VirtualBox 2.1 Now Available

January 27, 2009 at 12:46 pm (Hacking)

All platforms: Free and open source virtualization software VirtualBox gets a “major upgrade” to version 2.1 which is now available for download.

Besides a gaggle of fixes, the changelog details new features:

  • Support for hardware virtualization (VT-x and AMD-V) on Mac OS X hosts
  • Support for 64-bit guests on 32-bit host operating systems (experimental; see user manual, chapter 1.6, 64-bit guests, page 16)
  • Added support for Intel Nehalem virtualization enhancements (EPT and VPID; see user manual, chapter 1.2, Software vs. hardware virtualization (VT-x and AMD-V), page 10))
  • Experimental 3D acceleration via OpenGL (see user manual, chapter 4.8, Hardware 3D acceleration (OpenGL), page 66)
  • Experimental LsiLogic and BusLogic SCSI controllers (see user manual, chapter 5.1, Hard disk controllers: IDE, SATA (AHCI), SCSI, page 70)
  • Full VMDK/VHD support including snapshots (see user manual, chapter 5.2, Disk image files (VDI, VMDK, VHD), page 72)
  • New NAT engine with significantly better performance, reliability and ICMP echo (ping) support (bugs #1046, #2438, #2223, #1247)
  • New Host Interface Networking implementations for Windows and Linux hosts with easier setup (replaces TUN/TAP on Linux and manual bridging on Windows)

We’ve already shown you how to run Windows apps seamlessly inside Linux with VirtualBox; what OS combinations are you using it with? VirtualBox is a free download for Windows, Mac OS X, and Linux.

Please choose the appropriate package for your Linux distribution:

Permalink Leave a Comment

Run Windows Apps Seamlessly Inside Linux

January 27, 2009 at 12:42 pm (Hacking)

Run Windows Apps Seamlessly Inside Linux

You love working inside your Linux desktop, but at the most inconvenient times you’ve got to reboot into Windows—whether to open a tricky Office file, try out a Windows application, or even just play a quick game. However, with some free tools and a Windows installation disk, you can have Windows apps running right on your Linux desktop and sharing the same desktop files. It’s relatively painless, it takes only a little bit longer than a Windows XP install, and it works just like virtualizing Windows on a Mac with Parallels Coherence—except it’s free. Here’s how to set up Windows inside VirtualBox, and then get Windows apps running seamlessly inside your desktop.

Before getting started, make sure you have enough space on a hard drive for a Windows XP installation (meaning at least 5 GB) and enough memory to make two systems worthwhile.You can follow most of these steps if you want to try running Vista inside Linux, but your mileage might vary, of course (and check out this tip on making Vista’s networking work).

If you’re curious what the end result might look like, here’s a screenshot from my quick installation. I would’ve loved to have gotten iTunes running, but I didn’t have time to wait for all the post-XP-installation patches/upgrades to install to show you.

Permalink Leave a Comment

Screensaver Hack

December 9, 2008 at 5:11 pm (Hacking)

Show screensaver tab in displasy property using gpedit.msc and registry…

GPEDIT.MSC

* Click Start and then Run.
* Type gpedit.msc in the Run dialog box.
* Press ENTER on your keyboard. In the Group Policy Editor navigate to:

User Configuration > Administrative Templates >
Control Panel > Display

Double-click Hide Screen Saver tab.
* Select Not Configured.

REGEDIT.EXE

* Click Start and then Run.
* Type regedit.exe in the Run dialog box.
* Press ENTER on your keyboard.
* Navigate to:

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System

* Right-click NoDispScrSavPage to select Modify.
* Change the value to 0.
* Navigate to:

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System

* Right-click NoDispScrSavPage to select Modify.
* Change the value to 0.
* Quit the Registry Editor (Regedit.exe).

Permalink Leave a Comment

How to Think Like a Hacker

November 28, 2007 at 8:12 am (Hacking)

A hacker’s main objective is to compromise the targeted computer, network, or application. The hacker starts off with little information and ends up with a detailed map into the system. There are five steps which hackers follow to hack into a system:
uplink-hacker.jpg

Reconnaissance
The target of this investigation stage is to gather info about domain names, IP address ranges, business partners, phone numbers, type of software and operating systems in use and existing network defence mechanisms.

First, hackers must identify the domain names of the target such as xxxx.com. Then they gather as much information as possible through public channels. One good source is through newsgroups. Information Technology (IT) staff often divulge too much information about their configurations and applications when approached for assistance. Job announcements also provide vital information about the company’s computer systems, operating systems and applications. If the job advertises for an information-security position, the type of network defense of the target can easily be identified.

The hacker can then visit the Internet Archive’Web site (archive.org) to check for information about the target that may go back for years. The Securities and Exchange Commision’s website (www.sec.gov) can reveal information about impending company merges – this means that the IT defenses for both companies will be significantly lowered to merge resources and ensure a smooth transition. When the enemy’s defences are down, it’s time to attack.

Hackers can also use social engineering to gather facts. The human element is oftentimes the weakest link in the system. For example, if you have the trust of an employee who is authorised to access the network, you can pretend to have an urgent problem that appeals to the natural helpfulness of the person.

Scanning and Enumeration
Next, hackers will scan servers and resources on the target network using the software from any “Warez” websites for free. Once a hacker gets detailed info about the target operating systems or application via scanning, it only takes a little talent and substantial patience to identify weaknesses in the system. A visit to any hacking tool website will give the beginner hacker a push in the right direction. Sometimes a computer system will even offer information about password length or bypass the need for a password if the hacker asks the computer a suitably formatted question. Once past the firewall, internal security is usually slack.

Gaining Access
After scanning for the relevant information, the hacker now has free access to the system or network. They will have a free run of the place with complete administrative access and can change any information or play havoc to the system. A tip: an easy way to do this is a call to the company help desk and impersonate the manager to get a password reset if an email sent to the manager earlier triggers an automatic ‘I’m on leave’ message.

Perfect
If the hacker still has difficulty getting administrative access into the system, a Trojan disguised as a service pack or system update can be sent to company staff. This can be sent from the System Administrator’s email account (obtained from a newsgroup message in the reconnaissance phase) –The Trojan appears harmless but will install a key-logger program in the background when run by employees. When the employees key in their user-IDs and passwords throughout the day, the program will automatically forward these to the hacker.

Maintaining Access
Once the hacker has access to critical computer systems, the password file or the Security Account Manager (SAM) is easily obtainable. This contains the user-IDs and passwords for all the system users. From here, they can hack into other systems. Hackers also install backdoor programs on all compromised systems so that they will continue to have access even when the passwords are changed. Furthermore, this will be totally overlooked by even experienced IT staff as normal network traffic. The perfect crime!

-got from here

Permalink Leave a Comment