BackTrack Site Compromised
(Mostly taken from http://www.exploit-db.com/owned-and-exposed/ )
There’s nothing like having your butt kicked Christmas morning, which is exactly what happened to us today. We were owned and exposed, in true fashion. The zine also mentioned other sites, as well as the ettercap project being backdoored.
We are currently cleaning out our systems and analyzing the attacks – thankfully, the compromise was limited to non root access, and other than our egos, the damage is not severe. The compromise was limited to non root access to the web, blog and forums. Although there is no evidence as of yet that forum user passwords were compromised, we urge our users to change passwords at their earliest convenience. None of our development machines have been affected by this attack. We will keep you updated as we have more information through the exploit-database blog.
The Art of Human Hacking
With the framework came the addition of some great tools to BackTrack, such as SET (The Social Engineers Toolkit), created by Dave “Rel1k” Kennedy.
Today, the BackTrack team would like to congratulate Chris “loganWHD” for the release of his book, “Social Engineering: The Art of Human Hacking”.
This book has been widely anticipated and will help many new to the field of social engineering answer that (Read more…)
BackTrack 4 R2 Download!
We could go on for pages on saying how great the new version is, but we’ll cut to the chase, and give you the run down:
- Kernel 2.6.35.8 – *Much* improved mac80211 stack.
- USB 3.0 support.
- New wireless cards supported.
- All wireless Injection patches applied, maximum support for wireless attacks.
- Even *faster* desktop environment.
- Revamped Fluxbox environment for the KDE challenged.
- Metasploit rebuilt from scratch, MySQL db_drivers working out of the box.
- Updated old packages, added new ones, and removed obsolete ones.
- New BackTrack Wiki with better documentation and support.
- Our most professional, tested and streamlined release ever.
For those wanting to upgrade an older release of BT4, an apt-get update && apt-get dist-upgrade should do the job.
We are also pleased to announce the beginning of a new BackTrack Wiki which covers many important features of BackTrack. Get your brand new copy of BackTrack 4 R2 from our download page. If you enjoy BackTrack and would like to donate to our project – please check our community page! And as usual, if you are looking for high quality real world penetration testing training, check out our Offensive-Security courses.
BackTrack4 R2 Imminent Release and 2nd German BackTrack Day
It’s been a while since our last blog post, so we thought we’d give a quick status update with our progress. We are a week behind schedule with the release of BT4 R2, which is undergoing heavy testing at this moment. We will of course announce the download once it is available.
Another interesting event taking place is the 2nd German BackTrack Day (0x7da). The event will take place in Fulda on the 6-7.11.2010. The whole event is organized by the German BackTrack Team and will include great talks, workshops and CTFs. Tickets are pretty much sold out, except for 5 VIP tickets reserved for speakers.
BackTrack 4 R1 – Public Release
The BackTrack Team is proud to announce the public release of BackTrack 4 R1. At the risk of sounding like a broken record, we believe this version is by far the best version released to date. With a shiny new 2.6.34 kernel, there are many significant improvements, such as expanded hardware support, and improved desktop responsiveness. Check out some screenshots.
Tools have been updated systemwide, and a full Fluxbox desktop environment has been added. A walk-around for the rt28xx driver has been implemented (for all you AWUS050NH owners).
The VMWare version has complete integration with VMWare Tools, which provides a seamless interaction with BackTrack in a virtual environment.
We wish you all a great time with this fine release – Feel free to download it – burn it and make out with it. We await to hear feedback in our forums and Twitter. Lastly, if you are looking for high quality, hands on penetration testing training – check out our Offensive Security Training page.
http://www.backtrack-linux.org/blog/
Tiada ulasan:
Catat Ulasan