本帖最後由 samiux 於 2013-1-9 00:58 編輯
I think you are a bit extreme in your suggestion. While syslog doesn't necessarily show all the war ...
muteki 發表於 2013-1-8 17:10 
I am not saying that reading logs is wrong or useless, but I pointed out that some exploits will not be logged. I just said that the said wiki is just a joke that only asking you to read logs but not mention about some of them will not be logged. The information is incorrect and misleading. It will mislead others that it should be logged.
If you read all my messages, you will find out that. I can do nothing on it since their COMMON SENSE/PROFESSIONAL telling them that I am wrong (may be including you). In addition, the only thing I can do is to alert them even they do not or unwilling to listen.
In the real world, there are a very little number of exploit activities can be logged. Even it is logged, the attackers can clean it out with a method that you will not notice or at least you are not very easy to note.
I think we are facing skilled attackers but not only script kiddies, do you agree? So, why not we are being more professional?
Thank you for watching the demo video (seldom people do it, but I don't know why). The said "vuln-server_static" is an exercise in which source code you can download it at here or here. The code do nothing but only listening on a port and waiting for user's input and then echo back. Basically, it is a vulnerability echo server, that's all.
You compile it and develop your exploit code and conduct the exploitation. As a result, you will get a shell. The demo video showing my developed exploit code namely "exploit.py". If you are interested in or know how to do exploit writing, you can try yourself.
By the way, you cannot find the solution in the internet about this exercise at the moment. However, it will be available soon when I release it. I delay the release due to some personal matter.
If you understand what is an exploit and exploit writing, you will understand what I am saying.
Samiux
Update reason : fix the link |