Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - Cobia

Pages: [1]
1
Beginner's Corner / Re: Malware spreading over LAN?
« on: March 26, 2015, 09:30:04 am »
If you're lucky enough to find a 0-day for a popular OS you can just set it to scan your LAN for vulnerable systems and then replicate.

Being inside the LAN gives you a lot of options. Bruteforcing local computers, having a list of specific exploits to hit open ports with, and phishing attacks.

Think everything in Metasploit, BeEF and the Wifi Pineapple.
(Not everything LOL, but u get the idea)

Please do share this DHCP bug though! Sounds cool


2
Hacking and Security / Re: Potential idea for a software for credit card processing
« on: March 26, 2015, 09:20:11 am »
Your answer is yes/no.

Although you can verify whether a credit card number is legitimate via an algorithm called the Luhn Algorithm, you can't check it against a name.

The name for a credit card isn't a verifiable piece of information through anything except the issuers private records.

Sooo, short of getting access to the bank's database you have no programmatic way to check names.
BUT. You can actually figure out the issuing bank via the first numbers somewhat reliably. Check the hyperlink.
  • 4 for Visa cards
  • 5 for Master cards
  • 37 for American Express cards
That's about as much as I know, the algorithm is REALLY simple to write.
One more thing.

If you wanted to get all hackerish w/it you could look for some data exposure in popular banking sites. Some sort of form or backend script that allows you to query card information.

That'd be REALLY cool.

Pages: [1]