

This is our third video in our Lock Picking series; after this video we will return to computer hacking videos for a while. In this video we demonstrate how to unlock the Master Lock 653D, Targus Defcon CL, and the Master Lock 175. The different methods shown in this video to unlock these three locks will help you not only unlock these locks; but also, help you develop your own way to crack other mult-disc combo locks that you may come across.

Live Stream here
Download video here

Recently a local privilege escalation vulnerability was found in Cisco’s VPN Client. When Cisco VPN Client is installed, a windows service “Cisco Systems, Inc. VPN Service” is created. The service runs the binary C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe as Local System. Therefore, if you replace cvpnd.exe with another executable, then that program will be ran at startup with root privileges! I fond this vulnerability interesting because it is used at my college to authenticate students when they connect to the wireless network. For that reason, almost every student with a laptop has this software installed, and students are allowed to borrow school laptops from the student center to use the wireless internet. Consequently, anyone could borrow a laptop, gain root access thought the vulnerability, and install a keylogger that sends every keystroke to the attacker’s email! Its been 5 days seen this vulnerability was discovered, and Cisco has already issued a patched version. However, how long will it take for the school to update all their computers? This is just another reason why you should be careful when using school computers!

Video Demonstration: (shows how to gain root access and change the Admin password with this vulnerability)

Discuss Here