OpenSSL and Certificate Verification

There is a nice SANS ISC blog entry on how to handle OpenSSL to manually verify SSL certificates:

http://isc.sans.org/diary.html?storyid=8686 

[...]

Basic Honeypot Setup

Here’s a walkthrough of setting up a honepot: http://blog.infosanity.co.uk/2010/04/17/basic-honeyd-configuration/ [...]

Complaints …

This is really fun stuff: http://ha.ckers.org/blog/20100416/just-another-day-at-hackersorg/ [...]

How to create a WinPE USB environment

Here’s a nice walkthrough on creating a WinPE environment with the focus on forensic usage: http://praetorianprefect.com/archives/2010/04/winpe-3-0-forensics/ [...]

The Truth behind Random Numbers …

by xkcd: http://xkcd.com/221/ [...]

Password Dictionaries

Here’s a list of sites providing password dictionaries or wordlists for penetration testers:

  • http://www.skullsecurity.org/wiki/index.php/Passwords
  • http://www.renderlab.net/projects/WPA-tables/
  • http://wordlist.sourceforge.net/
  • http://www.phenoelit-us.org/dpl/dpl.html
  • http://trac.kismac-ng.org/wiki/wordlists
  • http://forums.remote-exploit.org/pentesting/7199-xploitz-thread-share-wordlist-2.html#post32039

List of sites offering rainbow tables:

[...]