Sqlmap and NTLM

Posted on October 5, 2011 by RuFI0

So i ran into this little problem earlier today trying to get sqlmap to work with NTLM authentication. Don’t get me wrong, sqlmap does support NTLM via python-ntlm. However, python-ntlm broke for me so i figured out another way of doing this using burp proxy.

Its really easy and straight forward. In Burp, look for the checkbox labelled “do www authentication”, and enable it. Then add the NTLM credentials and that’s pretty much it on burp’s side.

Execute sqlmap as how you’d usually would but also add the proxy parameter “–proxy=http://localhost:8080″. You can verify if it works in burp’s history tab.

Posted in Uncategorized | Leave a comment

RM2000 and more to be won at WarGames.MY 2011

Posted on June 20, 2011 by RuFI0

Hey boys and girls!

Previously we had mention of a mystery prize, remember? Well, as promised we’re unveiling what it is today! NAO!!!

On top of other cool things to win, our friends at System Defenders have jumped into the WarGames bandwagon and are sponsoring a cash prize of RM2000 for this year’s winner. How freaking cool is that?!

System Defenders

With less than 2 weeks to go, sign up now and join in on the fun!

Also, come and hang out with us on the IRC channel. We’re at irc.smurfnet.ch / 6667 #wargamesmy

Posted in Events, News, Wargames.MY | Tagged , , , , , , , , , , , , , , , , , , , | Leave a comment

WarGames.my 2011 bonus challenges

Posted on June 19, 2011 by RuFI0

Hey boys and girls!

Only 2 more weeks to go before WarGames 2011 starts! So far, we have 20+ teams registered and hopefully more teams will jump on the band wagon.

As we had mentioned on the WarGames website, there will be bonus challenges for you to solve and win HITB KL 2011 Training passes (thanks HITB!). The good news is, we’ll be releasing them early before the actual competition (this is the part where you say “hooray!”). The bonus challenges will be released on the 27th of June 2011.

One more thing, come and hang out with us on IRC for the latest news and updates!

Server: irc.smurfnet.ch / 6667
Chan: #wargamesmy

Posted in Events, News, Wargames.MY | Tagged , , , , , , , | Leave a comment

Seeeduino starter kit up for grabs + mystery prize!

Posted on June 5, 2011 by RuFI0

News update!!

The folks at HackerspaceKL (you guys are rock!) were kind enough to sponsor a Seeeduino starter kit in addition to the other prizes for this years WarGames Challenge.

We will also be announcing another mystery prize soon and trust me, you guys would LOVE it!

Stay tuned!

Posted in Events, News, Wargames.MY | Tagged , , , , , , | Leave a comment

Malaysia’s first online Capture The Flag competition

Posted on May 26, 2011 by RuFI0

What a busy year it has been for the crew so far.

We’ve been working hard, side-by-side with the folks from HackerspaceKL and the new HITB CTF Crew 3.0 over the past few months and we are proud to bring you Wargames.MY!

Wargames.MY is Malaysia’s first ever online CTF, by Malaysians, for Malaysians. It’s basically a 24 hour hack game featuring 18 challenges scattered across 6 categories. We do know that there are CTFs and other security games in Malaysia but they all require the team/person to be physically there. So we figured what the heck, let’s do an online CTF.

We’re planning to make this a yearly event and hopefully it’ll grow bigger and bigger as years progress. Since this is the first year, we’re only opening it for Malaysians.

We’d also like to thank Hack In The Box, our main prize sponsor and another sponsor who wishes to remain anonymous, for supporting this event.

So, regardless if you’re a student or a professional pentester, as long as you hold a Malaysian passport and you are physically in Malaysia, come on and join in on the fun. It’s free and you’ve got nothing to lose.

We’ll also be hanging around IRC for those who wish to make contact with us. The details of the competition can be found on the Wargames.my website, http://wargames.my.

Posted in Events, News, Wargames.MY | Leave a comment

HITB WMD CTF 2009 Windows Challenge Binaries

Posted on February 10, 2011 by klks

HITB’s CTF Overlord 2.0 was kind enough to let me post the windows challenge binaries on the interweb for people to try out. So for all of you who wants to know how “easy” the challenges were this year, head on over to the link below and try your hands on the 5 windows binaries.

Here’s a hint, although there are 5 binaries, there are in actual fact 6 solutions inside. Do whatever it takes to get a solution, anything goes!!!

Solutions will NOT be posted and there will be no further discussion from my part on the solutions of the binaries :)

Download the binaries from:-
http://conference.hitb.org/hitbsecconf2009kl/materials/ctf/HITB_WMD_CTF_2009_Windows_Challenge_Binaries.rar

Posted in CTF Weapons of Mass Destruction, News, Reverse Engineering | Tagged , , , | Leave a comment

Unpacking: Conficker/Downadup

Posted on February 10, 2011 by klks

While reading woodmann’s forums, i came across a post which requested help with the malware. The thread can be tracked at http://www.woodmann.net/forum/showthread.php?t=12297.

So with reading whatever was posted, i decided to try and unpack it myself. Continue reading

Posted in Reverse Engineering | Tagged , , | Leave a comment

Unpacking : kkrunchy v0.23

Posted on February 10, 2011 by klks

This week I’ll be teaching ya guys how to unpack kkrunchy, but before that a short intro on the packer.

kkrunchy is an executable packer meant for 64k intros and is available for download at http://www.farbrausch.de/~fg/kkrunchy/. Told ya it was short :P Continue reading

Posted in Reverse Engineering | Tagged , | Leave a comment

Malware Unpacking – 525dadddb3ddc0096c240a50db059631

Posted on February 10, 2011 by klks

I’m back once again with another strain of malware from OffensiveComputing. This time round i’ll be showing another easy malware to unpack. No import rebuilding required, just a debugger and a PE Editor. Continue reading

Posted in Reverse Engineering | Tagged , , | Leave a comment

Serial Fishing ReWrit’s Crackme #7

Posted on February 10, 2011 by klks

Seeing that this week has been a packed week for me, i didn’t have time to unpack much malwares. So in turn i’ll show you how to serial fish from a crackme :)

So lets begin, you can pickup the crackme from http://crackmes.de/users/rewrit/rewrits_crackme_7/. You will only need a debugger and a disassembler for this exercise. I will be using ollydbg and IDA pro. Continue reading

Posted in Reverse Engineering | Tagged | 1 Comment