A quick report of the last 1000 web hits I recently got from hosts ending in .gov or .mil. To all of the United State Goverment folks that use my site: I'm honored you use my resources, please let me know if there are any training videos you would like for me to create. And send me a NSA/FBI/DHS hat or t-shirt. :)
| Hostname | IP | OS | Browser Agent | Location | Page Viewed | Date/Time |
| *.ncdoc.navy.mil | 204.37.*.* | | Mozilla/4.0 (compatible;) | Columbus OH US | Irongeek.com | 2013-05-17 23:38:48 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-17 23:35:38 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-17 18:11:32 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-17 15:06:14 |
| *.pr.navy.mil | 205.56.*.* | rv:12.0) Gecko/20100101 Firefox/12.0 | Mozilla/5.0 (Windows NT 5.1; rv:12.0) Gecko/20100101 Firefox/12.0 | VIRGINIA BEACH VA US | Programmable HID USB Keystroke Dongle: Using the Teensy as a pen testing
device | 2013-05-17 14:54:06 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-17 14:11:57 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Tablet PC 2.0; InfoPath.3) | MAFB-Gunter Annex AL US | BeEF:Browser Exploitation Framework XSS Fun (Hacking Illustrated Series
InfoSec Tutorial Videos) | 2013-05-17 13:56:25 |
| *.ncdoc.navy.mil | 204.37.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET4.0C; .NET4.0E; InfoPath.2; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) | Columbus OH US | Louisville InfoSec CTF 2009 (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-05-17 13:12:11 |
| *.fnal.gov | 131.225.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; InfoPath.3; .NET4.0E) | Batavia IL US | Man page of NPING | 2013-05-17 13:08:47 |
| *.maurycounty-tn.gov | 66.211.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; InfoPath.2; .NET CLR 3.0.04506.30; .NET CLR 1.1.4322; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) | Columbia TN US | Building a boot USB, DVD or CD based on Windows 7 with Winbuilder and Win7PE SE Tutorial | 2013-05-17 12:57:10 |
| *.dhs.gov | 216.81.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; DHSI60SP1001; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0E; InfoPath.3; .NET4.0C; DHSI70; IE8Mercury; A9ELIPJT) | Washington DC US | | 2013-05-17 12:45:46 |
| *.blm.gov | 204.124.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; InfoPath.3; ms-office; MSOffice 14) | Denver CO US | Irongeek.com | 2013-05-17 12:21:04 |
| *.blm.gov | 204.124.*.* | WOW64) AppleWebKit/537.4 (KHTML, like Gecko) Chrome/22.0.1229.96 Safari/537.4 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.4 (KHTML, like Gecko) Chrome/22.0.1229.96 Safari/537.4 | Denver CO US | OSInt, Cyberstalking, Footprinting and Recon: Getting to know you (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-17 12:20:14 |
| *.blm.gov | 204.124.*.* | WOW64) AppleWebKit/537.4 (KHTML, like Gecko) Chrome/22.0.1229.96 Safari/537.4 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.4 (KHTML, like Gecko) Chrome/22.0.1229.96 Safari/537.4 | Denver CO US | Footprinting, scoping and recon with DNS, Google Hacking and Metadata (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-17 12:20:11 |
| *.irs.gov | 152.216.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.0.3705; .NET CLR 1.1.4322; .NET CLR 2.0.50727; InfoPath.1; MS-RTC LM 8) | Washington DC US | | 2013-05-17 11:56:56 |
| *.fdic.gov | 167.176.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Arlington VA US | Building an InfoSec lab, on the cheap | 2013-05-17 11:45:13 |
| *.oln-afmc.af.mil | 207.133.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Win64; x64; Trident/4.0; .NET CLR 2.0.50727; SLCC2; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) | Columbus OH US | | 2013-05-17 11:21:13 |
| *.peacecorps.gov | 65.205.*.* | | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | | le="text-align:center;">Mutillidae
What is Mutillidae?
Mutillidae is a free, open source web application provided to allow security enthusiest to pen-test and hack
a web application. Mutillidae can be installed on Linux, Windows XP, and Windows 7
using XAMMP making it easy for users who do not want to install or administrate their own webserver.
It is already installed on Samurai WTF. Simply replace existing version with latest on Samurai.
Mutillidae contains dozens of vulnerabilities and hints to help the user exploit them;
providing an easy-to-use web hacking environment deliberately designed to be used as a hack-lab
for security enthusiast, classroom labs, and vulnerability assessment tool targets. Mutillidae has
been used in graduate security courses, in corporate web sec training courses, and as an
"assess the assessor" target for vulnerability software.
Mutillidae has been tested/attacked with Cenzic Hailstorm ARC, W3AF, SQLMAP,
Samurai WTF, Backtrack, HP Web Inspect, Burp-Suite, NetSparker Community Edition, and other tools. If you
would like to practice pen-testing/hacking a web application by exploiting cross-site scripting, sql injection,
response-splitting, html injection, javascript injection, clickjacking, cross frame scripting,
forms-caching, authentication bypass, or many other vulnerabilities, then Mutillidae is for you.
The current version of Mutillidae, code named "NOWASP Mutillidae 2.x", was developed by Jeremy Druin aka webpwnized. Mutillidae 2.x
is based on Adrian "Irongeek" Crenshaw's Mutillidae project which is now refered to as Mutillidae 1.x or Mutillidae classic.
Mutillidae 1.x is still available on Sourceforge along side the current project.
Downloads
Announcements
Quickstart Installation Video
Documentation
Usage Instructions
Mutillidae contains all of the vulnerabilties from the
OWASP Top 10.
Go to the OWASP Top 10 page to read about a vulnerability, then choose it from
the list on the left to try it out. Hints may help.
Mutillidae currently has two modes: secure and insecure (default). In insecure mode, the
project works like Mutillidae 1.0. Pages are vulnerable to at least the topic they
fall under in the menu. Most pages are vulnerable to much more. In secure mode,
Mutillidae attempts to protect the pages with server side scripts. Also, hints are disabled in
secure mode. In the interest of making as many challenges as possible, this can be defeated.
In Mutillidae 2.0, the code has been commented to allow the user to see how the defense works.
To get the most out of the project, avoid reading the source code until after learning how
to exploit it. But if you get stuck, the comments should help. Learning how the attack
works should help to understand the defense.
Get rid of PHP "Strict" Errors
Please see documentation at the Sourceforge documentation page. Please note help file "tips-on-php-strict-errors.txt" concerning PHP strict errors.
Notes
- Created by Jeremy "webpwnized" Druin based on the original Mutillidae project of Irongeek.
- If you would like to learn about other deliberately vulnerable web
applications, check out
Deliberately Insecure Web Applications For Learning Web App Security.
-
Do NOT run this code on a production network. Either run it on a
private network, or restrict your web server software to only use the local
loopback address. By default Mutillidae only allows access from localhost
(127.*.*.*). Edit the .htaccess file to change this behavior (not recommended on a public network).
If for some reason .htaccess is not parsed you can
restrict the IP by finding the "Listen" line in the http.conf file and changing
it to read: Listen 127.0.0.1:80
| 2013-05-17 11:08:47 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | | 2013-05-17 11:01:07 |
| *.peacecorps.gov | 65.205.*.* | | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | | Pen-Testing Web 2.0: Stealing HTML5 Storage & Injecting JSON Jeremy Druin (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-17 10:31:57 |
| *.centcom.mil | 214.26.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3; .NET CLR 1.1.4322) | Columbus OH US | Pen-testing practice in a box: How to assemble a virtual network (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-17 09:06:37 |
| *.gtwy.uscourts.gov | 199.107.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | San Diego CA US | Crypto & Block Cipher Modes (OpenSSL, AES 128, ECB, CBC) | 2013-05-17 08:35:59 |
| *.bpa.gov | 170.160.*.* | Ubuntu | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:20.0) Gecko/20100101 Firefox/20.0 | Portland OR US | Manual Page - ettercap(8) | 2013-05-17 08:28:47 |
| *.sc.pima.gov | 159.233.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Tucson AZ US | | 2013-05-17 08:14:15 |
| *.ncdoc.navy.mil | 204.37.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; InfoPath.2) | Columbus OH US | | 2013-05-17 08:01:36 |
| *.ncdoc.navy.mil | 204.37.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; InfoPath.2) | Columbus OH US | Hacking Illustrated: Computer security videos | 2013-05-17 08:00:46 |
| *.ncdoc.navy.mil | 204.37.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; InfoPath.2) | Columbus OH US | Irongeek In Print: Books that mention Irongeek.com | 2013-05-17 08:00:23 |
| *.centcom.mil | 214.26.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | Columbus OH US | | 2013-05-17 07:58:35 |
| *.ncdoc.navy.mil | 204.37.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; InfoPath.2) | Columbus OH US | Links for Doxing, Personal OSInt, Profiling, Footprinting, Cyberstalking | 2013-05-17 07:51:59 |
| *.ncdoc.navy.mil | 204.37.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; InfoPath.2) | Columbus OH US | ShmooCon Firetalks 2013 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-17 07:51:14 |
| *.ncdoc.navy.mil | 204.37.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; InfoPath.2) | Columbus OH US | AIDE 2013 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-17 07:50:41 |
| *.ncdoc.navy.mil | 204.37.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; InfoPath.2) | Columbus OH US | Hackers in Unganda: A Documentary (Kickstarter Project) - Oncee AIDE 2013 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-17 07:50:15 |
| *.ncdoc.navy.mil | 204.37.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; InfoPath.2) | Columbus OH US | | 2013-05-17 07:49:48 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | VIRGINIA BEACH VA US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-17 07:47:36 |
| *.tn.gov | 170.141.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-05-17 07:16:48 |
| *.gtwy.uscourts.gov | 206.18.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:14.0) Gecko/20100101 Firefox/14.0.1 | | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-17 07:15:56 |
| *.state.gov | 169.253.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Washington DC US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-17 07:05:32 |
| *.nsweast.socom.mil | 206.37.*.* | rv:23.0) Gecko/20130513 Firefox/23.0 | Mozilla/5.0 (Windows NT 6.1; rv:23.0) Gecko/20130513 Firefox/23.0 | Columbus OH US | | 2013-05-17 06:49:30 |
| *.dot.gov | 152.120.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; Tablet PC 2.0; MS-RTC LM 8; InfoPath.3) | Washington DC US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-17 06:36:46 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-17 05:27:34 |
| *.med.navy.mil | 164.167.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET4.0C; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2; .NET4.0E; MS-RTC EA 2) | VIRGINIA BEACH VA US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-17 05:10:30 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | Locking down Windows Vista and Windows 7 against Malicious USB devices
| 2013-05-17 04:45:50 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-17 04:31:52 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-17 04:02:28 |
| *.afghan.swa.army.mil | 214.27.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | | 2013-05-17 03:03:19 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-17 02:11:40 |
| *.usafricom.mil | 215.67.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | Locking down Windows Vista and Windows 7 against Malicious USB devices
| 2013-05-16 23:38:38 |
| *.usafricom.mil | 215.67.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | Locking down Windows Vista and Windows 7 against Malicious USB devices
| 2013-05-16 23:18:03 |
| *.cnet.navy.Mil | 160.125.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) | VIRGINIA BEACH VA US | | 2013-05-16 20:30:01 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-16 17:07:21 |
| *.dodiis.mil | 198.201.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | Columbus OH US | NetworkMiner for Network Forensics (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-16 16:23:19 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-16 16:10:11 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-16 14:48:04 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-16 14:27:30 |
| *.hud.gov | 170.97.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Washington DC US | Thumbscrew: Software USB Write Blocker | 2013-05-16 14:13:52 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-05-16 13:46:06 |
| *.nmci.navy.mil | 138.163.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | A Quick Intro to Sniffers: Wireshark/Ethereal, ARPSpoof, Ettercap, ARP
poisoning and other niceties. | 2013-05-16 13:40:22 |
| *.od.nih.gov | 165.112.*.* | | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Bethesda MD US | | 2013-05-16 13:25:10 |
| *.gsfc.nasa.gov | 128.183.*.* | Intel Mac OS X 10.7 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:20.0) Gecko/20100101 Firefox/20.0 | MSFC AL US | Manual Page - dsniff(8) | 2013-05-16 12:46:09 |
| *.gsfc.nasa.gov | 128.183.*.* | Intel Mac OS X 10.7 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:20.0) Gecko/20100101 Firefox/20.0 | MSFC AL US | Manual Page - urlsnarf(8) | 2013-05-16 12:45:55 |
| *.stratcom.mil | 143.250.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.3; .NET4.0E; .NET4.0C; USSTRATCOM msie6.0; msie7.0; msie8.0; USSTRATCOM msie6.0sp1) | Columbus OH US | Darknets: Fun and Games with Anonymizing Private Networks | 2013-05-16 12:44:23 |
| *.stratcom.mil | 143.250.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.3; .NET4.0E; .NET4.0C; USSTRATCOM msie6.0; msie7.0; msie8.0; USSTRATCOM msie6.0sp1) | Columbus OH US | | 2013-05-16 12:44:09 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | | 2013-05-16 12:19:18 |
| *.disa.mil | 209.22.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | | 2013-05-16 12:01:41 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | VIRGINIA BEACH VA US | Programmable HID USB Keystroke Dongle: Using the Teensy as a pen testing
device | 2013-05-16 11:42:18 |
| *.nmci.navy.mil | 138.162.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-05-16 11:01:59 |
| *.nmci.navy.mil | 138.162.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-05-16 11:01:53 |
| *.volpe.dot.gov | 152.122.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | | Manual Page - arpspoof(8) | 2013-05-16 10:53:01 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-16 10:30:04 |
| *.durhamcountync.gov | 168.215.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-16 10:16:42 |
| *.bpa.gov | 170.160.*.* | Ubuntu | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:20.0) Gecko/20100101 Firefox/20.0 | Portland OR US | Manual Page - ettercap(8) | 2013-05-16 10:11:21 |
| *.sd.spawar.navy.mil | 128.49.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | VIRGINIA BEACH VA US | Setting up an Ethernet bridge in Ubuntu Linux (Hacking Illustrated Series
InfoSec Tutorial Videos) | 2013-05-16 09:26:36 |
