Penetration Testing mailing list archives
Re: Bootable CD Attack disk + NTFS question
From: subscribe <subscribe () crazytrain com>
Date: Wed, 22 Feb 2006 21:36:16 -0500
Hi Petr, There are a number of Linux CDs that provide NTFS write support, to varying capacities and success rates. No matter which CD you choose the single most important thing you can do is test and validate to ensure it works for you and your needs. The best NTFS driver for Linux is the Linux-NTFS project driver, hands down. FlatCap, Anton, Szaka, Yuval, and others know their stuff and the driver works well. The documentation is fantastic. The Paragon NTFS driver is something I wouldn't recommend but I'll let you test it for yourself. The Captive-NTFS driver is back now, using FUSE I believe for the 2.6 kernel. I don't know if the problems with the previous versions have been addressed yet or not. My only recommendation is the Linux-NTFS driver, and this means over writing files in place. I use this on my CD and you can write to NTFS file systems, within the bounds set by the Linux-NTFS driver. You can edit registry key values as well. regards, farmerdude http://www.forensicbootcd.com/ On Wed, 2006-02-22 at 11:42, Petr.Kazil () eap nl wrote:
If you want to read/write NTFS file systems on a "victim" workstation then this one is good: http://trinityhome.org/trk/ It's a Linux CD but you can add Windows drivers to it, and then it reads/writes to NTFS. Not many Linux CD's can do that. Do you know more? Has anyone ever tried to "inject" a trojan file + autostart link into a Windows file system using a CD like this? That looks like a doable exploit. ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Current thread:
- Bootable CD Attack disk Toby Barrick (Feb 21)
- Re: Bootable CD Attack disk Erin Carroll (Feb 21)
- Re: Bootable CD Attack disk + NTFS question Petr . Kazil (Feb 22)
- Re: Bootable CD Attack disk + NTFS question okrehel (Feb 22)
- Re: Bootable CD Attack disk + NTFS question run][control (Feb 22)
- Re: Bootable CD Attack disk + NTFS question subscribe (Feb 22)
- Re: Bootable CD Attack disk + NTFS question Petr . Kazil (Feb 22)
- RE: Bootable CD Attack disk Tuck, Andrew M - DOA (Feb 21)
- RE: Bootable CD Attack disk Rich (Feb 21)
- Re: Bootable CD Attack disk Robert J. Stull (Feb 21)
- RE: Bootable CD Attack disk daniel.sullivan (Feb 22)
- Re: Bootable CD Attack disk Michael Zanetta (Feb 21)
- Re: Bootable CD Attack disk jason potopa (Feb 21)
- RE: Bootable CD Attack disk Richard Zaluski (Feb 21)
- Re: Bootable CD Attack disk Rob Oravec (Feb 21)
- Re: Bootable CD Attack disk Tiago Rosado (Feb 21)
- RE: Bootable CD Attack disk Rich (Feb 22)
(Thread continues...)
- Re: Bootable CD Attack disk Erin Carroll (Feb 21)