Netsoc

Hey Folks

When: Thursday 15th, 6pm
Where: KA-1-16

This thursday, we will be hosting a mini wargame. I say mini because I didn’t have the time to touch it up to quite the level i’d like.

There will be some purposely vulnerable machines setup for everyone to try hack. This will be similar to the setups we have guided people through with the workshops/tutorials. Hope to see you all there!

Workshop:

You’ll need:
Linux/ubuntu live cd (recommended). We’ll push this out via torrents at the start of class
firefox (again, preferred but not required)
Burpsuite
john the ripper
wordlist (http://download.openwall.net/pub/passwords/wordlists/), we’ll pass this around via torrents as well as their mirror is quite slow.

Setup:
On your LAB PC:

First: Check if ubuntu iso is on the E:\ drive. If it is, you may skip the following.

==================================================================
Download: http://portableapps.com/apps/internet/utorrent_portable, Install to the E:\ drive.
Run utorrent portable.
Navigate to the server address ———–(I haven’t got the server online yet, please wait untill the workshop starts)
Download the torrents on the page using utorrent portable and save the data to the E:\ drive (NOT YOUR U:\ drive)
==================================================================
Once you’ve downloaded ubuntu, vmware as shown in this pdf – setupvmware.

You’ll probably need to change your dns servers you can do so by typing:

echo “nameserver 8.8.8.8″ | sudo tee /etc/resolv.conf

Then you’ll need to install libssl-dev , sudo apt-get install libssl-dev to have the proper libraries to compile john.
You’re now ready to start hacking at the first server. Setup burp suite and firefox as shown before and aim your browser at: http://147.252.234.230

You will need to crack some passwords at some stage in the challenge, this is how you compile john the ripper ( a password cracker)

Compile john
Google “john the ripper” and download the latest community-enhanced version. It’ll probably appear in /home/ubuntu/Downloads/. You’ll need to extract it, tar -zxvf the-file-name-here
cd into the directory it extracted and into src and type make to see all the options. You will most likely want to type
make linux-X86-any. Once this has completed, you’ll find the program in the run directory (cd ../run)

Mitigation:

I’ll update this post about how we can secure the holes for the different parts of the challenge that have been solved.

Hey Folks

As per usual, this will be in KA-3-05 from 6pm.

We will be doing a system administration workshop this Monday for installing and configuring services on a linux server. This will be hands on using vmware player on the lab machines.

We will be covering the basics such as

• Installing daemons/services
• configuring services
• adding users
• Analysing logfiles
• configuring network settings
• Setting up firewalls

Workshop notes, please download a torrent program such as utorrent portable.

Navigate to http://147.252.234.51 and download “ubuntu-11.10-desktop ” etc torrent and open it and start downloading

Once you have the iso downloaded, please read this file on how to set up vmware with the image setupvmware

To clarify for anyone who’s not using vmware, the setup should be a “bridge network connection” and we will be running a live cd not installing it

Once vmware and ubuntu is setup, please boot up and select “TRY UBUNTU”

Update: Great turn out, hope everyone found this as enjoyable as I did. Here are some photos of the event: http://www.flickr.com/photos/netsocdit/sets/72157629572372749/

Hey Folks, for anyone who hasn’t seen it, this is the email sent to the owasp Ireland mailing list. It’s free but you need to signup in advance.

DATE: 30th March at 17:00

Dear all,

We have the great pleasure to invite you to the upcoming OWASP Dublin event next Friday 30th March at 17:00 (registration opens at 16:30) in Google Ireland Engineering offices at One Grand Canal Plaza Building (located on Grand Canal Street Upper, beside the junction of Warrington Place and Barrow Street).

You could find a placemark for the building on this map : http://goo.gl/ZGASA

This event is free and open to EVERYONE but registration is mandatory. In this occasion, we have two great speakers from the UK coming only to deliver these talks.

Workshop #1 Details – Application Hacking: Beyond the OWASP Top 10

Whilst many guides, tools and methodologies stress the importance and expand the ubiquity of the OWASP Top 10, many of the more interesting vulnerabilities are those which are not. In this talk, MDSec present some results from our assessments which defy even the broad classification of the OWASP Top 10.

Guest Speaker: Marcus Pinto
Twitter: @mdseclabs

With nine years’ experience, Marcus Pinto is an industry thought leader in Information Security, having authored the Web Application Hacker’s Handbook Series, and delivered numerous private training courses, conference training, seminars and awareness days on technical subjects worldwide. Marcus has managed end-user security, consultancy and internal penetration testing teams for government and financial sector organisations.

Workshop #2 Details: iOS Application (In)Security

The mobile application market has exploded in the last few years. With Apple holding a majority market share in the consumer market and a growing foothold in the enterprise, iOS application security has never been so important. In this talk, MDSec will present some of the lessons learned from evaluating iOS applications covering the platform security features, blackbox app assessment and the security relevant APIs.

Guest Speaker: Dominic Chell
Twitter: @deadbeefuk

Dominic is a director of MDSec, a UK based security consultancy specialising in a range of technical security assessment services including Mobile security. As a researcher, Dominic has been publicly acknowledged by numerous vendors, including Apple, for vulnerability disclosure.

Registration: http://www.regonline.com/beyondtop10

Any questions, please let me know.

