I only know enough binary to ask where the bathroom is

Use NMAP To Detect Conficker

I found this gem of an Nmap command yesterday. I was unable to write about this awesome command though because my site was offline. But I’m back now!

Important Notes:

You will need to download the latest version of nmap from insecure.org, or you can click here

The command:

nmap -PN -T4 -p139,445 -n -v --script=smb-check-vulns --script-args safe=1 [targetnetworks]

Just remove [targetnetworks] and replace that value with the subnet you wish to scan. Since my gateway is 192.168.1.1, I altered the command to scan my network to look like the following:

nmap -PN -T4 -p139,445 -n -v --script=smb-check-vulns --script-args safe=1 192.168.1.*

Analyze the output:

A clean machine should report at the bottom: “Conficker: Likely CLEAN”, while likely infected machines say: “Conficker: Likely INFECTED”. For more advice, see this nmap-dev post by Brandon Enright.

I’ve successfully written a bash script that runs once every minute. The script detects whether or not my server is online by issuing a simple ping request. Based on results of the ping request(s), the arduino will display a green LED when the server is online or a red LED if the server is offline. I’ve also setup a cron job to execute the script once a minute, giving me up to the minute status of my server. This specific project is not terribly amazing, but the foundation for many more projects to come has laid.

Click Here for the full project page

I wrote this simple script for work. This script allows us to gather all the username and password information on the server to let us troubleshoot faster. This is an early version of the script, I plan on added more functionality to improve the speed of troubleshooting. This script was not intended for malicious purposes, please do not use it for such.

Click Here to see the script

This guide will show you how to create a separate FTP login for a specific domain using Plesk. This gives two different users the ability to connect to the same directory with the same permissions.

Click Here to see the full guide.

As most of you know, using the Windows Firewall GUI will not allow you to open a range of ports easily. This becomes a nightmare if you need to open up Passive FTP ports (port #’s 60,000 – 65,000).

Click Here for the full guide.

I wrote this script for a friend who needs to get around a work firewall. The script uses Plink to create an SSH tunnel to a server of your choice.

I haven’t added any error handling in it, but I like how it integrates FTP in a batch script. For this script to work, you’ll need at least one server with both FTP and SSH enabled. Make sure to lock down both accounts that you use in the script, and you’ll need to make sure that plink.exe is accessible in the root of the FTP account.

Click Here to check it out

You know Rick Astley will never give you up, let your friends know. This was my first Asterisk Scripting project, decided to post the end results under the Asterisk header at the top of the page. Check it out, and let your friends and loved ones know that you’ll never give them up. Click here to check it out

This script was just handed to me by a friend, every sever with SSH access should have this script installed. This script will automatically ban an IP address that fails to authenticate after 3 attempts. You can change the ban duration with a simple command line option.

Click Here to check it out.

La Fonera 2100 USB Power Hack

I’ve been trying to think of ideas to power my Fon without needing a 120vac outlet. Luckily for us, The La Fonera router is powered off of 5V. USB provides 5v. How convenient. My favorite part about this hack, is that it still allows you to power the Fon router with the provided wall adapter, this is just an added option if you don’t have an outlet handy.

Head on over to: La Fonera 2100 USB Power Hack