Aug. 22, 2008
I have had some better luck with airbase-ng the last few days, most likely due to a combination of factors.
For starters I (once more) ripped apart my USB adapter and de-soldered my external antenna cable and found a better spot for it. The new re-fitted antenna works a lot better now and actually picks up quite a few new networks (and clients of course).
Another change I made was to switch the wireless drivers to the ones available from the git kernel sources which for the moment seem to work better than the previous ones.
I still believe in the airbase-ng concept of a user-mode AP which works with many different chipsets and not that dependent of driver patches. However, in order to switch away from the madwifi-patches it has to work atleast as good as they do and with a USB wifi-interface.
Once I get things running I’ll post my setup here. If someone already has done so, please drop me a line with your setup including hardware 
Posted by patrik in Security | No Comments
Aug. 20, 2008
I recently purchased a new Asus eee 900 as I dropped my previous lovely pink 700 in the floor breaking the screen 
Due to its small size I thought it could be suitable for carrying around while performing wireless assesments. This led me to setting it up as both a scanning/monitoring device using the built-in wireless interface and a fake access point. Kismet basically ran out of the box while the fake access point took some more work.
As a friend told me about the airbase-ng project I though I would give it a shot…
Posted by patrik in Security | 2 Comments
May. 28, 2008
So, we had yet another OWASP – meeting here in Stockholm, Sweden yesterday. I must say I was pleased to see that so many people took the time to attend and listen to us three speakers.
I held yet another speech on SQL injection and yet again overestimated my ability to deliver slides at a pace of 0.78 minutes per slide. Skipping through a few of them gave me just the little time I needed to finish up with a short demo
After a few requests for the presentation I decided to put it online together with the small DNS server and samle code I used to demonstrate the DNS-channeling parts.
The DNS server has a brief help describing each parameter. Basically in order to try it out, it needs to be run on either:
- An authorative DNS in the zone against which we are tunneling our queries. Please note that in the event of a zone having multiple DNS servers assigned to it, all queries will NOT end up at the same resolver.
- On the host assigned as the DNS server on the victim DB server
When starting the dns_server.pl script a zone for which it answer queries needs to be specified. This is done with the “-q” option. In my cheat sheet I am using the zone inj.cqure.net and therefore need to start the DNS server like this: ./dns_server.pl -q inj.cqure.net
A zip-file containing the PDF presentation, a subset of the cheat sheet I used and my small DNS server is available for download from here.
Feel free to drop me a line if you have any questions.
Posted by patrik in Security | No Comments
Apr. 29, 2008
…. since a while a go. I know some of the people I meet have not heard of it so I am helping to spread the word.
“The Open Web Application Security Project (OWASP) is a worldwide free and open community focused on improving the security of application software. Our mission is to make application security “visible,” so that people and organizations can make informed decisions about application security risks.”
Posted by patrik in Security | No Comments
Apr. 29, 2008
Ok. So there is not much happening at www.cqure.net for the moment as I have been really swamped with work lately. Not that I don’t do anything interesting worth publishing. It’s rather so that I have been working on other stuff, which does not always see fit publishing on that site. Lately theres been quite a few things…. I have decided that they now belong in here.