Posts

No Need to Click Here - I'm just claiming my feed at Feedster

I got tired of seeing ads in my Bloglines Chicago news feed which pulls from Moreover. So I checked out GreaseMonkey, figured out how it all worked, and whipped up a script to do it for me. Much better. moreoverads.user.js

After reading a couple posts about impersonation by Shawn Farkas and linked to by dominick baier, I’ve decided to post some information about impersonation as well. The only difference is that my impersonation doesn’t require a password. You may remember a few months ago when I posted about mucking around with tokens. Well this is the reason I was doing so. It seems that by using the ImpersonateLoggedOnUser function, you can impersonate the security context of a logged-on user…and all you need is their token! ...

She said she saw one when we were there other day. Looks like she was right. Rodent problem closes Whole Foods store

I’m at the sixth annual CERIAS Information Security Symposium at Purdue. It’s not too bad - I’ll let you know if I see anything neat. I’ve liked the couple virtualization projects given my recent envolvement with Microsoft Virtual Server.

I seem to be having problems with pingomatic on my WP install…time for some ngrep fun!

As I was enjoying a fine dinner of Lipton Italian Sides one night, I came across Adi’s post on how to copy an open file with shadow copies. Not bad, I thought, and stored that little nugget of knowledge away for when I might need to do just that. A few minutes later I remembered an old email about pwdump horking a domain controller (yes, horking is a technical term…) and wondered if I could simply copy the SAM hive (%SystemRoot%\system32\config) using shadow copies. A few hours later, using Adi’s post as a reference, I came up with the code below. ...

There are four blocks of cop cars parked along Dearborn St. in Chicago with their trunks popped and all the cops putting on their riot gear in preperation for the anti-war march. It’s a pretty impressive scene - I’ll post some pictures later.

I was on a job a while ago where there were numerous VNC servers. Being the diligent auditor that I am, I wanted to a) document all the connections and b) determine if there was any juicy material on those computers. I got tired of opening VNC, inserting the IP address, entering the password, taking a screenshot, saving it, and closing everything down again after about 10 hosts…so I scripted it! ...

Being St. Patty’s day, I felt obliged to go out and celebrate. After a quick stop at my new favorite place, Jake Melnicks, we headed over to Fadó Irish Pub. Being an Irish pub on St. Patty’s…there was a wait, but it wasn’t too bad (20 min?). Fadó’s is a great place, but there were some crazy people pretending to jig to the music. I was getting annoyed with the people that kept slamming into me, but that’s part of going out. So I just push right back. ;) ...