There are so many “ineffective” working abuse departments that I wonder,
if it makes sense to start a public database about them..
So one could figure out if it is worthwile to submit a complaint to them –
If the abuse-mailbox is “over quota” all the time or the admins are just ignorant
then the complaint-writer could spend his time better..
comments?
Archive for the ‘Allgemein’ Category
public abuse-department database?
Sunday, October 9th, 2011spamversand moved
Wednesday, September 28th, 2011Finally I managed to move spamversand.de to a new server – now I even could update
the software! 🙂
Let’s see if we get some new posts here.
snort-drinking-game
Monday, February 7th, 2011Here are the rules for the
snort-drinking-game.
Play at your own risk..:)
Hackers take down website of bank that froze WikiLeaks funds
Wednesday, December 8th, 2010“Operation Payback” is a hacker (cracker) group, that is supporting wikileaks, rumors say.
Now it seems they have cracked a swiss bank webseite.
Read the article :http://www.rawstory.com/rs/2010/12/hackers-website-bank-froze-wikileaks-funds/
C&C – honeypot
Thursday, November 4th, 2010Now the criminals run honeypots too:
http://blog.tllod.com/2010/11/03/statistics-dont-lie-or-do-they/
Don’t trust the admin interface of a Malware Control Server..:-)
Beef
Saturday, May 8th, 2010On the last meeting of the AK Sicherheit (ECO Verband) we could see a live demo
of the tool Beef (Browser Exploitation Framework). Nice to see that XSS-attacks
(cross-site-scripting) is not only a nice POP-UP window, but is indeed a real attack
vector for anyone.
Try yourself, the software can be downloaded from www.bindshell.net
own rbl started
Saturday, May 8th, 2010I finally managed to create my own RBL (realtime blocklist) feeded by my honeypot.
All verified IPs which successfully attacked the honeypot are put into a database, which
provides a rbl for our MXes. The IPs are held for 24 hours except those which have more than 50
successful attacks within the last day. I was wondering if there were any mail-hits to be seen
at all; at least these are totally different attack vectors. But strangely enough I could see
blocked emails because of the entries made by the honeypot. We will see how well this
performs.
Judges drop ipaddress-collection
Tuesday, March 2nd, 2010Today the Bundesverfassungsgericht judged about the 6 months collection
of ip addresses and email-data. Result: The current laws are not satisfying the german
Grundgesetz (constitution). All saved data are to be deleted.
On the other hand are these kinds of collection not impossible at all, as long as the
laws are made right. We will see if we can use our boxes for binary-news storage
instead 🙂
Fun with your neighbour
Wednesday, February 3rd, 2010Do you believe your neighbour is using your WLAN without your permission?
Here is a funny solution what to do with him:
(found in “Full Disclosure”)
new honeypot ips
Friday, December 18th, 2009I’ve added quite a lot of target ips to the honeypot. The number of successfully analyzed attacks per hour
raised to more than 750. Each attack generates an automatic complaint or results in blocking our own customer.
Must have a look if the honeypot and the following systems are powerful enough..