| *.gordon.army.mil | 155.8.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Fort Huachuca AZ US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-16 09:08:02 |
| *.med.navy.mil | 131.158.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-16 08:31:12 |
| *.apg.army.mil | 140.153.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.2) | Fort Huachuca AZ US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-05-16 08:28:25 |
| *.tc.faa.gov | 155.178.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | Atlantic City Airport NJ US | Using Darik's Boot and Nuke (DBAN) to totally wipe a drive (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-16 08:11:19 |
| *.nmci.navy.mil | 138.162.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-05-16 08:10:00 |
| *.sc.pima.gov | 159.233.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Tucson AZ US | | 2013-05-16 07:59:37 |
| *.dhs.gov | 216.81.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET CLR 1.1.4322; InfoPath.2; .NET4.0C; .NET4.0E) | Washington DC US | | 2013-05-16 07:39:21 |
| *.dhs.gov | 216.81.*.* | | Mozilla/4.0 (compatible;) | Washington DC US | Irongeek.com | 2013-05-16 07:39:04 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-16 07:34:17 |
| *.med.navy.mil | 164.167.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET CLR 1.1.4322; .NET4.0C; InfoPath.2; .NET4.0E) | VIRGINIA BEACH VA US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-16 07:33:07 |
| *.volpe.dot.gov | 152.122.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | | Basics of Arpspoofing/Arppoisoning | 2013-05-16 07:21:00 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | | 2013-05-16 07:06:56 |
| *.tn.gov | 170.141.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-05-16 07:03:13 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.5.30729; .NET CLR 3.0.4506.2152; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | | 2013-05-16 06:27:14 |
| *.nmci.navy.mil | 138.162.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-05-16 06:26:00 |
| *.nmci.navy.mil | 138.162.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-05-16 06:25:18 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-16 06:18:00 |
| *.nmci.navy.mil | 138.162.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-05-16 06:18:00 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-16 06:09:27 |
| *.ssmcnet.noaa.gov | 205.156.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Silver Spring MD US | | 2013-05-16 06:05:24 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E; Tablet PC 2.0) | MAFB-Gunter Annex AL US | | 2013-05-16 05:42:58 |
| *.socom.mil | 209.22.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | Columbus OH US | Thumbscrew: Software USB Write Blocker | 2013-05-16 05:20:46 |
| *.afnoc.af.mil | 132.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MAFB-Gunter Annex AL US | | 2013-05-16 05:13:16 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-16 01:51:24 |
| *.dmzout.kaiserslautern.army.mil | 139.139.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Fort Huachuca AZ US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-16 00:35:24 |
| *.fe.navy.mil | 163.251.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-15 23:48:09 |
| *.socom.mil | 214.69.*.* | rv:15.0) Gecko/20100101 Firefox/15.0.1 | Mozilla/5.0 (Windows NT 5.1; rv:15.0) Gecko/20100101 Firefox/15.0.1 | Columbus OH US | Cracking Cached Domain/Active Directory Passwords on Windows XP/2000/2003
| 2013-05-15 23:41:33 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-15 23:36:45 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-15 23:24:02 |
| *.gordon.army.mil | 155.8.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-15 17:26:25 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-15 17:06:12 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-15 16:58:48 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-15 16:13:58 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | VIRGINIA BEACH VA US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-15 16:03:57 |
| *.gordon.army.mil | 155.8.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-15 15:54:57 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-15 15:35:20 |
| *.gordon.army.mil | 155.8.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-15 14:47:13 |
| *.afnoc.af.mil | 132.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MAFB-Gunter Annex AL US | | 2013-05-15 14:28:36 |
| *.cnet.navy.Mil | 160.125.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C) | VIRGINIA BEACH VA US | | 2013-05-15 14:07:13 |
| *.cnet.navy.Mil | 160.125.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | VIRGINIA BEACH VA US | | 2013-05-15 14:02:00 |
| *.gordon.army.mil | 155.8.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-15 13:55:30 |
| *.fnmoc.navy.mil | 152.80.*.* | Linux x86_64 | Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130329 Firefox/17.0 | VIRGINIA BEACH VA US | Sharedhosting MD5 Change Detection Script | 2013-05-15 13:47:33 |
| *.gordon.army.mil | 155.8.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-15 13:15:59 |
| *.gordon.army.mil | 155.8.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-15 12:47:51 |
| *.gordon.army.mil | 155.8.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-15 12:27:56 |
| *.irs.gov | 152.216.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.3; MS-RTC LM 8) | Washington DC US | Programmable HID USB Keystroke Dongle: Using the Teensy as a pen testing
device | 2013-05-15 12:22:01 |
| *.gordon.army.mil | 155.8.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-15 12:12:03 |
| *.nps.gov | 165.83.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.3; .NET4.0C; MS-RTC LM 8) | Washington DC US | Building a boot USB, DVD or CD based on Windows 7 with Winbuilder and Win7PE SE Tutorial | 2013-05-15 12:10:45 |
| *.gordon.army.mil | 155.8.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-15 11:56:06 |
| *.159-142-122-182.gsa.gov | 159.142.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Washington DC US | | 2013-05-15 11:49:21 |
| *.irs.gov | 152.216.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.3; MS-RTC LM 8) | Washington DC US | Programmable HID USB Keystroke Dongle: Using the Teensy as a pen testing
device | 2013-05-15 11:34:40 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-15 11:32:29 |
| *.uscg.mil | 152.121.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.0.30729; InfoPath.2; MS-RTC LM 8; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | | Security and Software Defined Networking: Practical Possibilities and
Potential Pitfalls | 2013-05-15 11:28:44 |
| *.uscg.mil | 152.121.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.0.30729; InfoPath.2; MS-RTC LM 8; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | | Raspberry Pi Recipes | 2013-05-15 11:28:33 |
| *.uscg.mil | 152.121.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.0.30729; InfoPath.2; MS-RTC LM 8; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | | General Network Security | 2013-05-15 11:28:09 |
| *.uscg.mil | 152.121.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.0.30729; InfoPath.2; MS-RTC LM 8; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | | Hackers in Unganda: A Documentary (Kickstarter Project) - Oncee AIDE 2013 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-15 11:27:57 |
| *.uscg.mil | 152.121.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.0.30729; InfoPath.2; MS-RTC LM 8; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | | | 2013-05-15 11:27:41 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-15 11:15:15 |
| *.ssa.gov | 199.173.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; InfoPath.2; .NET CLR 1.1.4322; .NET CLR 3.0.30729; .NET CLR 3.5.30729; .NET4.0C; MS-RTC LM 8) | | | 2013-05-15 11:08:19 |
| *.bop.gov | 149.101.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; QS 4.2.1.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; CMDTDF; .NET4.0C; .NET4.0E) | Potomac MD US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-15 10:54:06 |
| *.net.nih.gov | 128.231.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Bethesda MD US | Security Onion: Network Security Monitoring in Minutes Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-15 10:43:31 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | What can you find out from an IP? | 2013-05-15 10:42:57 |
| *.arl.army.mil | 128.63.*.* | Linux i686 | Mozilla/5.0 (X11; Linux i686; rv:17.0) Gecko/20130329 Firefox/17.0 | Fort Huachuca AZ US | le="text-align:center;">Mutillidae
What is Mutillidae?
Mutillidae is a free, open source web application provided to allow security enthusiest to pen-test and hack
a web application. Mutillidae can be installed on Linux, Windows XP, and Windows 7
using XAMMP making it easy for users who do not want to install or administrate their own webserver.
It is already installed on Samurai WTF. Simply replace existing version with latest on Samurai.
Mutillidae contains dozens of vulnerabilities and hints to help the user exploit them;
providing an easy-to-use web hacking environment deliberately designed to be used as a hack-lab
for security enthusiast, classroom labs, and vulnerability assessment tool targets. Mutillidae has
been used in graduate security courses, in corporate web sec training courses, and as an
"assess the assessor" target for vulnerability software.
Mutillidae has been tested/attacked with Cenzic Hailstorm ARC, W3AF, SQLMAP,
Samurai WTF, Backtrack, HP Web Inspect, Burp-Suite, NetSparker Community Edition, and other tools. If you
would like to practice pen-testing/hacking a web application by exploiting cross-site scripting, sql injection,
response-splitting, html injection, javascript injection, clickjacking, cross frame scripting,
forms-caching, authentication bypass, or many other vulnerabilities, then Mutillidae is for you.
The current version of Mutillidae, code named "NOWASP Mutillidae 2.x", was developed by Jeremy Druin aka webpwnized. Mutillidae 2.x
is based on Adrian "Irongeek" Crenshaw's Mutillidae project which is now refered to as Mutillidae 1.x or Mutillidae classic.
Mutillidae 1.x is still available on Sourceforge along side the current project.
Downloads
Announcements
Quickstart Installation Video
Documentation
Usage Instructions
Mutillidae contains all of the vulnerabilties from the
OWASP Top 10.
Go to the OWASP Top 10 page to read about a vulnerability, then choose it from
the list on the left to try it out. Hints may help.
Mutillidae currently has two modes: secure and insecure (default). In insecure mode, the
project works like Mutillidae 1.0. Pages are vulnerable to at least the topic they
fall under in the menu. Most pages are vulnerable to much more. In secure mode,
Mutillidae attempts to protect the pages with server side scripts. Also, hints are disabled in
secure mode. In the interest of making as many challenges as possible, this can be defeated.
In Mutillidae 2.0, the code has been commented to allow the user to see how the defense works.
To get the most out of the project, avoid reading the source code until after learning how
to exploit it. But if you get stuck, the comments should help. Learning how the attack
works should help to understand the defense.
Get rid of PHP "Strict" Errors
Please see documentation at the Sourceforge documentation page. Please note help file "tips-on-php-strict-errors.txt" concerning PHP strict errors.
Notes
- Created by Jeremy "webpwnized" Druin based on the original Mutillidae project of Irongeek.
- If you would like to learn about other deliberately vulnerable web
applications, check out
Deliberately Insecure Web Applications For Learning Web App Security.
-
Do NOT run this code on a production network. Either run it on a
private network, or restrict your web server software to only use the local
loopback address. By default Mutillidae only allows access from localhost
(127.*.*.*). Edit the .htaccess file to change this behavior (not recommended on a public network).
If for some reason .htaccess is not parsed you can
restrict the IP by finding the "Listen" line in the http.conf file and changing
it to read: Listen 127.0.0.1:80
| 2013-05-15 09:08:00 |
| *.arl.army.mil | 128.63.*.* | Linux i686 | Mozilla/5.0 (X11; Linux i686; rv:17.0) Gecko/20130329 Firefox/17.0 | Fort Huachuca AZ US | Mutillidae: A Deliberately Vulnerable Set Of PHP Scripts That Implement
The OWASP Top 10 | 2013-05-15 09:07:54 |
| *.tic.va.gov | 152.130.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:19.0) Gecko/20100101 Firefox/19.0 | Washington DC US | Tor or not Tor: How to tell if someone is coming from a Tor exit node, in
PHP | 2013-05-15 08:46:49 |
| *.gordon.army.mil | 155.8.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | Plug and Prey: Malicious USB Devices | 2013-05-15 08:44:05 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-15 08:16:07 |
| *.sc.pima.gov | 159.233.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Tucson AZ US | | 2013-05-15 07:48:48 |
| *.usbr.gov | 140.219.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; InfoPath.2; MS-RTC LM 8) | Billings MT US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-15 07:47:44 |
| *.amrdec.army.mil | 199.209.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Columbus OH US | Log Files and Linux. | 2013-05-15 07:16:47 |
| *.amrdec.army.mil | 199.209.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Columbus OH US | Log Files and Linux. | 2013-05-15 07:16:47 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-15 06:59:19 |
| *.sandia.gov | 134.253.*.* | | Mozilla/4.0 (compatible;) | Albuquerque NM US | Irongeek.com | 2013-05-15 06:55:25 |
| *.arl.army.mil | 128.63.*.* | Linux i686 | Mozilla/5.0 (X11; Linux i686; rv:17.0) Gecko/20130329 Firefox/17.0 | Fort Huachuca AZ US | le="text-align:center;">Mutillidae
What is Mutillidae?
Mutillidae is a free, open source web application provided to allow security enthusiest to pen-test and hack
a web application. Mutillidae can be installed on Linux, Windows XP, and Windows 7
using XAMMP making it easy for users who do not want to install or administrate their own webserver.
It is already installed on Samurai WTF. Simply replace existing version with latest on Samurai.
Mutillidae contains dozens of vulnerabilities and hints to help the user exploit them;
providing an easy-to-use web hacking environment deliberately designed to be used as a hack-lab
for security enthusiast, classroom labs, and vulnerability assessment tool targets. Mutillidae has
been used in graduate security courses, in corporate web sec training courses, and as an
"assess the assessor" target for vulnerability software.
Mutillidae has been tested/attacked with Cenzic Hailstorm ARC, W3AF, SQLMAP,
Samurai WTF, Backtrack, HP Web Inspect, Burp-Suite, NetSparker Community Edition, and other tools. If you
would like to practice pen-testing/hacking a web application by exploiting cross-site scripting, sql injection,
response-splitting, html injection, javascript injection, clickjacking, cross frame scripting,
forms-caching, authentication bypass, or many other vulnerabilities, then Mutillidae is for you.
The current version of Mutillidae, code named "NOWASP Mutillidae 2.x", was developed by Jeremy Druin aka webpwnized. Mutillidae 2.x
is based on Adrian "Irongeek" Crenshaw's Mutillidae project which is now refered to as Mutillidae 1.x or Mutillidae classic.
Mutillidae 1.x is still available on Sourceforge along side the current project.
Downloads
Announcements
Quickstart Installation Video
Documentation
Usage Instructions
Mutillidae contains all of the vulnerabilties from the
OWASP Top 10.
Go to the OWASP Top 10 page to read about a vulnerability, then choose it from
the list on the left to try it out. Hints may help.