Thanks,
Fabio

_______________________________________________
Owasp-ireland mailing list
Owasp-ireland@lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-ireland

Looking to get into security more? Want to learn how systems are really compromised or just plain want to learn how to hack? Come along to the security workshop training on Monday for a workshop by guest, Mark Denihan

When: Monday- 5th March 6pm
Where: KA-305 in Kevin st Annex building

Here’s what he has to say about the workshop

Situation: This semster vmware player is on the lab pcs. I wanted to host workshops using ubuntu + vulnerable vms for security/system administraiton. This collection includes around 10 gigs of vms, isos and tools.

Problem: Even with 100Mb connections, downloading from one location (Be it the internet or the M drive etc), would saturate the downlink with 30/40 labs (ontop of everyone elses traffic). Usbs are slow and even sharing between lab pcs would be hectic.

Solution: I remember twitter using bittorrent for server deployment. (http://torrentfreak.com/twitter-uses-bittorrent-for-server-deployment-100210/). So this evening, when the labs emptied out for this weekend, I setup a torrent tracker – RivetTracker  -http://sourceforge.net/projects/rivettracker/, which was quite easy. All you need is a mysql username + password and some php server space. It has a similar setup to wordpress the first time. You’re given a username + password you can use to upload new torrents to it. Here’s a screenshot of it tracking some torrents from their website.

I was expecting it to be more difficult than it turned out to be but we just grabbed some torrent clients, logged onto all the lab PCs, set them all up to download the torrent. Was quite cool watching all the lab pcs max out upload/download speeds. We didn’t time the process unfortunately but it was quite fast.

Funny enough, this process turned out to be faster than transferring the collection to usb and transfering across to a shared smb drive. So one of the labs now has a nice collection of 10 gigs of security research tools on the E: drive (tempdata) although this is liable to be wiped after a certain period of time. Fred Mtenzi (security lecturer) has kindly given permission for this collection to be stored on the M drive under “netsoc” directory so even if this collection is lost, you can download it again from here without hunting around too much.

Final Notes: This isn’t of the usual importance that usually makes it to a website post however I did think it worked REALLY smoothly and worked surprisingly well. While the implementation is trivial and nothing new, It would be well worth a look for deploying tools in the lab. After I had it all done, I considered that a multicast solution might have worked better since they were all on the local network. Ah well, always next time!

Update: People were asking me to upload a screenshot of my setup.  Unfortunately I don’t have a screenshot of when all the clients were connected, but this is the aftermath. An announcement recent about rivettracker highlights a LOT of security vulnerabilities. Specificly, sql injection. The code looks horrific and the latest version off sourceforge is still vulnerable. A bit of google-fu also shows there’s a lot of servers out there running this… dangerous. This seems like a semi-easy target we may try exploit in a workshop. Here’s the report here http://packetstormsecurity.org/files/110416/rivettracker-sql.txt

We’ll be doing a system administration Talk on Tuesday 28th on system administration with the light being on debian. This will be a semi introduction to debian in general with a highlight on the system administration. Hope to see you all there!

When: 6PM Tuesday 28th February
Where: KA G 026

Topics will include but are not limited to

• Installing packages/services
• How to configure services
• Networking
• Firewalls with iptables
• Locking down the system
• Libraries + development headers and compiling services from source

Git + Versioning software Workshop + Talk this Monday!

When: 6-8pm Monday 27th February
Where: KA-3-05

We will be doing a source control workshop and talk tomorrow. Covering a basic overview of how it works, and and why you should use it. We will then use git and git hub to show you how you can use it.

Versioning software is used to take snapshots of your code and collaborately integrate different snapshots that different people have worked on into one project. We highly recommend coming along if you’ll be doing programming at some stage and even if you’re not. We’ll be using git in future workshops/events so if you’re planning on coming to later workshops,

Update:
Video of the workshop

What sort of workshops / Talks would you like to see FIRST this semester?

https://docs.google.com/a/socs.dit.ie/spreadsheet/viewform?formkey=dGI2SUxsbWFDM1p4a29YVDFIVWlVbmc6MQ

Welcome back folks

We’re doing a launch party on Monday 13th at 6pm in KA-1-17. You’ll need a full copy of minecraft for this event which you can get here http://www.minecraft.net/store . Declan, a member of the committee, has written a lua wrapper script to extend the interaction between the server which we will be publishing to github soon. We hope to advance the scripting behind the server a lot more in the time to come.

If you keep an eye out, you may just see some creepers walking around DIT today. Here’s some pictures of a few creations from our server so far.

Update:

Thanks to all who showed up, had some great craic and I even hear some the creeper came to life at some stage in the snackery and scared the living crap out of some people. To whoever it was, would be interested in hearing how many people you got to scare

Project Night

We’ll be hosting a project night on Thursday from 6-8 in KA-1-16. This Thursday the 16th Feburary, we’ll be giving the” webtimetables plus” project a crack. See http://www.netsoc.dit.ie/2012/01/webtimetables-plus-project-proposal/ for more details. This will be a group orientated meetups rather than the usual lecture/workshop style so expect more of an even contribution level from everyone rather than one of us standing up and teaching everyone.

We are currently working on our servers, so there will be some unexpected network issues over the next half hour or so. Sorry for any inconveniences.