Brainfoldb4u's Blog

Just another WordPress.com weblog

Archive for the ‘Open Source’ Category

10 Youtube URL Tricks You Should Know About

Posted by brainfoldb4u on January 10, 2010

10 Youtube URL Tricks You Should Know About

Posted using ShareThis

Posted in Cool Techniques, Information Security, Open Source | 1 Comment »

Open source linux IDS/IPS from OISF

Posted by brainfoldb4u on January 2, 2010

The Open Information Security Foundation (OISF) is a non-profit foundation organized to build a next generation IDS/IPS engine. The OISF has formed a multi-national group of the leading software developers in the security industry.  In addition to developers and a consortium consisting of leading cyber security companies, OISF after three years have  first released their Suricata Engine! The engine is an Open Source Next Generation Intrusion Detection and Prevention Tool, not intended to just replace or emulate the existing tools in the industry, but to bring new ideas and technologies to the field.

Multi-Threading

Amazing that multi-threading is new to IDS!

Automatic Protocol Detection

The engine not only has keywords for IP, TCP, UDP and ICMP, but also has HTTP, TLS, FTP and SMB! A user can now write a rule to detect a match within an HTTP stream for example regardless of the port the stream occurs on. This is going to revolutionize malware detection and control. Detections for more layer 7 protocols are on the way.

Gzip Decompression

The HTP Parser will decode Gzip compressed streams, allowing much more detailed matching within the engine.

Independent HTP Library

The HTP Parser will be of great use to many other applications such as proxies, filters, etc. The parser is available as a library also under GPLv2 for easy integration ito other tools.

For detailed overview and download click here

Posted in Auditing, Information Security, Open Source | Tagged: , , | Leave a Comment »

Open source: How e-voting can be done

Posted by brainfoldb4u on January 2, 2010

I found this article by By Paul Venezia from computer world discussing about how e-vote can be done.

Author discusses his views on  current e-voting systems and Open Vote Act  and how it should  enact laws that prohibit the use of any voting system  and how it does not provides a paper audit trail, and how to  mandate that companies use government-approved voting code without modification when building proprietary systems.

For detailed report on this topic from computer world click here

Posted in Open Source | Tagged: | Leave a Comment »

Open source fix for flash security holes

Posted by brainfoldb4u on January 2, 2010

Open source solution for Flash security holes:

To prevent the frequently recurring security issues in Adobe’s software from being exploited, Felix “FX” Lindner of Recurity Labs presented his open source “Blitzableiter” (lightning rod) project at the 26th Chaos Communication Congress (26C3). The tool analyses and cleans up Flash code before playback and is designed to prevent security holes in Adobe Flash from being exploited. Flash is one of the most commonly used points of entry for attackers who try to compromise PCs during visits to web pages. the Blitzableiter tool checks SWF files for their integrity. Embedded ActionScript code is detected, analysed and cleaned up. The wrapper can also verify whether embedded objects such as JPEG images comply with the specification.

To read the full article from H-Secure, click here

Previously, Adobe was warning of a new zero-day vulnerability in its popular Reader and Acrobat applications that is being actively targeted by attackers in the wild.

In an advisory released mid December,, Adobe acknowledged reports from several security vendors that a new malicious PDF file was discovered in some email attachments targeting the Adobe flaw. Adobe said the remote code execution vulnerability is in Reader and Acroobat 9.2 and earlier versions

To learn more about adobe zero day vulnerability, click here

Posted in Information Security, Open Source, Security tools | Tagged: , , | Leave a Comment »

Browser Security 2

Posted by brainfoldb4u on December 27, 2009

In my last review i have posted some basics in choosing the right web browser for use. But web security threats are more than just choosing the right browser, so in here we will see the next step in safe browsing. Current day threats are very dangerous, simple mistakes like as one visit to malware site or clicking a loaded shareware to install can affect your computer performance and usage.  Some of the consequences are like annoying pop-up screens with advertisements, your browsers home page will be changed, default search engine will be altered. Some time the intruders who hacked your computer will blackmail you for money or personal gain  or even worse of stealing your money from bank account could happen. Having  an antivirus installed is not enough with the amount of virus and spyware it is very hard for firewall vendors to keep in time. Ofcorse, there are few free firewall vendors like PC tool, Avast, Avira, Comodo internet security, Online Armour to provide free version of their internet security tools suites,  anti-spyware tool and firewalls  to ed. But it is necessary  to learn different approach to overcome these threats.

Sanboxing:

In computer security world, sandboing is a mechanism used to separate running programs. Using it for tasks like executing untested code, running untrusted programs from unverified third parties and untrusted users. Given that open source and distributed computing getting more popular, sandbox concept will be very useful mode of protection from unwanted hacking. Sand box typically provides tight control over the untrusted program even if anything goes wrong the impact will not affecting your computer or its resources.

To get a sand boxed environment we can use a free program called Sandboxie which is available for windows OS later than Win 2000. Downloading this piece of software creates a sandbox like environment on your PC. Startup is just like normal other browser other than the inconvenient nag screen that pops until the application opens.  Browsing inside Sandboxie gives you greatest protection by isolating the browser from portions like your OS, hard drive, memory locations, altering registries, OS sessions. So what ever browsing or downloading you do will be within the box and will not affect your PC. Upon downloading and saving a file, Sandboxing comes with an option asking whether to save it permanently or not. Better option will be to add your default downloads folder to the Quick recovery settings so all files saved there will automatically saved in your hard drive which avoids you manually copying the files into real hard drive.