Mutillidae currently has two modes: secure and insecure (default). In insecure mode, the
project works like Mutillidae 1.0. Pages are vulnerable to at least the topic they
fall under in the menu. Most pages are vulnerable to much more. In secure mode,
Mutillidae attempts to protect the pages with server side scripts. Also, hints are disabled in
secure mode. In the interest of making as many challenges as possible, this can be defeated.
In Mutillidae 2.0, the code has been commented to allow the user to see how the defense works.
To get the most out of the project, avoid reading the source code until after learning how
to exploit it. But if you get stuck, the comments should help. Learning how the attack
works should help to understand the defense.
Get rid of PHP "Strict" Errors
Please see documentation at the Sourceforge documentation page. Please note help file "tips-on-php-strict-errors.txt" concerning PHP strict errors.
Notes
- Created by Jeremy "webpwnized" Druin based on the original Mutillidae project of Irongeek.
- If you would like to learn about other deliberately vulnerable web
applications, check out
Deliberately Insecure Web Applications For Learning Web App Security.
-
Do NOT run this code on a production network. Either run it on a
private network, or restrict your web server software to only use the local
loopback address. By default Mutillidae only allows access from localhost
(127.*.*.*). Edit the .htaccess file to change this behavior (not recommended on a public network).
If for some reason .htaccess is not parsed you can
restrict the IP by finding the "Listen" line in the http.conf file and changing
it to read: Listen 127.0.0.1:80
| 2013-05-15 06:24:17 |
| *.nmci.usmc.mil | 138.162.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.5.30729; .NET CLR 3.0.4506.2152; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-05-15 06:16:51 |
| *.tn.gov | 170.141.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-05-15 06:07:56 |
| *.shrewsbury-ma.gov | 216.195.*.* | Intel Mac OS X 10_8_3) AppleWebKit/536.29.13 (KHTML, like Gecko) Version/6.0.4 Safari/536.29.13 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/536.29.13 (KHTML, like Gecko) Version/6.0.4 Safari/536.29.13 | Shrewsbury MA US | OSfuscate: Change your Windows OS TCP/IP Fingerprint to confuse P0f,
NetworkMiner, Ettercap, Nmap and other OS detection tools | 2013-05-15 06:07:39 |
| *.nmci.navy.mil | 138.162.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | VIRGINIA BEACH VA US | How We Learned Security from Steve - ghostnomad | ghostnomadjr | knuckles | micronomad Notacon 10 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-15 05:54:45 |
| *.shrewsbury-ma.gov | 216.195.*.* | Intel Mac OS X 10_8_3) AppleWebKit/536.29.13 (KHTML, like Gecko) Version/6.0.4 Safari/536.29.13 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/536.29.13 (KHTML, like Gecko) Version/6.0.4 Safari/536.29.13 | Shrewsbury MA US | OSfuscate: Change your Windows OS TCP/IP Fingerprint to confuse P0f,
NetworkMiner, Ettercap, Nmap and other OS detection tools | 2013-05-15 05:36:54 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | VIRGINIA BEACH VA US | Log Files and Linux. | 2013-05-15 05:32:40 |
| *.nmci.navy.mil | 138.162.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | VIRGINIA BEACH VA US | | 2013-05-15 05:22:43 |
| *.nmci.navy.mil | 138.162.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | VIRGINIA BEACH VA US | | 2013-05-15 05:22:37 |
| *.disa.mil | 209.22.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | Basics of Arpspoofing/Arppoisoning | 2013-05-15 05:13:44 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-15 05:06:28 |
| *.mcnosc.usmc.mil | 192.156.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.3; .NET4.0C; .NET4.0E) | QUANTICO VA US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-15 02:56:26 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-15 02:54:23 |
| *.mcnosc.usmc.mil | 192.156.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.3; .NET4.0C; .NET4.0E) | QUANTICO VA US | Tracking users, malware and data leaks via the USB serial numbers on flash drives, smart phones and MP3 players | 2013-05-15 02:53:52 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-15 01:35:34 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-15 00:55:48 |
| *.korea.army.mil | 144.59.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-15 00:55:14 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-14 23:55:16 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-14 23:17:38 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-14 23:03:20 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-14 22:40:29 |
| *.arl.army.mil | 128.63.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.0; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | Irongeek In Print: Books that mention Irongeek.com | 2013-05-14 20:43:09 |
| *.arl.army.mil | 128.63.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.0; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | | 2013-05-14 20:42:37 |
| *.arl.army.mil | 128.63.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.0; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | | 2013-05-14 20:36:55 |
| *.arl.army.mil | 128.63.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.0; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | Homemade Hardware Keylogger/PHUKD Hybrid | 2013-05-14 20:33:19 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-14 20:13:14 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-14 20:02:12 |
| *.usarec.army.mil | 199.123.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.2; .NET4.0C; .NET4.0E) | Fort Huachuca AZ US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-14 19:07:02 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-14 18:05:47 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-05-14 18:04:27 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-14 17:59:14 |
| *.srvs.usps.gov | 56.0.*.* | rv:2.0.1) Gecko/20100101 Firefox/4.0.1 | Mozilla/5.0 (Windows NT 5.1; rv:2.0.1) Gecko/20100101 Firefox/4.0.1 | Raleigh NC US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-05-14 17:54:08 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-14 17:09:54 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-14 15:59:40 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-14 15:02:03 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-14 14:42:27 |
| *.phoenix.gov | 148.167.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Phoenix AZ US | Manual Page - aircrack-ng(1) | 2013-05-14 14:37:58 |
| *.apg.army.mil | 140.153.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:12.0) Gecko/20100101 Firefox/12.0 | Fort Huachuca AZ US | | 2013-05-14 14:08:14 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-14 14:02:22 |
| *.lanl.gov | 192.12.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Los Alamos NM US | OSfuscate: Change your Windows OS TCP/IP Fingerprint to confuse P0f,
NetworkMiner, Ettercap, Nmap and other OS detection tools | 2013-05-14 13:43:12 |
| *.lanl.gov | 192.12.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Los Alamos NM US | OSfuscate: Change your Windows OS TCP/IP Fingerprint to confuse P0f,
NetworkMiner, Ettercap, Nmap and other OS detection tools | 2013-05-14 13:41:42 |
| *.lanl.gov | 192.12.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Los Alamos NM US | OSfuscate: Change your Windows OS TCP/IP Fingerprint to confuse P0f,
NetworkMiner, Ettercap, Nmap and other OS detection tools | 2013-05-14 13:40:42 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-14 13:35:22 |
| *.fnal.gov | 131.225.*.* | Intel Mac OS X 10_8_3) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Batavia IL US | DecaffeinatID: A Very Simple IDS / Log Watching App / ARPWatch For
Windows | 2013-05-14 13:11:38 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-14 12:59:22 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | VIRGINIA BEACH VA US | Programmable HID USB Keystroke Dongle: Using the Teensy as a pen testing
device | 2013-05-14 12:58:28 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | VIRGINIA BEACH VA US | Programmable HID USB Keystroke Dongle: Using the Teensy as a pen testing
device | 2013-05-14 12:41:57 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Tablet PC 2.0; InfoPath.3) | MAFB-Gunter Annex AL US | Using Metasploit to create a reverse Meterpreter payload EXE (Hacking
Illustrated Series InfoSec Tutorial Videos) | 2013-05-14 12:21:44 |
| *.centcom.mil | 214.26.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | Columbus OH US | Domestic Preparedness (the zombie Apocalypse is nigh upon us) Illustrious Niteshad | megalos Notacon 10 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-14 11:23:06 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | MAFB-Gunter Annex AL US | Manual Page - netcat(1) | 2013-05-14 11:15:40 |
| *.in.gov | 108.59.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Indianapolis IN US | Using FOCA to collect Metadata about an organization (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-14 11:02:58 |
| *.fdic.gov | 167.176.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Arlington VA US | Password Exploitation Class (Hacking Illustrated Series InfoSec Tutorial
Videos)(Hashcat, OCLashcat, Cain, SAMDump2, Nir's Password Recovery Tools,
Password Renew, Backtrack 4 R1, UBCD4Win) | 2013-05-14 10:26:32 |
| *.doe.gov | 206.197.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | Washington DC US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-14 10:20:58 |
| *.dhs.gov | 216.81.*.* | | Mozilla/4.0 (compatible;) | Washington DC US | Irongeek.com | 2013-05-14 10:19:53 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-14 10:15:31 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-14 10:11:33 |
| *.fw07.dot.ca.gov | 149.136.*.* | Linux x86_64 | Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20100101 Firefox/17.0 | Sacramento CA US | | 2013-05-14 09:55:20 |
| *.lanl.gov | 192.12.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0 | Los Alamos NM US | Web Application Pen-testing Tutorials With Mutillidae (Hacking
Illustrated Series InfoSec Tutorial Videos) | 2013-05-14 09:51:12 |
| *.dhs.ca.gov | 158.96.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Rancho Cordova CA US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-14 09:31:27 |
| *.nmci.navy.mil | 138.163.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | VIRGINIA BEACH VA US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-14 09:18:41 |
| *.nmci.navy.mil | 138.162.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-05-14 09:09:25 |
| *.kingcounty.gov | 198.49.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.3) | Seattle WA US | | 2013-05-14 09:05:48 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-14 08:51:10 |
| *.maine.gov | 198.182.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET4.0C; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.3) | AUGUSTA ME US | | 2013-05-14 08:48:11 |
| *.doe.gov | 205.254.*.* | WOW64) Presto/2.12.388 Version/12.14 | Opera/9.80 (Windows NT 6.1; WOW64) Presto/2.12.388 Version/12.14 | Washington DC US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-14 08:33:55 |
| *.centcom.mil | 214.26.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | Columbus OH US | | 2013-05-14 08:23:24 |
| *.afnoc.af.mil | 132.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MAFB-Gunter Annex AL US | | 2013-05-14 08:22:24 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | MAFB-Gunter Annex AL US | Web Application Pen-testing Tutorials With Mutillidae (Hacking
Illustrated Series InfoSec Tutorial Videos) | 2013-05-14 08:13:58 |
| *.nmci.navy.mil | 138.162.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-05-14 08:13:25 |
| *.ssa.gov | 199.173.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET CLR 1.1.4322; InfoPath.3; MS-RTC LM 8) | | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-14 08:12:40 |
| *.nmci.navy.mil | 138.162.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | VIRGINIA BEACH VA US | | 2013-05-14 07:10:40 |
| *.ssmcnet.noaa.gov | 205.156.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Silver Spring MD US | | 2013-05-14 06:52:30 |
| *.tn.gov | 170.141.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-05-14 06:07:48 |
| *.kbic-nsn.gov | 206.51.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Baraga MI US | Building a boot USB, DVD or CD based on Windows 7 with Winbuilder and Win7PE SE Tutorial | 2013-05-14 05:45:31 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Fort Huachuca AZ US | Hacking Illustrated: Computer security videos | 2013-05-14 05:28:38 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-14 05:23:09 |
| *.kbic-nsn.gov | 206.51.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Baraga MI US | Building a boot USB, DVD or CD based on Windows 7 with Winbuilder and Win7PE SE Tutorial | 2013-05-14 05:12:03 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-14 02:31:08 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-14 01:37:44 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-14 01:09:55 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-14 00:07:07 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 22:07:08 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 21:53:43 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 20:27:06 |
| *.aviation.dla.mil | 131.81.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | Columbus OH US | State Hacking/Computer Security Laws | 2013-05-13 20:10:07 |
| *.tacom.army.mil | 192.172.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 18:39:10 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 17:55:06 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 17:01:42 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 16:59:04 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 16:11:05 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 15:31:04 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 15:29:41 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 14:59:04 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 14:31:03 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 14:17:49 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 14:07:03 |
| *.rlcn.rl.af.mil | 128.132.*.* | Linux x86_64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.63 Safari/537.31 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.63 Safari/537.31 | MAFB-Gunter Annex AL US | Office XML Steganography Tool | 2013-05-13 14:00:28 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 13:50:15 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 13:47:03 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 13:31:06 |
| *.swpa.gov | 63.76.*.* | MSIE 10.0 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) | | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-13 13:28:54 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 13:21:49 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 13:19:14 |
| *.mccoy.army.mil | 158.6.*.* | MSIE 10.0 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) | Fort Huachuca AZ US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-13 13:15:00 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Tablet PC 2.0; InfoPath.3) | MAFB-Gunter Annex AL US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-13 13:11:37 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Tablet PC 2.0; InfoPath.3) | MAFB-Gunter Annex AL US | | 2013-05-13 13:11:13 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 13:07:03 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Tablet PC 2.0; InfoPath.3) | MAFB-Gunter Annex AL US | Hacking Illustrated: Computer security videos | 2013-05-13 13:03:48 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Tablet PC 2.0; InfoPath.3) | MAFB-Gunter Annex AL US | Mobile Device Hacking: Turning your phone, PDA or internet tablet into a pen-testing platfor | 2013-05-13 13:02:13 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 12:59:03 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Tablet PC 2.0; InfoPath.3) | MAFB-Gunter Annex AL US | BeEF:Browser Exploitation Framework XSS Fun (Hacking Illustrated Series
InfoSec Tutorial Videos) | 2013-05-13 12:57:55 |
| *.y12.doe.gov | 134.167.*.* | | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Oak Ridge TN US | Using GPG/PGP/FireGPG to Encrypt and Sign Email from Gmail (Hacking
Illustrated Series InfoSec Tutorial Videos) | 2013-05-13 12:47:35 |
| *.cotf.navy.mil | 140.31.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | OWASP Top 5 and Mutillidae: Intro to common web vulnerabilities like
Cross Site Scripting (XSS), SQL/Command Injection Flaws, Malicious File
Execution/RFI, Insecure Direct Object Reference and Cross Site Request Forgery
(CSRF/XSRF) (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-13 12:43:10 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 12:43:03 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 12:39:03 |
| *.cotf.navy.mil | 140.31.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | | 2013-05-13 12:37:43 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 12:37:41 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 12:35:03 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 12:31:03 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 12:27:03 |
