Monday, September 14, 2015

September Weakerthan Linux 6 Update Release

September is Here!

Updates to Weakerthan Linux 6

GoTTY - Added for Red Team/Terminal sharing during penetration testing
GeoTweet - Added for Social Engineering / OSINT
VLC - Compiled and added to easily play media files
Transmute - added for word list generation for Aircrack-NG, cowpatty, John the Ripper, etc
UX - The UX has been upgraded after lots of testing
menu fixes - fixed issues from submissions
OSINT submenu for Open Source Intelligence tools
Red team submenu - with GoTTY and Armitage
Sounds - Added sounds to the keyboard shortcuts
Help! added to the menu with a lot of simple descriptions,

Keyboard Shortcuts

  • Google Chrome - CTRL+ALT+g
  • Terminal - CTRL+ALT+t (or ALT+F1)
  • Wireshark - CTRL+ALT+w
  • Armitage - CTRL+ALT+a
  • MSFconsole - CTRL+ALT+e
  • Network Interfaces - CTRL+ALT+i
  • Network Manager (WiCd) - CTRL+ALT+n
  • Power options - Windows key+p
  • Logout of Fluxbox - Windows key+l (or ALT+CTRL+Backspace)

Stage Fright!

I added the Android "Stage Fright" exploit and its dependencies as soon as it became available. Check the screenshot below,

Desktop Icons!

I have added iDesk for desktop icons in Fluxbox. You can access them from the menu Personalization->Customize WT6->Show Desktop Icons. Check out the screenshots below,


You can download the ISO update directly from my server,

ISO Image: (1.7GB) wt6.09.14.iso
MD5 Checksum: (49 Bytes) wt6.09.14.iso.md5

Wednesday, September 9, 2015

Blackberry and Security

I recently found a nasty SQL Injection bug that enabled me to view personal information of Blackberry's customers and employees that was quite similar to the simple hack that Weev was incarcerated for. Rather than dump the data, or write a script to hammer away at it, I disclosed the bug and Blackberry gave me credit for it:

I have made similar disclosures in the past to other companies, all of which didn't even seem to care about the bugs. Blackberry's incident response team, however promptly emailed me and kept up to communication throughout the process,

[BIRT2015-00446] Vulnerability Report

Hi Douglas,
Hope you are doing well. I'm happy to report the issue you reported to BlackBerry Security has been resolved. BlackBerry Security appreciates you responsibly disclosing this issue to us. On our external website, we list researchers that report security issues under our acknowledgments section, If you would like to have your name added, and it has not already been listed once this calendar year, please send me the name and either Twitter or company name you would like added. As per BlackBerry Security Response's policy, you will see your name posted on our website for the last Friday of the month.

Thanks again for responsibly disclosing this issue.
BlackBerry Security Response

I have always been a big fan of Blackberry. If you're a fan too, you can check out my design gallery of Blackberry wallpapers!


Thursday, August 20, 2015

Weakerthan Linux 6 Updates!

Ask, and ye shall receive!

Well, I recently read that "the bar for penetration testing distributions was just raised" so I figured I should step it up a notch and just add everything you guys have requested and more. I even went so far as to create a new icon for Armitage,

  1. Bettercap
  2. Browser Exploitation Framework
  3. Exploit-database
  4. Google Chrome - updates, plugins, and menu for Disabling XSS Auditor
    1. EFF Privacy Badger Plugin Added
      1. Been using this for a while now and am a big fan! :)
    2. Browser UI Experiments enabled and Zero Dark Matrix UI theme for Developer Tools added

  1. Fang md5 cracker
  2. CredCrack
  3. Updated all GIT tools and Debian system upgraded
  4. Added Armitage && Armitage icon to the dock for quick access
  5. FluxBox menu reconfigured and rearranged
    1. I kept the installer out of the main menu for a reason; it stays there when you install the OS and is annoying
The Fluxbox menu can be edited easily right from the menu itself. Just click Personalization->Customize WT6->Fluxbox Customization->Fluxbox Menu

This is no longer BETA. I will release fresh ISOs each month from now on, so please check back for updates! We are now starting with WT6.8.2

Thank you!

I hope you enjoy!