illmob.org

Faceniff – Session Jacker for Android

June 2nd, 2011 by admin in Browsers, Life, Mobile

FaceNiff is an Android app that allows you to sniff and intercept web session profiles over the WiFi that your mobile is connected to.
It is possible to hijack sessions only when WiFi is not using EAP, but it should work over any private networks (Open/WEP/WPA-PSK/WPA2-PSK)
It’s kind of like Firesheep for android. Your phone must be rooted to use this program.
Originally it started off for just Facebook but the author has added support for these other sites: FaceBook,Twitter,Youtube,Amazon,Nasza-Klasa

The Password is Swordfish

September 16th, 2010 by admin in Life

Password ReUse

September 16th, 2010 by admin in Life

Crack Me If You Can – DEFCON 2010

June 18th, 2010 by admin in cracking, Life

At Defcon 2010 on Thursday, at a specified time, KoreLogic will release a file containing 53,000 password hashes. The file will contain passwords of varying types (such as SHA, SSHA, MD5, DES, Lanman, NTLM, etc.) and will range from being “easy” to extremely difficult to crack. The password file is not simply 53,000 randomly generated passwords which would favor the person or group with the most GPU/CPU bruteforcing horsepower. Instead, the password file contains passwords based on what we believe are challenging patterns. Passwords will be of varying lengths, patterns, and complexity. Creative password cracking techniques, rules, dictionaries, and tools will be needed. The teams who are smart about the methods they use (i.e., teams who can crack more, with less work) will most likely be the most successful.

KoreLogic will be giving away the following prizes for first, second, and third place:

  • First Place: $600 (or equivalent item)
  • Second Place: $300 (or equivalent item)
  • Third Place: $100 (or equivalent item)

More Info: http://www.korelogic.com/defcon_2010-contest.html

Kon Boot Kontest

May 31st, 2010 by admin in Life, News

Well we finally had enough time away from the lab to get around to the Kontest for the free Kon Boot license. The contest will be to write an article for our site on a password tool of your choice, it has to be a tool we haven’t covered already (but not an obscure tool that is only useful to a handful of people and no Nirsoft tools :p ). It can be a recovery tool, cracker, exploit etc… it doesnt have to be a long article, just as long as your covering the basics of how to use the tool and maybe some examples. The contest will end next Monday so get those articles in to . 10 lucky winners will receive the licenses shortly afterwards

1.5 Million Facebook Accounts Up For Sale

April 23rd, 2010 by admin in Life, News

A hacker named Kirllos seems to have sold close to 700,000 accounts, and has a rare deal for anyone who wants to spam, steal or scam on Facebook: an unprecedented number of user accounts offered at rock-bottom prices. Kirllos’ Facebook prices are extremely cheap compared to what others are charging. In its most recent Internet Security Threat Report, Symantec found that e-mail usernames and passwords typically went for between $1 to $20 per account — Kirllos wants as little as $0.025 per Facebook account.

Visual of the “Top 500 Worst Passwords”

March 27th, 2010 by Dev Team in Life

Our Post Made pretty by Kate Bingaman Burt.

Droid and Iphone lock-screen gesture passwords bypass

February 18th, 2010 by Dev Team in Apple, Life, Privilege Escalation

You know the lock-screen gesture protection used on Iphone/Android smartphones to prevent people from picking up your phone and having immediate access to all your personal information? Right, well, I hope you’re not relying on your phone’s swipe gesture protection to keep all your dirtiest secrets from falling into the wrong hands.
The next image is a good example of how easy it is to circumvent the Nexus One’s lock-screen gesture password.
(more…)

Try cracking these

January 23rd, 2010 by Dev Team in Life

Not Secure

December 15th, 2009 by Dev Team in Life

« Previous ArticleNext Article »