blog darkness...

words, music, food

Entries for category "pentest"

Automotive Hacking Links and CAN bus information

Will be adding to this as I find more. General Info: http://blog.ioactive.com/2013/08/car-hacking-content.html http://www.dhanjani.com/docs/Tesla%20Model%20S%20P85%2B%20Security%20Evaluation.pdf https://docs.google.com/spreadsheet/ccc?key=0AiHL0r_2nhUEdF9lVVBxOVNoN3Zva3E0NmdZTUR1eVE&hl=en#gid=5 http://resources.infosecinstitute.com/car-hacking-safety-without-security/ CAN bus information: http://www.eeherald.com/section/design-guide/esmod9.html http://www.weika.eu/papers/WolfEtAl_SecureBus.pdf Attempts to secure the CAN bus: https://www.cosic.esat.kuleuven.be/publications/article-2086.pdf http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=6542519
Continue reading »

problems installing fern wifi cracker: failed to build gem

Building native extensions.  This could take a while... ERROR:  Error installing typhoeus:     ERROR: Failed to build gem native extension.         /usr/bin/ruby1.9.1 extconf.rb /usr/lib/ruby/1.9.1/rubygems/custom_require.rb:36:in `require': cannot load such file -- mkmf (LoadError)     from /usr/lib/ruby/1.9.1/rubygems/custom_require.rb:36:in `require'     from extconf.rb:4:in `<main>' Simple fix:  sudo apt-get install ruby1.9.1-dev Probably someone...
Continue reading »

Detecting webdav methods on a URL

A couple of methods I've tried: Propfind http request (you can easily send a request like this using the HttpRequester extension for firefox): PROPFIND / HTTP/1.1 Host: [insert host here] Content-Type: application/xml Content-Length: 298 <?xml version="1.0" encoding="utf-8"?> <propfind xmlns="DAV:"> <prop> <getcontentlength xmlns="DAV:"/> <getlastmodified xmlns="DAV:"/> <executable xmlns="http://apache.org/dav/props/"/> <resourcetype xmlns="DAV:"/> <checked-in xmlns="DAV:"/>...
Continue reading »