| *.stewart.army.mil | 192.100.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | Apps/Scripts | 2013-05-13 12:25:06 |
| *.tic.va.gov | 152.133.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Washington DC US | Tor or not Tor: How to tell if someone is coming from a Tor exit node, in
PHP | 2013-05-13 12:24:45 |
| *.ssa.gov | 199.173.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | | | 2013-05-13 12:21:23 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 12:01:40 |
| *.irs.gov | 152.216.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | Washington DC US | Plug and Prey: Malicious USB Devices | 2013-05-13 11:21:22 |
| *.net.cia.gov | 198.81.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | | Irongeek.com | 2013-05-13 11:19:05 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 11:17:40 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 11:09:44 |
| *.stewart.army.mil | 192.100.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-13 11:05:40 |
| *.landandmaritime.dla.mil | 131.74.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | Derbycon 2012 Videos (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-13 11:04:23 |
| *.stewart.army.mil | 192.100.*.* | WOW64) AppleWebKit/534.57.2 (KHTML, like Gecko) Version/5.1.7 Safari/534.57.2 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.57.2 (KHTML, like Gecko) Version/5.1.7 Safari/534.57.2 | Fort Huachuca AZ US | Intro to Wireshark (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-13 11:03:23 |
| *.stewart.army.mil | 192.100.*.* | WOW64) AppleWebKit/534.57.2 (KHTML, like Gecko) Version/5.1.7 Safari/534.57.2 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.57.2 (KHTML, like Gecko) Version/5.1.7 Safari/534.57.2 | Fort Huachuca AZ US | Wi-Fi Basics for Geeks – How Wireless Really Works (Hacking
Illustrated Series InfoSec Tutorial Videos) | 2013-05-13 11:02:30 |
| *.stewart.army.mil | 192.100.*.* | WOW64) AppleWebKit/534.57.2 (KHTML, like Gecko) Version/5.1.7 Safari/534.57.2 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.57.2 (KHTML, like Gecko) Version/5.1.7 Safari/534.57.2 | Fort Huachuca AZ US | Hacking Illustrated: Computer security videos | 2013-05-13 11:00:21 |
| *.tic.va.gov | 152.133.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Washington DC US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-13 10:46:01 |
| *.stewart.army.mil | 192.100.*.* | WOW64) AppleWebKit/534.57.2 (KHTML, like Gecko) Version/5.1.7 Safari/534.57.2 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.57.2 (KHTML, like Gecko) Version/5.1.7 Safari/534.57.2 | Fort Huachuca AZ US | | 2013-05-13 10:45:19 |
| *.stewart.army.mil | 192.100.*.* | WOW64) AppleWebKit/534.57.2 (KHTML, like Gecko) Version/5.1.7 Safari/534.57.2 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.57.2 (KHTML, like Gecko) Version/5.1.7 Safari/534.57.2 | Fort Huachuca AZ US | | 2013-05-13 10:44:41 |
| *.stewart.army.mil | 192.100.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | | 2013-05-13 10:43:28 |
| *.tacom.army.mil | 192.172.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-13 10:36:38 |
| *.dhs.gov | 216.81.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3; MS-RTC LM 8) | Washington DC US | Thumbscrew: Software USB Write Blocker | 2013-05-13 09:50:54 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Tablet PC 2.0; InfoPath.3) | MAFB-Gunter Annex AL US | Using msfpayload and msfencode from Metasploit 3.3 to bypass anti-virus (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-13 09:25:17 |
| *.lanl.gov | 192.12.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Los Alamos NM US | | 2013-05-13 09:24:17 |
| *.ct.gov | 159.247.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | East Hartford CT US | | 2013-05-13 09:05:07 |
| *.ct.gov | 159.247.*.* | MSIE 10.0 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) | East Hartford CT US | | 2013-05-13 08:59:32 |
| *.sandia.gov | 198.102.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Albuquerque NM US | Manual Page - etterfilter(8) | 2013-05-13 08:38:01 |
| *.sandia.gov | 198.102.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Albuquerque NM US | Manual Page - ettercap(8) | 2013-05-13 08:35:02 |
| *.rev.osd.mil | 214.18.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-13 08:33:40 |
| *.army.mil | 143.84.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | Web Application Pen-testing Tutorials With Mutillidae (Hacking
Illustrated Series InfoSec Tutorial Videos) | 2013-05-13 07:37:33 |
| *.amedd.army.mil | 155.220.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; InfoPath.2) | Fort Huachuca AZ US | A Brief Intro To Cryptographic Hashes/MD5 (Hacking Illustrated Series
InfoSec Tutorial Videos) | 2013-05-13 07:29:17 |
| *.uscg.mil | 152.121.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; InfoPath.2; MS-RTC LM 8; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; .NET CLR 3.0.30729) | | Man page of SSIDSNIFF | 2013-05-13 06:42:03 |
| *.fdic.gov | 167.176.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Arlington VA US | Derbycon 2012 Videos (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-13 06:11:43 |
| *.net.cia.gov | 198.81.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | | Irongeek.com | 2013-05-13 06:08:50 |
| *.tn.gov | 170.141.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-05-13 06:07:22 |
| *.cit.nih.gov | 128.231.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Bethesda MD US | Security Onion: Network Security Monitoring in Minutes Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-13 05:43:35 |
| *.state.gov | 169.253.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; InfoPath.2; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) | Washington DC US | | 2013-05-13 05:27:39 |
| *.disa.mil | 214.36.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-13 05:13:36 |
| *.tic.va.gov | 152.133.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2; MS-RTC LM 8; .NET4.0C; .NET4.0E) | Washington DC US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-13 05:01:20 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-12 20:42:50 |
| *.dia.mil | 214.3.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | Columbus OH US | Office XML Steganography Tool | 2013-05-12 16:27:40 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-12 10:05:51 |
| *.afg.usmc.mil | 214.15.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.2; .NET4.0C; .NET4.0E) | Columbus OH US | | 2013-05-12 04:40:24 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-11 20:54:17 |
| *.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-11 18:56:53 |
| *.nsoc.med.osd.mil | 214.1.*.* | Linux i686 on x86_64 | Mozilla/5.0 (X11; Linux i686 on x86_64; rv:17.0) Gecko/20130329 Firefox/17.0 | Columbus OH US | | 2013-05-11 18:55:00 |
| *.sandia.gov | 134.253.*.* | | Mozilla/4.0 (compatible;) | Albuquerque NM US | Irongeek.com | 2013-05-11 13:58:09 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-11 10:52:55 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | MAFB-Gunter Annex AL US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-11 07:06:48 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-11 01:00:39 |
| *.state.gov | 169.253.*.* | | Mozilla/4.0 (compatible;) | Washington DC US | Irongeek.com | 2013-05-11 00:07:03 |
| *.scott.disa.mil | 209.22.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | | 2013-05-10 21:35:25 |
| *.state.gov | 169.253.*.* | WOW64) AppleWebKit/537.22 (KHTML, like Gecko) Chrome/25.0.1364.172 Safari/537.22 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.22 (KHTML, like Gecko) Chrome/25.0.1364.172 Safari/537.22 | Washington DC US | Plug and Prey: Malicious USB Devices | 2013-05-10 18:53:29 |
| *.fw04.dot.ca.gov | 149.136.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Sacramento CA US | Cracking Windows 2000 And XP Passwords With Only Physical Access
| 2013-05-10 16:10:33 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-10 15:30:53 |
| *.riviera.gov | 151.132.*.* | MSIE 10.0 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) | | Practical Guide to Alternative Data Streams in NTFS | 2013-05-10 13:19:51 |
| *.wrair.amedd.army.mil | 141.236.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; InfoPath.2; Tablet PC 2.0) | | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-10 12:55:10 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-05-10 12:43:20 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-05-10 12:31:11 |
| *.usbr.gov | 140.215.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; InfoPath.3) | Denver CO US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-10 11:56:35 |
| *.virginia.gov | 199.89.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Richmond VA US | Cracking Syskey and the SAM on Windows XP, 2000 and NT 4 using Open
Source Tools
| 2013-05-10 11:49:57 |
| *.virginia.gov | 199.89.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Richmond VA US | Auditing Syskey and the SAM on Windows Using Samdump2 and John (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-10 11:43:54 |
| *.afnoc.af.mil | 132.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MAFB-Gunter Annex AL US | | 2013-05-10 11:12:39 |
| *.arc.nasa.gov | 143.232.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MSFC AL US | DecaffeinatID: A Very Simple IDS / Log Watching App / ARPWatch For
Windows | 2013-05-10 11:08:27 |
| *.nmci.navy.mil | 138.163.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2) | VIRGINIA BEACH VA US | Out of Character: Use of Punycode and Homoglyph Attacks to Obfuscate URLs for Phishing
Adrian Crenshaw AIDE 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-10 10:46:58 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.2) | VIRGINIA BEACH VA US | MadMACs: MAC Address Spoofing and Host Name Randomizing App for Windows 7
(Should work in Windows Vista and Windows 8 too) | 2013-05-10 10:27:01 |
| *.dot.gov | 152.120.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.3; MS-RTC LM 8) | Washington DC US | Security Onion: Network Security Monitoring in Minutes Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-10 10:13:01 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-05-10 10:09:55 |
| *.sandia.gov | 134.253.*.* | | Mozilla/4.0 (compatible;) | Albuquerque NM US | Irongeek.com | 2013-05-10 10:04:23 |
| *.ens.ornl.gov | 128.219.*.* | Intel Mac OS X 10_7_5) AppleWebKit/536.28.10 (KHTML, like Gecko) Version/6.0.3 Safari/536.28.10 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_5) AppleWebKit/536.28.10 (KHTML, like Gecko) Version/6.0.3 Safari/536.28.10 | Oak Ridge TN US | How To Trace Fake or Anonymous E-mails | 2013-05-10 09:51:35 |
| *.services.treasury.gov | 166.123.*.* | Intel Mac OS X 10_6_8) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_6_8) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Washington DC US | Using SysInternals' Process Monitor To Analyze Apps and Malware (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-10 09:26:06 |
| *.dot.gov | 152.119.*.* | | Mozilla/4.0 (compatible;) | Washington DC US | Irongeek.com | 2013-05-10 08:55:51 |
| *.ca.gov | 205.225.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | | | 2013-05-10 08:27:23 |
| *.tn.gov | 170.141.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-05-10 08:24:23 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-10 08:21:45 |
| *.nmci.navy.mil | 138.163.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-05-10 07:17:29 |
| *.dmzout.wiesbaden.army.mil | 139.139.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.0.30729; InfoPath.2; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | Fort Huachuca AZ US | Weak Hashing Algorithms: Outlook PST file CRC32 password cracking example (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-10 07:17:10 |
| *.tic.va.gov | 152.130.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Washington DC US | Baby Bubba Finds A New Mummy (Zombie Children's Book) | 2013-05-10 07:16:30 |
| *.mmcs.army.mil | 155.213.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Fort Huachuca AZ US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-10 07:05:18 |
| *.dot.gov | 152.119.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.2) | Washington DC US | Using Cain to sniff RDP/Remote Desktop/Terminal Server traffic via "Man in the Middle" (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-10 05:52:23 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-09 23:19:42 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-05-09 20:42:34 |
| *.nmci.usmc.mil | 138.163.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; QS 4.2.4.0; QS 5.3.0.4; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0E; InfoPath.3; .NET4.0C; QS 4.2.4.0; QS 5.3.0.4) | VIRGINIA BEACH VA US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-09 18:49:51 |
| *.nmci.usmc.mil | 138.163.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; QS 4.2.4.0; QS 5.3.0.4; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0E; InfoPath.3; .NET4.0C; QS 4.2.4.0; QS 5.3.0.4) | VIRGINIA BEACH VA US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-09 18:49:42 |
| *.nmci.usmc.mil | 138.163.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; QS 4.2.4.0; QS 5.3.0.4; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0E; InfoPath.3; .NET4.0C; QS 4.2.4.0; QS 5.3.0.4) | VIRGINIA BEACH VA US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-09 18:49:12 |
| *.nmci.usmc.mil | 138.163.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; QS 4.2.4.0; QS 5.3.0.4; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0E; InfoPath.3; .NET4.0C; QS 4.2.4.0; QS 5.3.0.4) | VIRGINIA BEACH VA US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-09 18:48:36 |
| *.nmci.usmc.mil | 138.163.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; QS 4.2.4.0; QS 5.3.0.4; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0E; InfoPath.3; .NET4.0C; QS 4.2.4.0; QS 5.3.0.4) | VIRGINIA BEACH VA US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-09 18:48:21 |
| *.ddc.dla.mil | 131.76.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | Columbus OH US | | 2013-05-09 18:43:38 |
| *.state.gov | 169.253.*.* | WOW64) AppleWebKit/537.22 (KHTML, like Gecko) Chrome/25.0.1364.172 Safari/537.22 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.22 (KHTML, like Gecko) Chrome/25.0.1364.172 Safari/537.22 | Washington DC US | Auditing MD5 Password Hashes And why not to trust forum admins : ) (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-09 18:33:11 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-09 18:30:04 |
| *.nmci.navy.mil | 138.163.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | VIRGINIA BEACH VA US | Raspberry Pi Recipes | 2013-05-09 16:46:12 |
| *.peacecorps.gov | 65.205.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2; MS-RTC EA 2) | | | 2013-05-09 15:45:39 |
| *.afnoc.af.mil | 132.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MAFB-Gunter Annex AL US | | 2013-05-09 14:21:31 |
| *.public.mt.gov | 161.7.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; InfoPath.3) | Helena MT US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-09 14:21:27 |
| *.cms.hhs.gov | 63.119.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.3; MS-RTC LM 8) | | | 2013-05-09 14:12:50 |
| *.dot.gov | 152.119.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; InfoPath.3; MS-RTC LM 8) | Washington DC US | Security Onion: Network Security Monitoring in Minutes Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-09 13:46:16 |
| *.ct.gov | 159.247.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | East Hartford CT US | | 2013-05-09 13:34:18 |
| *.ashevillenc.gov | 72.250.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Asheville NC US | | 2013-05-09 12:34:12 |
| *.apg.army.mil | 140.153.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.2) | Fort Huachuca AZ US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-09 12:05:35 |
| *.wiesbaden.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-09 11:57:49 |
| *.dfas.mil | 206.39.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.3; MS-RTC LM 8) | Columbus OH US | IndySec Metasploit Class Videos (Hacking Illustrated Series InfoSec
Tutorial Videos) | 2013-05-09 11:33:43 |
| *.sandia.gov | 198.102.*.* | Intel Mac OS X 10_8_3) AppleWebKit/536.28.10 (KHTML, like Gecko) Version/6.0.3 Safari/536.28.10 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/536.28.10 (KHTML, like Gecko) Version/6.0.3 Safari/536.28.10 | Albuquerque NM US | Introduction to Metasploit Post Exploitation Modules (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-09 11:07:49 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-05-09 10:54:25 |
| *.army.mil | 143.84.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | Web Application Pen-testing Tutorials With Mutillidae (Hacking
Illustrated Series InfoSec Tutorial Videos) | 2013-05-09 10:46:20 |
| *.mlrnoc.navy.mil | 205.66.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | VIRGINIA BEACH VA US | Man page of HONEYDCTL | 2013-05-09 10:20:53 |
