Full Disclosure mailing list archives
Fwd: some considerations on Ettercap code repository breach
From: "Cal Leeming [Simplicity Media Ltd]" <cal.leeming () simplicitymedialtd co uk>
Date: Wed, 29 Dec 2010 20:04:56 +0000
Just playing devils advocate, but that "mind map" image really does not have any usefulness... I really just don't understand why you have made it and shared it with us. Unless I've missed something here? On Wed, Dec 29, 2010 at 7:53 PM, exploit dev <extraexploit () gmail com> wrote:
Hi Wendel, My post is not about the possibility that the Ettercap code was been backdoored or not. I have only try to explain (with very few details) how is possible find breaches in well known web sites (like sourceforge) starting from the analaysis of source ode of a p(php/perl/python)bot. Nothing else. If I have more time to spent for this, I will post an explanation of my "mind map" that I used months ago for start to study this kind of bot. Regards. On Wed, Dec 29, 2010 at 8:24 PM, Wendel Guglielmetti Henrique < wsguglielmetti () gmail com> wrote:Hi, One of the claims made in the zine was that they compromised the popular ARP-Spoofing toolkit – Ettercap, and implied that the code had been altered several years ago. The implication was that a backdoor was placed in the code. However, there is no evidence... We wrote a post about that @ SpiderLabs blog. http://blog.spiderlabs.com/2010/12/anti-security-and-the-christmas-day-incident.html Best regards On Wed, Dec 29, 2010 at 12:32 PM, exploit dev <extraexploit () gmail com> wrote:If you are interestedhttp://extraexploit.blogspot.com/2010/12/some-considerations-on-ettercap-source.htmlRegards -- http://extraexploit.blogspot.com _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/-- Wendel Guglielmetti Henrique http://wsec.110mb.com/ - Personal HomePage-- http://extraexploit.blogspot.com _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- some considerations on Ettercap code repository breach exploit dev (Dec 29)
- Re: some considerations on Ettercap code repository breach Cal Leeming [Simplicity Media Ltd] (Dec 29)
- Re: some considerations on Ettercap code repository breach Wendel Guglielmetti Henrique (Dec 29)
- Re: some considerations on Ettercap code repository breach exploit dev (Dec 29)
- Message not available
- Fwd: some considerations on Ettercap code repository breach Cal Leeming [Simplicity Media Ltd] (Dec 29)
- Re: Fwd: some considerations on Ettercap code repository breach Valdis . Kletnieks (Dec 29)
- Re: Fwd: some considerations on Ettercap code repository breach exploit dev (Dec 29)
- Re: some considerations on Ettercap code repository breach exploit dev (Dec 29)