SamuraiNet Blog

In the wake of so many ISP’s getting away with murder and the government looking the other direction it’s good to see that Florida is stepping in and fining Version for poor response time. http://news.cnet.com/Florida-…00-1036_3-6239655.html?tag=html.alert.hed

This is a great video for both optimizing and securing your Windows XP system. It shows exactly how to disable five services you probably don’t need to be running. http://blogs.techrepublic.com.com/itdojo/?p=120&tag=nl.e101

If you have ever had the “Warning: Using insecure memory” message display when using a tool such as GnuPG this article is for you. Not only does it explain exactly what that means it also goes into how to prevent the problem. http://blogs.techrepublic.com.com/security/?p=457&tag=nl.e036

Panda security has now launched thier Security as a Service for businesses. Among other services they will be offering: outsourcing of infrastructure, automated updates and patching, compliance checks, risk management, and remote management tools. http://sev.prnewswire.com/computer-software/20080519/LAM04119052008-1.html

I read this post on a friend of mine’s blog and thought it was rather useful. I’ve had PHP scripts running on cron before that had exactly this problem. They would lock up after a while and before I knew it, I had about 15 “undead” PHP processes just eating up my CPU. What was worse was that my shared host only allowed each user 15 processes at the same time, so slowly but surely the rest of my sites would go down. http://www.toosweettobesour.com/2008/05/21/amp-and-runaway-scripts/

For work I built an HTTP Optimizer: Vanishing Point. It’s a framework that accepts plugins, so that custom optimization engines can be built for different file types. Currently I have released a CSS and Javascript optimizer plugin. Both implement packers/miniifiers designed by other people, however; I added in my own code to further optimize them. They also will combine files so as to save time by reducing HTTP requests. In our benchmarks they have shown that they do infact reduce page load time.

Here is the google code SVN repo:

http://vanishingpoint.googlecode.com/svn/trunk/

This is my first build of the php version of pwlib. Nothing is quit set in stone yet and for all I know I might scrap the whole thing. This should be enough to see how it will interface. If you have and suggestions or would like to see a feature put in, post a comment and I’ll look into it.

PHP 4 Version: http://www.samurainet.org/pwlib/php/pwlib-php4.src

PHP 5 Version:http://www.samurainet.org/pwlib/php/pwlib-php5.src

Wordlist (its just for testing): http://www.samurainet.org/pwlib/php/test.txt

I still need to finish optimizing the code as well as making some of the features more robust. Enjoy the code.

After creating customized password cracking apps for some time, I have finally grown tired of using different alogirthms with no real flexability in them so I have decided to create a library to do this for me. Since I work in a few languages, I will be building these in: Java, C++, Python, and PHP.

The library itself will be a collection of functions used to generate passwords and hashes to be used in cracking or brute forcing. For passwords the library will provide functionality for using dictionary files and generating brute force lists of minimum length n to maximum length m for ASCII x through y. The hashes will include md5 and sha1 built in and I plan to allow custom algorithms to be built for it as a plugin or passed in function, however; that is still in the planing stages.

As soon as I set it up, I will make daily builds available and post that link under this sub-category along with updates. Comments and suggestions are appreciated.