| *.sd.spawar.navy.mil | 128.49.*.* | Ubuntu | Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:20.0) Gecko/20100101 Firefox/20.0 | VIRGINIA BEACH VA US | Intro To Bluesnarfing By Williamc and Twinvega (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-09 10:16:56 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-09 09:47:48 |
| *.tacom.army.mil | 192.172.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-09 09:38:05 |
| *.nmci.navy.mil | 138.162.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | VIRGINIA BEACH VA US | | 2013-05-09 09:15:30 |
| *.mlrnoc.navy.mil | 205.66.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | VIRGINIA BEACH VA US | Man page of HONEYD | 2013-05-09 09:05:53 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0E; Tablet PC 2.0; .NET4.0C; InfoPath.3) | MAFB-Gunter Annex AL US | Deploying Metasploit's Meterpreter with MITM and an Ettercap filter (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-09 08:40:06 |
| *.nh.gov | 199.192.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; NHDOT) | Concord NH US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-09 08:14:17 |
| *.detrick.army.mil | 140.139.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0 | Fort Huachuca AZ US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-09 07:50:44 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | VIRGINIA BEACH VA US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-09 07:35:55 |
| *.tn.gov | 170.141.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | Security Onion: Network Security Monitoring in Minutes Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-09 07:07:54 |
| *.afnoc.af.mil | 132.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MAFB-Gunter Annex AL US | | 2013-05-09 07:02:14 |
| *.usar.army.mil | 206.39.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Columbus OH US | | 2013-05-09 06:56:46 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-09 06:53:42 |
| *.usar.army.mil | 206.39.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Columbus OH US | | 2013-05-09 06:48:33 |
| *.nmci.navy.mil | 138.163.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-05-09 06:34:32 |
| *.nmci.navy.mil | 138.163.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-05-09 06:30:32 |
| *.nmci.navy.mil | 138.163.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | Personal Darknet or How to get pr0n @ work Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-09 06:26:21 |
| *.nmci.navy.mil | 138.163.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | | 2013-05-09 06:25:45 |
| *.ens.ornl.gov | 128.219.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Oak Ridge TN US | How To Burn An ISO Image To A Bootable CD (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-09 06:17:58 |
| *.irs.gov | 152.216.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.0.3705; .NET CLR 1.1.4322; .NET CLR 2.0.50727; InfoPath.1; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; MS-RTC LM 8) | Washington DC US | File Systems and Thumb Drives: Choosing between FAT16, FAT32 and NTFS to
get a faster USB Flash Drive | 2013-05-09 06:08:47 |
| *.tn.gov | 170.141.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-05-09 06:05:03 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Tablet PC 2.0; InfoPath.3) | MAFB-Gunter Annex AL US | Manual Page - fragroute(8) | 2013-05-09 05:52:56 |
| *.wiesbaden.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-09 05:17:55 |
| *.mmcs.army.mil | 155.19.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Fort Huachuca AZ US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-09 03:07:32 |
| *.178.5.10.nat.tc.faa.gov | 155.178.*.* | | Mozilla/4.0 (compatible;) | Atlantic City Airport NJ US | Irongeek.com | 2013-05-08 23:40:53 |
| *.afghan.swa.army.mil | 214.13.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-05-08 23:21:01 |
| *.korea.army.mil | 143.138.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Fort Huachuca AZ US | | 2013-05-08 22:49:50 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 22:23:15 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 21:08:46 |
| *.nmci.usmc.mil | 138.163.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-08 19:10:53 |
| *.korea.army.mil | 143.138.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | Plug and Prey: Malicious USB Devices | 2013-05-08 18:58:03 |
| *.srvs.usps.gov | 56.0.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0.1) Gecko/20100101 Firefox/4.0.1 | Raleigh NC US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-05-08 17:50:58 |
| *.sd.spawar.navy.mil | 198.253.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-05-08 16:43:42 |
| *.korea.army.mil | 143.138.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | Manual Page - netcat(1) | 2013-05-08 16:20:26 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 15:59:22 |
| *.dmv.ca.gov | 205.225.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-08 14:55:55 |
| *.152.ptldnet.portlandoregon.gov | 74.120.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Portland OR US | Malware Analysis Triage for n00bs - Grecs (@Grecs) AIDE 2013 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-08 14:51:52 |
| *.lewis.army.mil | 150.192.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; MS-RTC LM 8; .NET4.0C; .NET4.0E) | | IPIterator: Iterate through a set of IPs and run a command | 2013-05-08 14:43:03 |
| *.152.ptldnet.portlandoregon.gov | 74.120.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Portland OR US | | 2013-05-08 14:39:23 |
| *.gtwy.uscourts.gov | 199.107.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | San Diego CA US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-05-08 13:42:11 |
| *.gtwy.uscourts.gov | 199.107.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | San Diego CA US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-05-08 13:37:42 |
| *.gtwy.uscourts.gov | 199.107.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | San Diego CA US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-05-08 13:37:26 |
| *.fwgc.dot.ca.gov | 149.136.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Sacramento CA US | What can you find out from an IP? | 2013-05-08 13:23:14 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Tablet PC 2.0; InfoPath.3) | MAFB-Gunter Annex AL US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-08 13:20:43 |
| *.usace.army.mil | 140.194.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E; MS-RTC LM 8) | Fort Huachuca AZ US | | 2013-05-08 12:42:52 |
| *.nsoc.med.osd.mil | 214.1.*.* | Linux i686 on x86_64 | Mozilla/5.0 (X11; Linux i686 on x86_64; rv:17.0) Gecko/20130329 Firefox/17.0 | Columbus OH US | Basic Setup of Security-Onion: Snort, Snorby, Barnyard, PulledPork,
Daemonlogger (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-08 12:42:04 |
| *.xr.usgs.gov | 136.177.*.* | Intel Mac OS X 10.6 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:20.0) Gecko/20100101 Firefox/20.0 | Reston VA US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-08 12:38:34 |
| *.sd.spawar.navy.mil | 128.49.*.* | Linux x86_64 | Mozilla/5.0 (X11; Linux x86_64; rv:10.0.5) Gecko/20120606 Firefox/10.0.5 | VIRGINIA BEACH VA US | MadMACs: MAC Address Spoofing and Host Name Randomizing App for Windows 7
(Should work in Windows Vista and Windows 8 too) | 2013-05-08 12:38:27 |
| *.nsoc.med.osd.mil | 214.1.*.* | Linux i686 on x86_64 | Mozilla/5.0 (X11; Linux i686 on x86_64; rv:17.0) Gecko/20130329 Firefox/17.0 | Columbus OH US | Basic Setup of Security-Onion: Snort, Snorby, Barnyard, PulledPork,
Daemonlogger (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-08 12:18:16 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | MAFB-Gunter Annex AL US | A Quick Intro to Sniffers: Wireshark/Ethereal, ARPSpoof, Ettercap, ARP
poisoning and other niceties. | 2013-05-08 12:12:46 |
| *.wcb.ny.gov | 12.107.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; InfoPath.3; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; BO1IE8_v1;ENUS) | | | 2013-05-08 12:11:03 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 11:48:40 |
| *.nlm.nih.gov | 130.14.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Bethessda MD US | Manual Page - freebcp(1) | 2013-05-08 11:43:28 |
| *.dt.navy.mil | 192.5.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | Review of the UT-41 GPS, and a little about getting it to work with
Kismet in BackTrack Linux | 2013-05-08 11:26:26 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 11:23:49 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 10:59:25 |
| *.vra.pr.gov | 64.185.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-08 10:28:30 |
| *.ngb.army.mil | 132.79.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.0; Trident/5.0) | Fort Huachuca AZ US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-05-08 10:14:44 |
| *.yuma.army.mil | 6.3.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | | 2013-05-08 10:06:00 |
| *.srvs.usps.gov | 56.0.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; GTB7.4; .NET CLR 1.0.3705; .NET CLR 2.0.50727; InfoPath.1; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; NISSC; NISSC) | Raleigh NC US | Side-Track: Security/Pen-testing Distribution Of Linux For The ZipIt Z2 | 2013-05-08 09:48:39 |
| *.afnoc.af.mil | 132.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MAFB-Gunter Annex AL US | | 2013-05-08 09:27:47 |
| *.nmci.navy.mil | 138.162.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-05-08 09:27:33 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | VIRGINIA BEACH VA US | Manual Page - netcat(1) | 2013-05-08 09:25:14 |
| *.ndc.nasa.gov | 128.183.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MSFC AL US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-08 09:08:57 |
| *.arl.army.mil | 158.12.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | | 2013-05-08 08:56:29 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-05-08 08:47:29 |
| *.irs.gov | 152.216.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.1; .NET CLR 1.0.3705; .NET CLR 1.1.4322; .NET CLR 2.0.50727; MS-RTC LM 8) | Washington DC US | | 2013-05-08 08:45:45 |
| *.irs.gov | 152.216.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.3; .NET4.0C; .NET4.0E; MS-RTC LM 8) | Washington DC US | | 2013-05-08 08:44:57 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 08:41:37 |
| *.ngb.army.mil | 132.79.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E) | Fort Huachuca AZ US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-05-08 08:29:19 |
| *.nps.gov | 165.83.*.* | Linux i686 | Mozilla/5.0 (X11; Linux i686; rv:20.0) Gecko/20100101 Firefox/20.0 | Washington DC US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-08 08:18:03 |
| *.state.gov | 169.252.*.* | WOW64) AppleWebKit/537.22 (KHTML, like Gecko) Chrome/25.0.1364.172 Safari/537.22 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.22 (KHTML, like Gecko) Chrome/25.0.1364.172 Safari/537.22 | Washington DC US | | 2013-05-08 08:08:03 |
| *.dhs.gov | 216.81.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Washington DC US | Raspberry Pi Recipes | 2013-05-08 07:16:51 |
| *.nps.gov | 165.83.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Washington DC US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-08 06:36:31 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | MAFB-Gunter Annex AL US | About Adrian | 2013-05-08 06:33:20 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 06:22:22 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Iron/26.0.1450.0 Chrome/26.0.1450.0 Safari/537.36 | MAFB-Gunter Annex AL US | Phreaknic 12 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-08 06:16:52 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Iron/26.0.1450.0 Chrome/26.0.1450.0 Safari/537.36 | MAFB-Gunter Annex AL US | SkyDogCon 2011 Videos (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-05-08 06:15:55 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Iron/26.0.1450.0 Chrome/26.0.1450.0 Safari/537.36 | MAFB-Gunter Annex AL US | PhreakNIC 16 (2012) Videos (Hacking Illustrated Series InfoSec
Tutorial Videos) | 2013-05-08 06:15:30 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Iron/26.0.1450.0 Chrome/26.0.1450.0 Safari/537.36 | MAFB-Gunter Annex AL US | Hacking Illustrated: Computer security videos | 2013-05-08 06:15:21 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Iron/26.0.1450.0 Chrome/26.0.1450.0 Safari/537.36 | MAFB-Gunter Annex AL US | About Adrian | 2013-05-08 06:12:58 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Iron/26.0.1450.0 Chrome/26.0.1450.0 Safari/537.36 | MAFB-Gunter Annex AL US | | 2013-05-08 06:12:03 |
| *.tn.gov | 170.141.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-05-08 06:04:49 |
| *.gordon.army.mil | 155.8.*.* | U | Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.17) Gecko/20110420 Firefox/3.6.17 | Fort Huachuca AZ US | | 2013-05-08 05:53:40 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | | 2013-05-08 05:35:38 |
| *.centcom.mil | 214.26.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3; .NET CLR 1.1.4322) | Columbus OH US | Links for Doxing, Personal OSInt, Profiling, Footprinting, Cyberstalking | 2013-05-08 04:57:57 |
| *.faa.gov | 162.58.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) ; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 1.1.4322; .NET CLR 3.0.04506.648; .NET4.0C; .NET4.0E; AskTbORJ/5.12.3.17451) | Oklahoma City OK US | | 2013-05-08 04:51:30 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 04:38:53 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 03:23:16 |
| *.tc.faa.gov | 155.178.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) | Atlantic City Airport NJ US | Finding Rogue SMB File Shares On Your Network | 2013-05-08 03:00:36 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 02:27:34 |
| *.wiesbaden.army.mil | 139.139.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Fort Huachuca AZ US | Manual Page - urlsnarf(8) | 2013-05-08 01:44:05 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 01:43:12 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 01:38:52 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 01:07:59 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 00:43:52 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 00:32:36 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-08 00:29:43 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 00:24:34 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 00:12:18 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-08 00:04:18 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-07 23:56:24 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-07 23:52:21 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Fort Huachuca AZ US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-07 23:47:33 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Fort Huachuca AZ US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-07 23:46:35 |
| *.dmzout.grafenwoehr.army.mil | 139.139.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Fort Huachuca AZ US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-07 23:43:14 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-07 23:34:08 |
| *.sandia.gov | 198.102.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Albuquerque NM US | Manual Page - ettercap(8) | 2013-05-06 10:51:31 |
| *.jpl.nasa.gov | 128.149.*.* | U | Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.24) Gecko/20111104 Red Hat/3.6.24-3.el6_1 Firefox/3.6.24 | MSFC AL US | Plug and Prey: Malicious USB Devices | 2013-05-06 10:46:21 |
| *.sc.pima.gov | 159.233.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Tucson AZ US | | 2013-05-06 10:25:29 |
| *.missi.ncsc.mil | 144.51.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Columbus OH US | Footprinting, scoping and recon with DNS, Google Hacking and Metadata (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-06 10:24:50 |
| *.tic.va.gov | 152.130.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Washington DC US | What can you find out from an IP? | 2013-05-06 10:10:56 |
| *.jtfgtmo.southcom.mil | 130.22.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | | 2013-05-06 08:03:04 |
| *.sandia.gov | 198.102.*.* | Intel Mac OS X 10_7_5) AppleWebKit/536.26.17 (KHTML, like Gecko) Version/6.0.2 Safari/536.26.17 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_5) AppleWebKit/536.26.17 (KHTML, like Gecko) Version/6.0.2 Safari/536.26.17 | Albuquerque NM US | The Evolution of HFC Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-06 07:58:53 |
| *.afghan.swa.army.mil | 214.13.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | Pen-testing practice in a box: How to assemble a virtual network (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-06 07:22:42 |
| *.afghan.swa.army.mil | 214.13.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | Pen-testing practice in a box: How to assemble a virtual network (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-06 07:21:36 |
| *.ptr.hqda.pentagon.mil | 134.11.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | BeEF:Browser Exploitation Framework XSS Fun (Hacking Illustrated Series
InfoSec Tutorial Videos) | 2013-05-06 07:10:36 |
