yehg.net
YGN Ethical Hacker Group (YEHG) :: The Web Security Division
http://yehg.net/lab
The YEHG was established in September 2007 by a small group of young but mature people. The initiatives broke out in the hope of united force that can beat any obstacles and accomplish any goals we desire. We are NOT BLACK Hats. We are not concerned with or employed by Myanmar Government or any organizations. To become one of the best, respectable, powerful. Groups in the world who’re ever dedicating their lives in ethical hacking and countermeasures. 2 To help each other’s desired goal all together.
bl0g.yehg.net
YGN Ethical Hacker Group Blog: [Tool] DLL Hijack Helper
http://bl0g.yehg.net/2013/09/tool-dll-hijack-helper.html
YGN Ethical Hacker Group Blog. Updates about YGN Ethical Hacker Group's Activities. Sunday, September 8, 2013. Tool] DLL Hijack Helper. Https:/ code.google.com/p/yehg-core-lab-misc/source/browse/#svn%2Ftrunk%2Fdll-hijack-helper. This tool will aid you in your manual DLL Hijacking vulnerability hunting when automatic approach does not smoothly work. 2 Set filter rule with result "NAME NOT FOUND". 3 Run your target application. 4 Save ProcMon output as CSV. 5 Run dll-hijack-helper.py.
bl0g.yehg.net
YGN Ethical Hacker Group Blog: SSL Breacher - Yet Another SSL Test Tool
http://bl0g.yehg.net/2014/07/ssl-breacher-yet-another-ssl-test-tool.html
YGN Ethical Hacker Group Blog. Updates about YGN Ethical Hacker Group's Activities. Wednesday, December 24, 2014. SSL Breacher - Yet Another SSL Test Tool. This is our version of SSL test tool mainly meant for your Internal assessment which you can't use famous online SSL labs scanner. Http:/ yehg.net/lab/pr0js/tools/breacher-optimized.zip. 3 POODLE (due to SSLv3 support). 7 CRIME and TIME (If CRIME is detected, TIME will also be reported). 9 Forward Secrecy support. 2 Insufficient public key-length.
bl0g.yehg.net
YGN Ethical Hacker Group Blog: [Tool] DLL Hijack Helper Updated with killcmd support
http://bl0g.yehg.net/2013/12/tool-dll-hijack-helper-updated-with.html
YGN Ethical Hacker Group Blog. Updates about YGN Ethical Hacker Group's Activities. Sunday, December 8, 2013. Tool] DLL Hijack Helper Updated with killcmd support. DLL Hijack Helper - Update. 2 Set filter rule with result "NAME NOT FOUND". 3 Run your target application. 4 Save ProcMon output as Logfile.CSV. 6 Edit dll-hijack-helper.py. 7 Search and Replace "target.exe" with your test application name. 5 Run dll-hijack-helper.py. Typical output looks like this:. Launch the application to test it. Enter 'y...
bl0g.yehg.net
YGN Ethical Hacker Group Blog: SSL Breacher Update
http://bl0g.yehg.net/2014/12/ssl-breacher-update.html
YGN Ethical Hacker Group Blog. Updates about YGN Ethical Hacker Group's Activities. Thursday, December 25, 2014. SSL LABs scan support; its PDF report will be saved [required WKHTMLTOPDF http:/ wkhtmltopdf.org/downloads.html]. Updated Firefox root cert. All dependencies (Java,Python,WKHTMLPDF) are bundled together in Windows platform and can be activated via breacher64.cmd. Result outputs are now moved to /output/{host} folder. Medium-strength ciphers check for high-security required sites.
bl0g.yehg.net
YGN Ethical Hacker Group Blog: Testing CAPTCHA strength with GSA CAPTCHA Breaker
http://bl0g.yehg.net/2013/09/testing-captcha-strength-with-gsa.html
YGN Ethical Hacker Group Blog. Updates about YGN Ethical Hacker Group's Activities. Saturday, September 21, 2013. Testing CAPTCHA strength with GSA CAPTCHA Breaker. With sophisticated OCR technologies, today's CAPTCHA defense in web applications has become weaker and weaker partially due to a requirement to maintain usability. In this demo, we used GSA Breaker tool to test the effectiveness of sample. Posted by YGN Ethical Hacker Group. Enter your email address:.