Say for instance if you have downloaded a virus or Trojan by mistake, you close the browser and right-click to delete all its files and processes by doing so will get your PC back to normal state as it was before starting the session. Latest version comes with advanced option like in-depth defense, blocking access to your personal files, allowing us to choose what program to run and not. Some other advanced features also helps us protecting from Key-loggers. Overall it protects us from viruses, Trojan software, ad-ware, spyware and other malware that could infect your PC from web (internet).

Online Armour:

To Make browsing more safer there is another option available from a company called Online Armor and they give us free firewall protection as well us an option called “Run Safer“.  Run Saver works with privileges. All files, process and programs running in OS will have at-least two level of permission one with read only access and second as full access ( read, write, change). Users with admin login credentials will typically bound to have full access and users with normal login credentials will  have low-level access so that they cannot make any harm. Typical home users will use his admin log on for all day-to-day tasks he do in his/her machine as it convenient. But it is not safer to do so- if a dangerous program happen to get into your computer it will be also convenient for the virus/trojan/malware to crash or take control of your computer.

Online Armor’s run safer option helps protect against this by automatically “stepping down the rights” that your web browser or any other program you run has to a limited user. You may claim any one can do this but the tool does it with transparency. This way you can make your web browsing  more safer.

PC Tool Firewall +

PC tool Firewall plus a very useful personal firewall that provides Host based intrusion Prevention system (HIPS) through enhanced security mechanism. It relies on list of programs and attempts check for valid digital signatures and alerts the users if it identifies any possible malicious behavior. It gives us protection as its commercial equivalent does in regards with performance. Simple installation and very user friendly in its default settings and produce fewer popups for common tasks. Some key highlights are

  • Hides your PC from Internet hackers.
  • Fine-grained control over inbound and outbound traffic.
  • Easy to use. Designed for both novice and expert users.
  • No interruptions when playing full-screen games.
  • Optional password protection for rules and settings.
  • Best of all it’s FREE. No catches, limitations or time-limits.

Additional features include “full screen mode, mode to suppress all alerts, password protection, automatic updates. For detailed list of its more features click here . So over all its a free good firewall option for home users. Paid version gives enhanced features for 49 dollars which is relatively cheaper than its costly counterparts.

PC Tool’s Spyware Doctor:

PC tool’s Spyware doctor with antivirus which is again an awesome tool to keep you away from infections. This is more corrective measure while earlier discussed options were more preventive methods. I own McAfee paid version installed in my computer but when my computer slows with adware and spyware infections its spyware doctor who rescued my brainfold (my PC). It’s full scan almost detects and destroys all unwanted virus, Trojans, ad-wares and spyware in its best and quick possible way.  I will strongly recommend you to try installing the spyware doctor from PC tool, compare the scan with your paid protection and find the difference yourself.

Conclusion: In this post i discussed some intermediate level techniques in keeping home computer safer from exploits (attacks). Our first option is to have a sand box software installed and if you are not sure about what you are downloading try downloading it with sand box browser. Second option is also preventive option by turning safer run option ON (Online Armour) which avoid any harm to our computer by maintaining least privilege. PC tools firewall and spyware doctor are preventive and corrective measures respectively to combat from virus, Trojans, Ad-ware and Spyware infections. I hope this post is informative for home users .  Thank you again for your time if you need any further clarification or assistance in selecting any above mentioned methods please comment i will get back to you.

Posted in Browser Security, Hacking, Information Security, Open Source, Uncategorized | Tagged: , , | Leave a Comment »

Open Source

Posted by brainfoldb4u on December 25, 2009

Open source

Open source is a development method and the creative practice of appropriation and free sharing of information/invention.  This method enhances the power of distributed or autonomous behavior.  This way improves the transparency and promises better quality, flexibility, reliability, and availability. Good part is our standards body are maintaining this open source concepts for good of the community. This way makes any one can be a developer, reviewer or even a hacker (both in better and bitter way).

There are numerous open source projects like source-forge, open office, Linux, Ubuntu, ruby and many others available to us and wonder how many of us know about their existence and value they bring in comparison to their costly counterparts.  It became my interest to explore open source ad make reader aware of it.  Thus i am going to use this space in my page to talk about the source projects, their benefits and unique features they bring along …

Open source web

In general Open source software is whose source code is freely published and made available to any one and they can choose to edit, discover something new or even redistribute it without paying royalties.  Though said, it is not an easy task , it requires dedication ,involvement and community cooperation.  Few of those open source products are:

  • Linux:  Open source operating system based on Unix
  • Apache:  HTTP web server
  • MySQL: Most popular open source database.
  • Tomcat: provides pure java HTTP web server environment for Java code to run.
  • Eclipse: Open source software framework for rich client applications.
  • Mozilla Firefox: Worthy IE competent with rich plugins and customizable browser.
  • Ruby on Rail: Full stacked, web application framework optimized for building and publishing application for free.
  • Open Office.org:  Very useful MS office counterpart with built-in word, spreadsheet, power point and many..
  • MediaWiki: Knowledge base and the software that runs Wikipedia
  • Drupal/Joomla: Open source content management systems
  • Coffee Cup: Very useful HTML/CSS editor and website content developer.
  • PHP/Perl/Java: Handy scripting or programming languages that available for anyone to learn and master.
  • GIMP: Logo, website design and theme creator

Note: Majority of discussion will be around computing and internet technology oriented products..

Funny open source conversation
funny open source conversation

Posted in Linux, Open Source, Ubuntu | Tagged: , | Leave a Comment »