Search
Categories
Underground – Install Backtrack 3 on USB
August 16th, 2009 by 
Patchy
матрациIn this Underground video, Ground Zero explains how to install Backtrack 3 onto an USB drive. He also illustrates how to make the USB device bootable and how to enable persistent changes in Backtrack.
Full Scale Video Here
Download Here
If you would like to submit a video to Infinity Exists Underground send an email describing your video to underground@infinityexists.com
Download Here
If you would like to submit a video to Infinity Exists Underground send an email describing your video to underground@infinityexists.com
Posted in Underground | 
8 Comments
Underground – CSRF
August 14th, 2009 by Patchy
In this Underground video, Crash Overron explains CSRF (Cross Site Request Forgery), and how it can be used to force a user’s browser into performing an undesirable action on a website. Basically, CSRF tricks a browser into requesting a web page that is design to perform a specific function such as changing user settings. Furthermore, if the page allows GET variables, an attacker can modify that user’s settings. Commonly, CSRF attacks are hidden in image html tags.
Full Scale Video Here
Download Here
If you would like to submit a video to Infinity Exists Underground send an email describing your video to underground@infinityexists.com
Download Here
If you would like to submit a video to Infinity Exists Underground send an email describing your video to underground@infinityexists.com
Posted in Underground | 1 Comment
Extracting Database Information from Information_Schema
August 10th, 2009 by Patchy
In Full Disclosure Episode 11, we show you how to extract information from our WordPress SQL Database. WordPress is open source, so we were able to look up information about WordPress’s Database structure. However, what do we do if the Web application is not open source? How do we know what tables and columns to extract information from? In this VBlog, I’m going to explain how to use the Information_Schema database to extract information about a website’s tables and columns.
Full Scale Video Here
Download Here
Download Here
Posted in Vblog | 3 Comments
Defcon 17!
August 1st, 2009 by Patchy
Nox and I are in Las Vegas for Defcon 17! It our first time at Defcon, and from want we’ve seen so far it going to be an amazing weekend. We’ve already heard some great speeches, and seen some pretty cool stuff. As many of you know, the attendees of Defcon get a badge with some electronics to hack and modify.
(Click to enlarge)
This years badge has a Freescale MC56F8006 DSP/microprocessor chip, microphone, and RGB LED. The RGB LED cycles through different colors until the microphone picks up some noise then the LED with respond to the volume and frequency of the sound. We decide to try playing different frequencies and see if the badge would reveal some easter eggs for a specific frequency. After a few minutes we figured out that the LED would blink what look to be Morse code whenever it pick up a frequency that was a power of 2 (such as 64hz,256hz,1024hz, etc.).
(Download Here)
The Morse code message turned out to be the url 0day.com/n01z. Tomorrow, I’m going to try to get a level shifter, so I can modify the firmware!
For more information on Defcon you can go here.
For more information on the Defcon 17 Badge go here.
(Click to enlarge)
This years badge has a Freescale MC56F8006 DSP/microprocessor chip, microphone, and RGB LED. The RGB LED cycles through different colors until the microphone picks up some noise then the LED with respond to the volume and frequency of the sound. We decide to try playing different frequencies and see if the badge would reveal some easter eggs for a specific frequency. After a few minutes we figured out that the LED would blink what look to be Morse code whenever it pick up a frequency that was a power of 2 (such as 64hz,256hz,1024hz, etc.).
(Download Here)
The Morse code message turned out to be the url 0day.com/n01z. Tomorrow, I’m going to try to get a level shifter, so I can modify the firmware!
For more information on Defcon you can go here.
For more information on the Defcon 17 Badge go here.
Posted in News, Vblog | 2 Comments