Posted on

metasploit and network exploration

it began as just looking into the toolsets used by the now-infamous BackTrack – a slax based live cd used for wireless network penetration testing – but knowing it was slackware based was all i needed to know that toolkits exist to add this functionality to my laptop. and the digging began….i’m only going to post findings and tools incrementally as i gain enough knowledge of them to answer at least the basic install and use questions.

and so i was brought to metasploit; an exploitation framework (probably for beginners like myself) used for penetration testing of workstations, servers, and network protocols. i found the installtion to be pretty straightforward, despite the fact that where i was looking the documentation was lacking (they probably assume that given a set of requirements the user figures out how to get there themselves).

for my vanilla slack-current, i was required to add in rubygems and then install rails:

#gem install -v=1.2.2 rails

at this point i unpacked the framework and launched the web-console (yes…pitiful to use the gui, but it was what i chose to do). i suggest getting to this point and seeing where the web interface takes you ;-)

Posted on

speaker wiring

hooking up a new speakers for the PA system in an ellsworth department store. it’s fun. up and down ladders all day and playing with insulation. yay! there is a drop ceiling and i removed this one tile and holy shit so much DIRT came out of this ceiling 12 feet off the ground i almost shit myself in shock – which would have been impressive to do on the ladder….

it’s lunch time now and i’m more thna halfway done (but i do realize that i took my lunch more than halfway thorugh the day so it’s kinda skewed data).

Posted on

javascript form validation library

when it comes to form validation i get frustrated too quickly to sit there and reinvent the wheel every time. my solution has been made more simple than i would have asked: TMT Validation Library from www.massimocorner.com

so easy to install.

link to libs

add call into form

define types of validation on inputs.

i would reccomend this to a friend

Posted on

zoneminder on slack12.2 with ffmpeg and openjpeg

install slack

get sources for zm (i’m using 1.24.1)

checkout ffmpeg from svn (they might have formal releases after this google summer of code project)

#svn checkout svn://svn.ffmpeg.org/ffmpeg/trunk ffmpeg

get the libopenjpeg (oen jpeg 2000 libraries)

#tar zxvf /open/jpeg.tar.gz

#cd /newly/made/folder

#make

#make install

#make clean

now configure ffmpeg from that dir. i used this:

#./configure –enable-gpl –enable-shared –enable-nonfree –enable-avfilter –enable-libopenjpeg –enable-postproc

#make

#make install

( at this point running #ffmpeg should output sensible info without errors…an #ldconfig may be required)

now for zoneminder. from that source directory

#./configure –with-ffmpeg=/usr/local/ –with-webdir=/var/www/htdocs/ –with-mysql=/usr/ –with-libarch=lib –with-cgidir=/var/www/cgi-bin/ –with-webuser=apache –with-webgroup=apache –enable-debug=no –disable-crashtrace –disable-mmap

if your set up like me this is where you’ll find all of your missing perl modules. run the configure and it will through errors. use cpan to install them until configure stops erroring out. i always start by installing the most current cpan. in general i allow perl to autoresolve dependancies…mostly because it is such a headache to manually track them down

#cpan CPAN

#cpan YAML

#cpan Date::Manip

#cpan LWP::UserAgent

#cpan PHP::Serialization

at this point the configure statement told me i was good to go

#make

#make check

#make install

#make clean

Posted on

avs and cvn

doesn’t make much sense to me that my credit card company fails both the avs and the cvv2 security checks and still authorizes the transaction….. capital one is the card company and the payment processor is virtual merchant. was building a portal and did some heavy testing here. apparently my virtual merchant doesn’t fail any cards based on avs, what good is it to have known after the fact that the address someone put in didn’t match the credit card company’s address on file. similar with cvn…a fail here should be a direct fail, not a soft one that still charges me. i guess they’d rather the charges be incurred and then disputed. great policy.

Posted on

soul position – share this

this song is being looped a lot by me lately. true talent.

Study this as you study your first born
My first song was pain personified in song
The longest sequence is looped for days long
Where bass kicks are fierce and snares are
Known to drop a lot quicker than a child’s tears
And drown out the drama that I didn’t want to share
The load I wouldn’t wish upon my enemies to bear
The times I used to tell myself you didn’t want to hear
Until the reason in my rhyme become clear
Now what I write makes the load a lot lighter
The story of my life epitomizes imperfection
As a musical where every scene seems to lack direction
And I stand center stage stunned by what’s happening
Blinded by the lights, cameras, action
Although I never asked for this lead role
It seems that God decided it a long time ago
I was chosen for this
Given the gift to gain and maintain the crowd’s cheers
I break bread over beats with like-minded peers
And share the story of my last trip into the atmosphere
On the ninth cloud, I indian style
Arms outstretched and Hell in God’s breath
I saw the stairway to heaven
And counted one-hundred and forty-four thousand steps
I wanted to climb but it wasn’t my turn yet
So I returned to earth just before the sun set
And I could stare, waiting for this golden opportunity to share

Now I share this with you
I’ll share this with you
With all of you
I’ll share this with you
I’ll share this with
Each and every
One of you

Now in my younger days that quickly passed
I fell asleep in history class
Not enchanted my past misery
I’d rather chase down the present with a glass of heinousy
And tilted my flower-like childhood wilted when my innocence was secluded
Plus the water we gave to it stayed polluted like the veins of cocaine users
My blood stream’s still a little murky from flash-backs of murder scenes
Medical emergencies that fell upon deaf ears
Over 8 million stories in a city that nobody wants to hear
But as bad as it appears, I am happy that I’m here

To share this with you
To share this with you
To share this with
All of you
To share this with you
Share this with you
Share this with
Each and every one of you

Heh, and share I will
I’ll share the nights where fist fights left somebody’s body lying still
The ice grills, the cold of wire(?) night’s chill
I’ll even share the blood spill
The memory of all my loved ones killed
The unpaid bills
The pain of a terminally ill
My ill will towards my rivals
My approach towards hip-hop survival
The circumstance that made some suicidal
The same circumstance that made others homicidal
The signs of the vital
The ways of the trial
The dope fiends that walk around my block in denial
The short life cycles
The minds that lie idle
My people that got out of court on a missed trial
My hunger to become more grounded in the Bible
Is smiled on behalf of my last day’s arrival