Teh Fizzgig!

I finally got around to updating my web site a bit! As you can tell, I am certainly no graphic designer. I don't know what I think about it yet, but I can always change it I suppose. Ah, the magic of the cascading style sheet.

About myself: I am a proud member of the foofus.net team! My professional focus happens to be on application security, though I dabble in network security as well. :)

I have a number of pet projects that I work on at any given time, but right now my focus is on obtaining information from Windows systems. To that end, I present the following links for your consideration:

  • pwdump6 - A replacement for pwdump3e that is not crashy on Windows XP and 2003 systems. Try it if you've had LSASS crash on you using older tools.  Also supports multithreading and is a bit more robust than older versions.
  • fgdump - A far more powerful incarnation of pwdump6! If you're using pwdump, I highly recommend using this tool instead. It not only does password dumping (using pwdump6), it also can handle cached passwords and protected storage data. It's most important feature, however, is that it detects the presence of many antivirus programs and will shut them down while it does its work, then turn it back on later. For those of you who have hung AV programs with pwdump like I have, this is a godsend.
  • OWNR - A multipurpose information gatherer for Windows, originally written by foofus, now kind of maintained by me. OWNR Version 2.0 is in the works right now as a matter of fact, and is designed to be a single tool capable of gathering just about every piece of security information you can from Windows. Stay tuned on this one.

The esteemed JoMo-Kun has been working feverishly on a parallelized brute-forcing tool called medusa for some time now, and it's now been released to the public. For those familiar with the tool hydra, it's very similar but (hopefully) more stable and definitely a lot faster. It uses threads rather than forking to do it's parallelization, and it's far more modular and extensible. It can brute a number of very common protocols, including SMB, SSH, telnet, HTTP, VNC, SQL Server and others, and I know he's working on a few new ones as well. This tool definitely gets the Fizzgig Seal of Approval (void in Tennessee), which has absolutely nothing to do with the fact that I contributed a small amount of code to the project. OK, maybe that's a SMALL factor in my decision... :) Really though, it is a very great and powerful tool.

Medusa and fgdump are also an important part of foofus's work on implied trust relationships. This was a presentation he gave at Defcon 14, and was very well-received.

Other links to useful stuff and things I find interesting:


The Electronic Frontier Foundation - Protecting Your Digital Rights


foofus.net - Security and Obscurity

Bob Seger FTW!

Bob Seger Fan Club!