| *.sandia.gov | 198.102.*.* | Intel Mac OS X 10_7_5) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_5) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Albuquerque NM US | Irongeek In Print: Books that mention Irongeek.com | 2013-05-06 07:08:06 |
| *.srvs.usps.gov | 56.0.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Raleigh NC US | Manual Page - netcat(1) | 2013-05-06 07:06:29 |
| *.sandia.gov | 198.102.*.* | Intel Mac OS X 10_7_5) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_5) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Albuquerque NM US | The Evolution of HFC Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-06 07:04:11 |
| *.sandia.gov | 198.102.*.* | Intel Mac OS X 10_7_5) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_5) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Albuquerque NM US | The Evolution of HFC Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-06 07:03:58 |
| *.sandia.gov | 198.102.*.* | Intel Mac OS X 10_7_5) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_5) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Albuquerque NM US | Derbycon 2012 Videos (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-06 07:03:22 |
| *.tc.faa.gov | 155.178.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | Atlantic City Airport NJ US | | 2013-05-06 06:47:24 |
| *.sandia.gov | 198.102.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Albuquerque NM US | Manual Page - ettercap(8) | 2013-05-06 06:47:02 |
| *.sandia.gov | 198.102.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Albuquerque NM US | Fun with Ettercap Filters | 2013-05-06 06:43:30 |
| *.tn.gov | 170.141.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-05-06 06:03:24 |
| *.dia.mil | 214.3.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | Columbus OH US | DC to Daylight: A whirlwind tour of the radio spectrum, and why it matters. - Stormgren Notacon 10 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-06 05:51:51 |
| *.dia.mil | 214.3.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | Columbus OH US | | 2013-05-06 05:51:04 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-05-06 05:26:39 |
| *.afnoc.af.mil | 132.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MAFB-Gunter Annex AL US | | 2013-05-06 05:15:29 |
| *.ssmcnet.noaa.gov | 205.156.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Silver Spring MD US | | 2013-05-06 04:36:44 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-06 01:00:17 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-05 21:03:00 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-05 19:37:53 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-05 19:15:56 |
| *.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-05 16:27:07 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-05 11:26:00 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-05 06:02:35 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-05 05:36:10 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-05 04:54:28 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-05 04:07:03 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-05 03:24:29 |
| *.socom.mil | 214.69.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.3) | Columbus OH US | | 2013-05-04 22:14:37 |
| *.csd.disa.mil | 158.15.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | | 2013-05-04 22:12:22 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-04 20:42:36 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-04 18:11:50 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-04 16:34:11 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-04 15:04:19 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-04 11:52:05 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-04 10:21:48 |
| *.wood.army.mil | 155.9.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | Bluecasing: War Nibbling, Bluetooth and Petty Theft | 2013-05-04 09:32:08 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-04 08:38:45 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-04 06:27:00 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-04 06:17:23 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-04 03:22:51 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-04 03:12:01 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-04 00:41:15 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-04 00:28:52 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-03 23:32:02 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 22:09:35 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-03 21:40:02 |
| *.scott.disa.mil | 209.22.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | | 2013-05-03 21:00:12 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 20:14:11 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 18:38:41 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 17:19:06 |
| *.dot.gov | 152.119.*.* | | Mozilla/4.0 (compatible;) | Washington DC US | Irongeek.com | 2013-05-03 16:53:29 |
| *.dodiis.mil | 198.201.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.4506.2152) | Columbus OH US | ShmooCon Firetalks 2013 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-03 16:21:42 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-03 16:11:55 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 16:11:27 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-03 15:46:18 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 15:15:44 |
| *.nv.doe.gov | 192.100.*.* | Intel Mac OS X 10.6 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:20.0) Gecko/20100101 Firefox/20.0 | Las Vegas NV US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-03 15:11:44 |
| *.tn.gov | 170.141.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-05-03 15:09:15 |
| *.tn.gov | 170.141.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-05-03 15:01:22 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 14:27:59 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-03 14:26:16 |
| *.dot.gov | 152.119.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; InfoPath.3; MS-RTC LM 8) | Washington DC US | Security Onion: Network Security Monitoring in Minutes Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-03 14:15:19 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-03 14:07:58 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 13:48:11 |
| *.dmdc.osd.mil | 214.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.3; .NET4.0C; .NET4.0E) | Columbus OH US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-03 13:40:06 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Tablet PC 2.0; InfoPath.3) | MAFB-Gunter Annex AL US | Using msfpayload and msfencode from Metasploit 3.3 to bypass anti-virus (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-03 13:35:31 |
| *.frb.gov | 132.200.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:19.0) Gecko/20100101 Firefox/19.0 | Washington DC US | | 2013-05-03 13:21:33 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 13:16:21 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 12:48:30 |
| *.amedd.army.mil | 155.220.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; InfoPath.2) | Fort Huachuca AZ US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-03 12:47:30 |
| *.ptr.hqda.pentagon.mil | 134.11.*.* | Intel Mac OS X 10_6_8) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_6_8) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Fort Huachuca AZ US | Auditing Syskey and the SAM on Windows Using Samdump2 and John (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-03 12:45:26 |
| *.usace.army.mil | 140.194.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Fort Huachuca AZ US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-03 12:43:36 |
| *.irs.gov | 152.216.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.3; MS-RTC LM 8) | Washington DC US | | 2013-05-03 12:34:17 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 12:24:37 |
| *.polk.army.mil | 146.53.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0 | Fort Huachuca AZ US | | 2013-05-03 12:15:25 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 12:04:43 |
| *.ssmcnet.noaa.gov | 205.156.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Silver Spring MD US | | 2013-05-03 11:59:47 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3; Tablet PC 2.0) | MAFB-Gunter Annex AL US | BeEF:Browser Exploitation Framework XSS Fun (Hacking Illustrated Series
InfoSec Tutorial Videos) | 2013-05-03 11:53:23 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 11:48:48 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 11:36:52 |
| *.dia.mil | 214.3.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | Columbus OH US | Setting up a simple web proxy with CGIProxy (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-03 11:36:21 |
| *.ssa.gov | 199.173.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET CLR 1.1.4322; .NET4.0C; InfoPath.3; MS-RTC LM 8) | | | 2013-05-03 11:35:51 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 11:24:56 |
| *.dia.mil | 214.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | Setting up a Tarpit (Teergrube) to slow worms and network scanners using LaBrea (The "Sticky" Honeypot and IDS) (Hacking Illustrated Series
InfoSec Tutorial Videos) | 2013-05-03 11:24:26 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 11:16:58 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 11:09:01 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 11:01:03 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 10:57:04 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 10:53:06 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 10:49:07 |
| *.state.gov | 169.252.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.3) | Washington DC US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-03 10:45:42 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/4.0 (compatible;) | Raleigh NC US | Irongeek.com | 2013-05-03 10:45:08 |
| *.wood.army.mil | 155.9.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-03 10:44:09 |
| *.nmci.navy.mil | 138.162.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | VIRGINIA BEACH VA US | | 2013-05-03 10:42:43 |
| *.srvs.usps.gov | 56.0.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Raleigh NC US | Manual Page - netcat(1) | 2013-05-03 10:41:09 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Tablet PC 2.0; InfoPath.3) | MAFB-Gunter Annex AL US | Web Application Pen-testing Tutorials With Mutillidae (Hacking
Illustrated Series InfoSec Tutorial Videos) | 2013-05-03 10:37:28 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-03 10:17:46 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-03 09:43:56 |
| *.soc.mil | 204.34.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2; .NET4.0C; .NET4.0E) | Columbus OH US | | 2013-05-03 08:44:39 |
| *.state.gov | 169.252.*.* | | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.22 (KHTML, like Gecko) Chrome/25.0.1364.172 Safari/537.22 | Washington DC US | MadMACs: MAC Address Spoofing and Host Name Randomizing App for Windows 7
(Should work in Windows Vista and Windows 8 too) | 2013-05-03 08:44:16 |
| *.ustranscom.mil | 214.3.*.* | | CBTPlayer | Columbus OH US | | 2013-05-03 08:32:40 |
| *.faa.gov | 162.58.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | Oklahoma City OK US | | 2013-05-03 08:10:48 |
| *.fwgc.dot.ca.gov | 149.136.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; InfoPath.2; MS-RTC LM 8) | Sacramento CA US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-05-03 07:56:01 |
| *.afghan.swa.army.mil | 214.27.*.* | | Mozilla/4.0 (compatible;) | Columbus OH US | Irongeek.com | 2013-05-03 07:32:51 |
| *.jud.ct.gov | 198.177.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.3) | East Hartford CT US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-03 07:18:50 |
| *.tic.va.gov | 152.130.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Washington DC US | Cracking Windows 2000 And XP Passwords With Only Physical Access
| 2013-05-03 07:13:41 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-03 07:12:27 |
| *.nswc.navy.mil | 198.91.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | | Basic Setup of Security-Onion: Snort, Snorby, Barnyard, PulledPork,
Daemonlogger (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-03 06:54:46 |
| *.dot.gov | 152.120.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:13.0) Gecko/20100101 Firefox/13.0.1 | Washington DC US | Security Onion: Network Security Monitoring in Minutes Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-03 06:46:58 |
| *.tn.gov | 170.141.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-05-03 06:37:58 |
| *.rttc.army.mil | 147.241.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-03 06:33:31 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Tablet PC 2.0; InfoPath.3) | MAFB-Gunter Annex AL US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-03 06:19:31 |
| *.dia.mil | 214.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2; .NET4.0C; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET CLR 1.1.4322) | Columbus OH US | Links for Doxing, Personal OSInt, Profiling, Footprinting, Cyberstalking | 2013-05-03 06:15:27 |
| *.dia.mil | 214.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2; .NET4.0C; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET CLR 1.1.4322) | Columbus OH US | Rick Hayes + Karthik Rangarajan – OSINT Beyond the Basics Derbycon 2011 (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-05-03 06:15:13 |
| *.dia.mil | 214.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2; .NET4.0C; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET CLR 1.1.4322) | Columbus OH US | Derbycon 2011 Videos (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-03 06:14:57 |
| *.dia.mil | 214.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2; .NET4.0C; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET CLR 1.1.4322) | Columbus OH US | Hacking Illustrated: Computer security videos | 2013-05-03 06:14:46 |
| *.dia.mil | 214.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2; .NET4.0C; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET CLR 1.1.4322) | Columbus OH US | | 2013-05-03 06:14:39 |
| *.in.gov | 108.59.*.* | | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Indianapolis IN US | | 2013-05-03 06:13:14 |
| *.services.treasury.gov | 166.123.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Washington DC US | | 2013-05-03 06:11:38 |
| *.ptr.hqda.pentagon.mil | 141.116.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | | | 2013-05-03 06:02:28 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-03 06:01:17 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-03 05:43:11 |
| *.state.gov | 169.252.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.3) | Washington DC US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-03 05:35:54 |
| *.centcom.mil | 214.26.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | Columbus OH US | | 2013-05-03 05:25:04 |
| *.nara.gov | 207.245.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 6.1; rv:17.0) Gecko/20100101 Firefox/17.0 | COLLEGE PARK MD US | Thumbscrew: Software USB Write Blocker | 2013-05-03 04:34:42 |
| *.159.127.171.4k.usda.gov | 199.159.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Fort Collins CO US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-05-03 03:30:55 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-03 01:28:31 |
| *.afghan.swa.army.mil | 214.27.*.* | | Mozilla/4.0 (compatible;) | Columbus OH US | Irongeek.com | 2013-05-03 00:52:58 |
| *.afghan.swa.army.mil | 214.13.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | Encryption for Everyone - Dru Streicher (_node) Notacon 10 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-03 00:21:14 |
| *.afghan.swa.army.mil | 214.13.*.* | | Mozilla/4.0 (compatible;) | Columbus OH US | Irongeek.com | 2013-05-03 00:16:10 |
| *.afghan.swa.army.mil | 214.13.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | Hacking Illustrated: Computer security videos | 2013-05-03 00:15:35 |
| *.afghan.swa.army.mil | 214.13.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | Cain to ARP poison and sniff passwords (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-03 00:08:19 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-02 23:58:40 |
| *.ngb.army.mil | 132.79.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-02 22:46:23 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-05-02 22:19:15 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-02 22:03:53 |
| *.kuwait.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-02 21:13:51 |
| *.dmzout.wiesbaden.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-02 20:32:57 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-02 01:58:11 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-02 00:41:44 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-02 00:24:50 |
| *.pac.army.mil | 143.46.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E) | Fort Huachuca AZ US | Moar Anti-Forensics – Moar Louise Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 23:49:13 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 23:30:19 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-01 23:09:14 |
| *.afghan.swa.army.mil | 214.27.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-01 22:39:39 |
