Using session-monitor to span ports and make a aggregation tap on a Cisco 2950

Like most I don't have the funds to purchase a $1000 port agregator for my IDS to sniff traffic so instead I just use a 2950 Cisco Switch:

!
interface FastEthernet0/1
switchport access vlan 100
duplex full
!
interface FastEthernet0/2
switchport access vlan 100
duplex full
!
interface FastEthernet0/3
!

so the first two ports are where the traffic comes in and back out to the destination device, the third will go to my network sensor. Next let's setup the port spanning.

!
monitor session 1 source interface Fa0/1
monitor session 1 destination interface Fa0/3

Note that you may check other options such as spanning multiple ports are even vlans...

Using metasploit to pwn MS06-067

In a graduate course I'm taking right now our professor wanted us to tool around with the Metasploit project. This tool makes exploiting vulnerabilities that it has signatures for a joke. After the client takes the bait I run 'ipconfig' just to ensure I had remote connectivity.



Here a shell that I ran 'ipconfig' on just to confirm the operation. Simple as that.

Erase slack space on Microsoft Vista

A lot of information may be stored on a drives slack space. If you want to get rid of these artifacts then run the usual tools to clean up the system like 'Disk Cleanup', 'Defrag', etc.. and then run the following command.

C:\Users\Crypto>cipher.exe /w:C:\
To remove as much data as possible, please close all other applications while
running CIPHER /W.
Writing 0x00
................................................................................
...................
Writing 0xFF
................................................................................
...................
Writing Random Numbers
................................................................................
...................