This XKCD strip explains what essentially Meltdown vulnerability which affects Intel microprocessor
Automatically generate gallery with llgal
LLGAL (llgal) is an tool which can automatically generate gallery on your website. llgal is handy if you want to generate photo album out of photos organized in directories/folders.
Running llgal from the console is easy as typing the llgal command at the root directory of your photos.
llgal --exif --li -L -R --title "Album Name" --sx 960 --sy 720 --tx 250 --ty 150
In Ubuntu, the gallery’s theme is located in “/usr/share/llgal/” directory and my customized theme which supports mobile phone can be downloaded here: llgal.zip (mobile enabled)
Personally, i use llgal to generate cctv tiles automatically on my Ubuntu server from which my TP-LINK NC450 and NC250 IP camera uploads through its FTP functions when it detects movements/motion.
llgal can be installed on Ubuntu by running this command
apt -y install llgal
Alternatively you can compile and install llgal directly from its repository
crack zip password with cracker-ng
Cracking zip password can be made easy with cracker-ng
Installation is simple, assuming you use Debian, Ubuntu or any other similar operating system :
$ git clone https://github.com/BoboTiG/cracker-ng.git $ cd cracker-ng # For testers and contributors, always work with on the devel branch: $ git checkout devel $ make
Cracking is relatively simple, assuming you have downloaded the awesome Crackstation’s wordlist dictionary.
$ zipcracker-ng -f targetfile.zip -w crackstation-human-only.txt
Additionally zipcracker-ng can also be used with other brute-forcing cracking tool such as john and
$ john --incremental --stdout | zipcracker-ng -f FILE - $ crunch 1 8 -f charset.lst lalpha | zipcracker-ng -f FILE -
Screenshot of zipcracker-ng in action
Download Wordlist for dictionary attack
Crackstation wordlist is one of the most (if not the most) comprehensive wordlist which can be used for the purpose of dictionary -attack on passwords.
The wordlist comes in two flavors:
- Full wordlist (GZIP-compressed (level 9). 4.2 GiB compressed. 15 GiB uncompressed)
- Human-password only wordlist (GZIP-compressed. 247 MiB compressed. 684 MiB uncompressed)
Personally, I’ve already downloaded the full wordlist via torrent, and tested it against few PDF files (using pdfcrack) and UNIX password cracking (using John), all my test cases were successful. In my opinion, the wordlist is comprehensive for my need.
Since it looked like it took a significant effort to compile this wordlist, I rather advocate those who are interested to donate/buy the wordlist from: https://crackstation.net/buy-crackstation-wordlist-password-cracking-dictionary.htm
Cracking PDF file with PDFCrack in Linux
I’ve come across an PDF which was sent to my email from an automated banking system. Unfortunately, the PDF file is encrypted and I’ve no way of knowing the password (or actually I’ve forgotten the password).
Fortunately, my Ubuntu box comes with application which allows me to crack the PDF file within a reasonable time.
Using ‘pdfcrack’ to crack PDF file
You need to install pdfcrack to crack pdf file. In Ubuntu/Debian system, you simply need to run
sudo apt-get -y install pdfcrack
Then for actual cracking, you can run
pdfcrack -n5 -m10 encrypted.pdf
Where -n [minimum length] to brute-force, and -m [maximum length] to brute-force.
pdfcrack can also accept a file input containing list of words (dictionary attack). For dictionary-attack just run
pdfcrack --wordlist=dictionary.txt encrypted.pdf
Securing SSH port and limiting IP address connection with Firewall in Ubuntu
UFW: Securing SSH
UFW or Uncomplicated Firewall is a firewall package in Ubuntu. UFW can be used to secure SSH ports in Ubuntu server.
In order to secure OpenSSH, we must first disable UFW and allow all SSH rule.
sudo ufw disable sudo ufw delete allow ssh
Then we add IP Address to be allowed to connect to SSH port. In this case I assume that “192.168.1.10” would be allowed to be connected to the server. You can replace IP Address, with any IP Address that you prefer.
sudo ufw allow from 192.168.1.10 to any port ssh
You can also add other IP Address that can be connected to SSH port. In this case, I chose em>”172.25.100.1″.
sudo ufw allow from 172.25.100.1 to any port ssh
Alternatively, you could also specify port number and protocol
sudo ufw allow from 192.168.1.10 to any port 22 proto tcp
Only allow SSH connections from certain subnets
sudo ufw allow from 192.168.1.0/24 to any port 22 proto tcp
Note: Adding firewall rules to only allow SSH connection from certain subnets would increase the server security, further reducing brute-force attack.