| *.pac.army.mil | 143.46.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E) | Fort Huachuca AZ US | int0x80 (of Dual Core) – Anti-Forensics for the Louise Derbycon 2011 (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-05-01 22:31:54 |
| *.dmzout.kaiserslautern.army.mil | 139.139.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Fort Huachuca AZ US | David Cowen: Running a Successful Red Team Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 22:24:13 |
| *.pac.army.mil | 143.46.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E) | Fort Huachuca AZ US | int0x80 (of Dual Core) – Anti-Forensics for the Louise Derbycon 2011 (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-05-01 22:07:18 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-01 22:05:33 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 21:26:10 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-01 21:13:50 |
| *.dmzout.wiesbaden.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-01 20:30:26 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-01 20:30:03 |
| *.redstone.army.mil | 136.205.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-01 20:01:19 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-01 19:54:17 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 19:42:09 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-01 19:22:24 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-01 18:58:31 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-01 18:38:38 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-01 18:18:44 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 18:14:09 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-01 18:02:48 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-01 17:51:07 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-01 17:39:04 |
| *.lanl.gov | 192.12.*.* | | Mozilla/4.0 (compatible;) | Los Alamos NM US | Irongeek.com | 2013-05-01 17:27:08 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 17:02:08 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-01 16:56:15 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 16:02:07 |
| *.osis.gov | 206.112.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | | | 2013-05-01 15:29:53 |
| *.osis.gov | 206.112.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | | | 2013-05-01 15:29:33 |
| *.lanl.gov | 192.12.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Los Alamos NM US | MadMACs: MAC Address Spoofing and Host Name Randomizing App for Windows 7
(Should work in Windows Vista and Windows 8 too) | 2013-05-01 15:19:00 |
| *.usdoj.gov | 149.101.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; DOJ3jx7bf; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2; DOJ3jx7bf; .NET4.0C; .NET4.0E; DOJ3jx7bf) | Potomac MD US | | 2013-05-01 15:10:37 |
| *.usdoj.gov | 149.101.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; DOJ3jx7bf; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2; DOJ3jx7bf; .NET4.0C; .NET4.0E; DOJ3jx7bf) | Potomac MD US | | 2013-05-01 15:10:37 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 15:10:07 |
| *.gtwy.uscourts.gov | 199.107.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | San Diego CA US | Out of Character: Use of Punycode and Homoglyph Attacks to Obfuscate URLs
for Phishing | 2013-05-01 15:05:15 |
| *.cts.wa.gov | 198.239.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Olympia WA US | Practical Guide to Alternative Data Streams in NTFS | 2013-05-01 14:36:09 |
| *.ndc.nasa.gov | 143.232.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | MSFC AL US | Intro to Scanning: Nmap, Hping, Amap, TCPDump, Metasploit, etc. Jeremy
Druin (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 14:34:16 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-01 14:31:42 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 14:26:07 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-05-01 14:02:12 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 13:50:06 |
| *.dcma.mil | 144.183.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; CognosRCP; .NET4.0C; InfoPath.3) | Columbus OH US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-01 13:47:43 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 13:22:07 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 12:58:06 |
| *.nv.doe.gov | 192.100.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E; InfoPath.3) | Las Vegas NV US | | 2013-05-01 12:56:07 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 12:38:06 |
| *.gao.gov | 161.203.*.* | rv:18.0) Gecko/20100101 Firefox/18.0 | Mozilla/5.0 (Windows NT 5.1; rv:18.0) Gecko/20100101 Firefox/18.0 | Washington DC US | | 2013-05-01 12:33:13 |
| *.nist.gov | 129.6.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Gaithersburg MD US | HP Printer Display Hack | 2013-05-01 12:19:50 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 12:18:06 |
| *.leavenworth.army.mil | 141.107.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 11:58:06 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 11:37:56 |
| *.arl.army.mil | 158.12.*.* | Linux x86_64 | Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130329 Firefox/17.0 | Fort Huachuca AZ US | Using SysInternals' Process Monitor To Analyze Apps and Malware (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 11:25:13 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.3) | | SkyDogCon 2012 Videos (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-05-01 10:20:21 |
| *.boston.gov | 140.241.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; GTB7.4; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; Tablet PC 2.0) | | Nmap Video Tutorial 2: Port Scan Boogaloo (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 10:10:20 |
| *.kingcounty.gov | 198.49.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Seattle WA US | | 2013-05-01 10:08:41 |
| *.dhs.gov | 216.81.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; DHSI60SP1001; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3; DHSI70; IE8Mercury) | Washington DC US | Tracking users, malware and data leaks via the USB serial numbers on flash drives, smart phones and MP3 players | 2013-05-01 10:08:07 |
| *.redstone.army.mil | 136.205.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | Using Metasploit to create a reverse Meterpreter payload EXE (Hacking
Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 09:53:22 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.3) | | Build a UAV! SkyDogCon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 09:50:34 |
| *.polk.army.mil | 146.53.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Fort Huachuca AZ US | | 2013-05-01 09:38:30 |
| *.jtfgtmo.southcom.mil | 130.22.*.* | | Mozilla/4.0 (compatible;) | Columbus OH US | Irongeek.com | 2013-05-01 09:37:14 |
| *.jtfgtmo.southcom.mil | 130.22.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | | 2013-05-01 09:34:11 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.3) | | Build a UAV! SkyDogCon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 09:33:59 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.3) | | SkyDogCon 2012 Videos (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-05-01 09:33:51 |
| *.irs.gov | 152.216.*.* | Intel Mac OS X 10.6 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:10.0.2) Gecko/20100101 Firefox/10.0.2 | Washington DC US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-05-01 09:15:42 |
| *.belvoir.army.mil | 128.190.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-01 09:10:30 |
| *.afnoc.af.mil | 132.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MAFB-Gunter Annex AL US | | 2013-05-01 09:03:23 |
| *.79.154.4.iarc.nv.gov | 64.79.*.* | Linux x86_64 | Mozilla/5.0 (X11; Linux x86_64; rv:10.0.12) Gecko/20130104 Firefox/10.0.12 | | Workout at the Gym | 2013-05-01 08:56:12 |
| *.79.154.4.iarc.nv.gov | 64.79.*.* | Linux x86_64 | Mozilla/5.0 (X11; Linux x86_64; rv:10.0.12) Gecko/20130104 Firefox/10.0.12 | | | 2013-05-01 08:55:06 |
| *.fsed.army.mil | 131.92.*.* | | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Fort Huachuca AZ US | Creating An Auto Hack USB Drive Using Autorun and Batch Files.
By Dosk3n (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 08:32:25 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 08:23:35 |
| *.net.cia.gov | 198.81.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | | Irongeek.com | 2013-05-01 07:55:19 |
| *.net.cia.gov | 198.81.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | | Irongeek.com | 2013-05-01 07:55:16 |
| *.dhs.gov | 216.81.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3; MS-RTC LM 8) | Washington DC US | | 2013-05-01 07:47:44 |
| *.osti.gov | 192.107.*.* | Intel Mac OS X 10_8_3) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Oak Ridge TN US | Irongeek.com | 2013-05-01 07:43:37 |
| *.osti.gov | 192.107.*.* | Intel Mac OS X 10_8_3) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Oak Ridge TN US | Manual Page - netcat(1) | 2013-05-01 07:43:36 |
| *.leavenworth.army.mil | 141.107.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0 | | | 2013-05-01 07:31:06 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727) | VIRGINIA BEACH VA US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-01 07:23:40 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-05-01 07:09:56 |
| *.tc.faa.gov | 155.178.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Atlantic City Airport NJ US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-05-01 06:56:18 |
| *.tn.gov | 170.141.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-05-01 06:07:20 |
| *.dmzout.wiesbaden.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-01 05:49:12 |
| *.gordon.army.mil | 155.8.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | Fort Huachuca AZ US | ShmooCon Firetalks 2013 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 05:38:49 |
| *.afnoc.af.mil | 132.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MAFB-Gunter Annex AL US | | 2013-05-01 05:04:02 |
| *.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-01 04:37:04 |
| *.scott.disa.mil | 209.22.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | Setting up the HoneyBOT HoneyPot (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 04:23:51 |
| *.scott.disa.mil | 209.22.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | MAC Bridging with Windows XP and Sniffing (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 04:23:38 |
| *.scott.disa.mil | 209.22.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | Setting up an Ethernet bridge in Ubuntu Linux (Hacking Illustrated Series
InfoSec Tutorial Videos) | 2013-05-01 03:55:45 |
| *.scott.disa.mil | 209.22.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | Xmas scan with Nmap (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 03:16:27 |
| *.scott.disa.mil | 209.22.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | RFID Show and Tell With Kn1ghtl0rd and lowtek mystik From PhreakNIC 2007
(Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 03:06:51 |
| *.scott.disa.mil | 209.22.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | Start a session and get interactive commandline access to a remote Windows box (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-05-01 03:06:22 |
| *.scott.disa.mil | 209.22.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | Hacking Illustrated: Computer security videos | 2013-05-01 03:06:06 |
| *.scott.disa.mil | 209.22.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | | 2013-05-01 03:06:00 |
| *.redstone.army.mil | 136.205.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-01 02:30:45 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-01 01:03:37 |
| *.ngb.army.mil | 132.79.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-05-01 00:40:43 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-30 23:49:47 |
| *.nmci.usmc.mil | 138.163.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | Practical Guide to Alternative Data Streams in NTFS | 2013-04-30 22:48:25 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-30 22:25:47 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-30 21:13:46 |
| *.dmzout.wiesbaden.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-30 20:26:07 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-30 20:13:46 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-30 19:25:46 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-30 18:45:46 |
| *.smdck.smdc.army.mil | 164.49.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | | 2013-04-30 18:45:02 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-30 18:09:45 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | | 2013-04-30 17:44:42 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-30 17:41:45 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-30 17:17:45 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-30 17:15:34 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-30 16:53:45 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-30 16:29:45 |
| *.redstone.army.mil | 136.205.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-30 15:50:04 |
| *.nmci.usmc.mil | 138.162.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; QS 4.2.4.0; QS 5.3.0.4; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3; QS 4.2.4.0; QS 5.3.0.4) | VIRGINIA BEACH VA US | | 2013-04-30 15:18:22 |
| *.pac.army.mil | 150.137.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | | Manual Page - ettercap_curses(8) | 2013-04-30 14:57:40 |
| *.dgs.ca.gov | 165.235.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; MS-RTC LM 8; InfoPath.3) | Rancho Cordova CA US | Programmable HID USB Keystroke Dongle: Using the Teensy as a pen testing
device | 2013-04-30 14:51:48 |
| *.nmci.navy.mil | 138.162.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-04-30 14:31:26 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-04-30 14:31:25 |
| *.azag.gov | 159.87.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Phoenix AZ US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-04-30 14:04:02 |
| *.gtwy.uscourts.gov | 206.18.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-04-30 12:48:21 |
| *.nmci.navy.mil | 138.163.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | | 2013-04-30 12:46:14 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-30 12:35:34 |
| *.opm.gov | 205.131.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET CLR 1.1.4322; .NET4.0C; .NET4.0E; InfoPath.3; MS-RTC LM 8) | | Hacking Illustrated: Computer security videos | 2013-04-30 12:33:23 |
| *.mda.mil | 140.32.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.2) | Columbus OH US | | 2013-04-30 12:31:10 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | MAFB-Gunter Annex AL US | Man page of AIRCRACK-NG | 2013-04-30 12:26:24 |
| *.rcert-s.army.mil | 206.37.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Columbus OH US | ShmooCon Firetalks 2013 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-30 12:03:26 |
| *.usbr.gov | 140.218.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Boise ID US | How To Burn An ISO Image To A Bootable CD (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-30 11:37:15 |
| *.nara.gov | 207.245.*.* | | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | COLLEGE PARK MD US | Using Kon-Boot from a USB Flash Drive: Bypass those pesky Windows and
Linux login passwords completely | 2013-04-30 11:33:19 |
| *.nmci.navy.mil | 138.162.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | VIRGINIA BEACH VA US | | 2013-04-30 11:32:01 |
| *.army.mil | 140.196.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0 | Fort Huachuca AZ US | | 2013-04-30 11:13:21 |
| *.fw07.dot.ca.gov | 149.136.*.* | | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.43 Safari/537.31 | Sacramento CA US | Basics of Arpspoofing/Arppoisoning | 2013-04-30 11:07:51 |
| *.fw07.dot.ca.gov | 149.136.*.* | | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.43 Safari/537.31 | Sacramento CA US | Basics of Arpspoofing/Arppoisoning | 2013-04-30 11:06:57 |
| *.fw07.dot.ca.gov | 149.136.*.* | | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.43 Safari/537.31 | Sacramento CA US | Basics of Arpspoofing/Arppoisoning | 2013-04-30 11:06:53 |
| *.kingcounty.gov | 198.49.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 1.1.4322; .NET CLR 3.0.04506.648; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) | Seattle WA US | | 2013-04-30 10:27:41 |
| *.gordon.army.mil | 155.8.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-30 10:24:21 |
| *.afnoc.af.mil | 132.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MAFB-Gunter Annex AL US | | 2013-04-30 10:22:25 |
| *.rcert-s.army.mil | 206.37.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0 | Columbus OH US | Pass the Hash like a Rockstar - Martin "PureHate" Bos Bsides Cleveland 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-30 10:08:33 |
| *.osis.gov | 206.112.*.* | MSIE 10.0 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) | | Man page of NPING | 2013-04-30 10:05:46 |
| *.wff.nasa.gov | 128.154.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0 | MSFC AL US | | 2013-04-30 09:59:10 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-30 09:47:37 |
