Wednesday, October 24, 2012

Introducing Responder 1.0

I recently released a LLMNR/NBT-NS responder with several rogue auth servers.

Full details about this tool and download link can be found here : http://blog.spiderlabs.com/2012/10/introducing-responder-10.html

Wednesday, September 5, 2012

When MSFT does not respect their own protocol.

According to this : http://support.microsoft.com/kb/909264

NetBIOS computer names cannot contain the following characters:
  • backslash (\)
  • slash mark (/)
  • colon (:)
  • asterisk (*)
  • question mark (?)
  • quotation mark (")
  • less than sign (<)
  • greater than sign (>)
  • vertical bar (|)
Let see how MSFT implemented their own protocol in their in house tools:



Ok great...

What about the rest ?


Alright. Let's see:





MSFT Rule #78: Do what I say, not what I do.

*Update:

Net view example:


Thursday, May 10, 2012

Slides for Turning Client Side To Server Side RuxMon 2011 (Melbourne)

Long time no blog;
I gave that talk in March 2011 at Ruxmon.
I thought I should share this, since this blog is a kinda repository of some bugs i've published.

Thanks to the ruxcon&ruxmon crew !

http://www.slideshare.net/fullscreen/lgandx/turning-clientsidetoserversideruxcon2011laurent/1