Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Full-disclosure] Fwd: beyond security sucks at coding

from [reepex] Network Security [Permanent Link]
Subject: [Full-disclosure] Fwd: beyond security sucks at coding
Date: Sat, 29 Dec 2007 01:08:07 -0600 
In case you missed it before

---------- Forwarded message ----------
From: reepex <reepex@gmail.com>
Date: Dec 23, 2007 8:22 PM
Subject: beyond security sucks at coding
To: full-disclosure@lists.grok.org.uk, Gadi Evron <ge@linuxbox.org>


http://www.milw0rm.com/exploits/4773

Gadi and Noam Rathaus and the crew suck at coding once again.


From the "exploit":


 my $ciphers = "";
 my $ciphers_length = pack('n', length($ciphers));

 my $certificate = "";
 my $certificate_length = pack('n', length($certificate));

I think the italian Phd students can write better perl than this.

You have to give it to Gadi and friends though spending the last year (
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-4343 Original release
date:9/28/2006 ) writing this complex exploit and testing it to work
on all
platforms ever created.
Noam's inability to code now shows me why all his books (
http://www.amazon.com/s?ie=UTF8&search-type=ss&index=books&field-author=Noam%20Rathaus&page=1)
are basic extensions and ripoffs of other peoples' code and why he
contributes nothing original or useful.

I guess to work at beyond security you must be a master in the art of
copy/paste, stealing code, and bullshitting technical "knowledge"

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Full-disclosure] iFriends free video chat exploit, reepex
Next by Date:  Re: [Full-disclosure] New TV show "Tiger Team": social engineering, wired/wireless hacking, physical break-in, crazy frog crazy frog
Previous by Thread:  [Full-disclosure] beyond security sucks at coding, reepex
Next by Thread:  [Full-disclosure] Installshield Update Service isusweb.dll Buffer Overflow, Elazar Broad
Indexes:  [Date] [Thread] [Top] [All Lists]