| *.col.apc.army.mil | 143.85.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | Using Cain and the AirPcap USB adapter to crack WPA/WPA2 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-30 09:39:53 |
| *.boulder.noaa.gov | 140.172.*.* | Intel Mac OS X 10.8 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8; rv:20.0) Gecko/20100101 Firefox/20.0 | Boulder CO US | Locking down Windows Vista and Windows 7 against Malicious USB devices
| 2013-04-30 09:29:53 |
| *.dmz.js.mil | 199.208.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | Basic Setup of Security-Onion: Snort, Snorby, Barnyard, PulledPork,
Daemonlogger (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-30 09:02:59 |
| *.sc.pima.gov | 159.233.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Tucson AZ US | | 2013-04-30 09:02:14 |
| *.house.gov | 143.231.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Washington DC US | | 2013-04-30 09:00:58 |
| *.house.gov | 143.231.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Washington DC US | | 2013-04-30 09:00:34 |
| *.gordon.army.mil | 155.8.*.* | Linux x86_64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.63 Safari/537.31 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.63 Safari/537.31 | Fort Huachuca AZ US | BeEF:Browser Exploitation Framework XSS Fun (Hacking Illustrated Series
InfoSec Tutorial Videos) | 2013-04-30 08:58:29 |
| *.afghan.swa.army.mil | 214.13.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | MadMACs: MAC Address Spoofing and Host Name Randomizing App for Windows 7
(Should work in Windows Vista and Windows 8 too) | 2013-04-30 08:26:59 |
| *.in.gov | 207.250.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Littleton CO US | | 2013-04-30 08:26:52 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-30 08:11:32 |
| *.usbr.gov | 140.217.*.* | WOW64) AppleWebKit/537.17 (KHTML, like Gecko) Chrome/24.0.1312.57 Safari/537.17 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.17 (KHTML, like Gecko) Chrome/24.0.1312.57 Safari/537.17 | Salt Lake City UT US | | 2013-04-30 08:06:19 |
| *.net.cia.gov | 198.81.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | | Irongeek.com | 2013-04-30 07:19:59 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-30 07:15:36 |
| *.dmzout.stuttgart.army.mil | 139.139.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | Look for deleted data on the slack space of a disk (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-30 07:12:48 |
| *.dia.mil | 214.3.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.4506.2152) | Columbus OH US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-04-30 07:08:45 |
| *.usdoj.gov | 149.101.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; DOJ3jx7bf; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2; DOJ3jx7bf; DOJ3jx7bf) | Potomac MD US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-04-30 07:06:49 |
| *.usdoj.gov | 149.101.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; DOJ3jx7bf; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2; DOJ3jx7bf; DOJ3jx7bf) | Potomac MD US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-04-30 06:56:07 |
| *.usdoj.gov | 149.101.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; DOJ3jx7bf; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2; DOJ3jx7bf; DOJ3jx7bf) | Potomac MD US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-04-30 06:56:07 |
| *.redstone.army.mil | 136.205.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-30 06:52:51 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-30 06:43:42 |
| *.ssmcnet.noaa.gov | 205.156.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Silver Spring MD US | | 2013-04-30 06:41:59 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-30 06:23:30 |
| *.army.mil | 147.241.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Fort Huachuca AZ US | Encryption for Everyone - Dru Streicher (_node) Notacon 10 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-30 06:23:28 |
| *.army.mil | 147.241.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Fort Huachuca AZ US | How I Became an iOS Developer for Fun and Debt - Mark Stanislav Notacon 10 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-30 06:23:26 |
| *.army.mil | 147.241.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Fort Huachuca AZ US | Malware Analysis Triage for n00bs - Grecs (@Grecs) AIDE 2013 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-30 06:22:31 |
| *.army.mil | 147.241.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Fort Huachuca AZ US | | 2013-04-30 06:22:15 |
| *.usace.army.mil | 140.194.*.* | Ubuntu | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | The Bro Network Security Monitor Videos (Hacking Illustrated Series
InfoSec Tutorial Videos) | 2013-04-30 06:12:27 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-30 06:11:31 |
| *.drum.army.mil | 155.215.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-30 06:03:31 |
| *.drum.army.mil | 155.215.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | I2P/Tor Workshop Notes | 2013-04-30 05:55:43 |
| *.tn.gov | 170.141.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-04-30 05:54:27 |
| *.dmzout.kaiserslautern.army.mil | 139.139.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Fort Huachuca AZ US | John Strand "Advanced Hacking Techniques and Defenses" (and demos of
evilgrade/passing the hash/msfpayload) from Louisville Infosec 2008 (Hacking
Illustrated Series InfoSec Tutorial Videos) | 2013-04-30 05:32:39 |
| *.DC3.MIL | 214.3.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | Columbus OH US | Anti-Forensics: Occult Computing (Hacking Illustrated Series
InfoSec Tutorial Videos) | 2013-04-30 05:13:08 |
| *.tcsc.southcom.mil | 130.22.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-04-30 04:50:35 |
| *.eu.navy.mil | 138.180.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.1) | VIRGINIA BEACH VA US | Security and Software Defined Networking: Practical Possibilities and
Potential Pitfalls | 2013-04-29 23:05:45 |
| *.nmci.usmc.mil | 138.163.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | General Network Security | 2013-04-29 22:24:06 |
| *.nmci.usmc.mil | 138.163.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | Ethics of full disclosure concerning security vulnerabilities | 2013-04-29 22:21:37 |
| *.nmci.usmc.mil | 138.163.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | General Network Security | 2013-04-29 22:21:07 |
| *.nmci.usmc.mil | 138.163.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | Manual Page - macof(8) | 2013-04-29 22:20:07 |
| *.redstone.army.mil | 136.205.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-29 21:55:38 |
| *.ngb.army.mil | 132.79.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-29 21:37:07 |
| *.dmzout.wiesbaden.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-29 20:33:59 |
| *.kuwait.swa.army.mil | 143.81.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | Manual Page - urlsnarf(8) | 2013-04-29 17:46:44 |
| *.srpmic-nsn.gov | 208.77.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-04-29 16:39:07 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 15:05:35 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.3) | | Curtis Koenig - The Neurobiology of Decision Making SkyDogCon 2011 (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-04-29 14:54:38 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 14:49:36 |
| *.house.mo.gov | 168.166.*.* | MSIE 10.0 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) | Jefferson City MO US | Is it time for another firewall or a security awareness program? Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-29 14:44:15 |
| *.house.mo.gov | 168.166.*.* | MSIE 10.0 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) | Jefferson City MO US | Derbycon 2012 Videos (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-29 14:44:11 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | MAFB-Gunter Annex AL US | BeEF:Browser Exploitation Framework XSS Fun (Hacking Illustrated Series
InfoSec Tutorial Videos) | 2013-04-29 14:42:50 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 14:41:35 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 14:33:35 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 14:25:35 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.3; .NET4.0C) | | The Safety Dance: Wardriving the 4.9GHz Public Safety Band - Robert Portvliet & Brad Antoniewicz PhreakNIC 16 (2012) (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-29 14:15:39 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.3; .NET4.0C) | | PhreakNIC 16 (2012) Videos (Hacking Illustrated Series InfoSec
Tutorial Videos) | 2013-04-29 14:15:07 |
| *.army.mil | 143.84.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | Web Application Pen-testing Tutorials With Mutillidae (Hacking
Illustrated Series InfoSec Tutorial Videos) | 2013-04-29 13:54:04 |
| *.army.mil | 143.84.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | le="text-align:center;">Mutillidae
What is Mutillidae?
Mutillidae is a free, open source web application provided to allow security enthusiest to pen-test and hack
a web application. Mutillidae can be installed on Linux, Windows XP, and Windows 7
using XAMMP making it easy for users who do not want to install or administrate their own webserver.
It is already installed on Samurai WTF. Simply replace existing version with latest on Samurai.
Mutillidae contains dozens of vulnerabilities and hints to help the user exploit them;
providing an easy-to-use web hacking environment deliberately designed to be used as a hack-lab
for security enthusiast, classroom labs, and vulnerability assessment tool targets. Mutillidae has
been used in graduate security courses, in corporate web sec training courses, and as an
"assess the assessor" target for vulnerability software.
Mutillidae has been tested/attacked with Cenzic Hailstorm ARC, W3AF, SQLMAP,
Samurai WTF, Backtrack, HP Web Inspect, Burp-Suite, NetSparker Community Edition, and other tools. If you
would like to practice pen-testing/hacking a web application by exploiting cross-site scripting, sql injection,
response-splitting, html injection, javascript injection, clickjacking, cross frame scripting,
forms-caching, authentication bypass, or many other vulnerabilities, then Mutillidae is for you.
The current version of Mutillidae, code named "NOWASP Mutillidae 2.x", was developed by Jeremy Druin aka webpwnized. Mutillidae 2.x
is based on Adrian "Irongeek" Crenshaw's Mutillidae project which is now refered to as Mutillidae 1.x or Mutillidae classic.
Mutillidae 1.x is still available on Sourceforge along side the current project.
Downloads
Announcements
Quickstart Installation Video
Documentation
Usage Instructions
Mutillidae contains all of the vulnerabilties from the
OWASP Top 10.
Go to the OWASP Top 10 page to read about a vulnerability, then choose it from
the list on the left to try it out. Hints may help.
Mutillidae currently has two modes: secure and insecure (default). In insecure mode, the
project works like Mutillidae 1.0. Pages are vulnerable to at least the topic they
fall under in the menu. Most pages are vulnerable to much more. In secure mode,
Mutillidae attempts to protect the pages with server side scripts. Also, hints are disabled in
secure mode. In the interest of making as many challenges as possible, this can be defeated.
In Mutillidae 2.0, the code has been commented to allow the user to see how the defense works.
To get the most out of the project, avoid reading the source code until after learning how
to exploit it. But if you get stuck, the comments should help. Learning how the attack
works should help to understand the defense.
Get rid of PHP "Strict" Errors
Please see documentation at the Sourceforge documentation page. Please note help file "tips-on-php-strict-errors.txt" concerning PHP strict errors.
Notes
- Created by Jeremy "webpwnized" Druin based on the original Mutillidae project of Irongeek.
- If you would like to learn about other deliberately vulnerable web
applications, check out
Deliberately Insecure Web Applications For Learning Web App Security.
-
Do NOT run this code on a production network. Either run it on a
private network, or restrict your web server software to only use the local
loopback address. By default Mutillidae only allows access from localhost
(127.*.*.*). Edit the .htaccess file to change this behavior (not recommended on a public network).
If for some reason .htaccess is not parsed you can
restrict the IP by finding the "Listen" line in the http.conf file and changing
it to read: Listen 127.0.0.1:80
| 2013-04-29 13:53:08 |
| *.army.mil | 143.84.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | General Network Security | 2013-04-29 13:52:08 |
| *.army.mil | 143.84.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | Hacking Illustrated: Computer security videos | 2013-04-29 13:50:48 |
| *.army.mil | 143.84.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | le="text-align:center;">Mutillidae
What is Mutillidae?
Mutillidae is a free, open source web application provided to allow security enthusiest to pen-test and hack
a web application. Mutillidae can be installed on Linux, Windows XP, and Windows 7
using XAMMP making it easy for users who do not want to install or administrate their own webserver.
It is already installed on Samurai WTF. Simply replace existing version with latest on Samurai.
Mutillidae contains dozens of vulnerabilities and hints to help the user exploit them;
providing an easy-to-use web hacking environment deliberately designed to be used as a hack-lab
for security enthusiast, classroom labs, and vulnerability assessment tool targets. Mutillidae has
been used in graduate security courses, in corporate web sec training courses, and as an
"assess the assessor" target for vulnerability software.
Mutillidae has been tested/attacked with Cenzic Hailstorm ARC, W3AF, SQLMAP,
Samurai WTF, Backtrack, HP Web Inspect, Burp-Suite, NetSparker Community Edition, and other tools. If you
would like to practice pen-testing/hacking a web application by exploiting cross-site scripting, sql injection,
response-splitting, html injection, javascript injection, clickjacking, cross frame scripting,
forms-caching, authentication bypass, or many other vulnerabilities, then Mutillidae is for you.
The current version of Mutillidae, code named "NOWASP Mutillidae 2.x", was developed by Jeremy Druin aka webpwnized. Mutillidae 2.x
is based on Adrian "Irongeek" Crenshaw's Mutillidae project which is now refered to as Mutillidae 1.x or Mutillidae classic.
Mutillidae 1.x is still available on Sourceforge along side the current project.
Downloads
Announcements
Quickstart Installation Video
Documentation
Usage Instructions
Mutillidae contains all of the vulnerabilties from the
OWASP Top 10.
Go to the OWASP Top 10 page to read about a vulnerability, then choose it from
the list on the left to try it out. Hints may help.
Mutillidae currently has two modes: secure and insecure (default). In insecure mode, the
project works like Mutillidae 1.0. Pages are vulnerable to at least the topic they
fall under in the menu. Most pages are vulnerable to much more. In secure mode,
Mutillidae attempts to protect the pages with server side scripts. Also, hints are disabled in
secure mode. In the interest of making as many challenges as possible, this can be defeated.
In Mutillidae 2.0, the code has been commented to allow the user to see how the defense works.
To get the most out of the project, avoid reading the source code until after learning how
to exploit it. But if you get stuck, the comments should help. Learning how the attack
works should help to understand the defense.
Get rid of PHP "Strict" Errors
Please see documentation at the Sourceforge documentation page. Please note help file "tips-on-php-strict-errors.txt" concerning PHP strict errors.
Notes
- Created by Jeremy "webpwnized" Druin based on the original Mutillidae project of Irongeek.
- If you would like to learn about other deliberately vulnerable web
applications, check out
Deliberately Insecure Web Applications For Learning Web App Security.
-
Do NOT run this code on a production network. Either run it on a
private network, or restrict your web server software to only use the local
loopback address. By default Mutillidae only allows access from localhost
(127.*.*.*). Edit the .htaccess file to change this behavior (not recommended on a public network).
If for some reason .htaccess is not parsed you can
restrict the IP by finding the "Listen" line in the http.conf file and changing
it to read: Listen 127.0.0.1:80
| 2013-04-29 13:50:18 |
| *.army.mil | 143.84.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | | 2013-04-29 13:49:46 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.3) | | Pat McCoy/Mike McGilvray - Hook, Line and Syncer: A Liar for Hire's Ultimate Tackle Box SkyDogCon 2011 (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-04-29 13:41:13 |
| *.dhs.gov | 216.81.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; DHSI60SP1001; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.4506.2152; InfoPath.3; .NET4.0C; C15IE72011A; DHSI60SP1001; C15IE72011A) | Washington DC US | XSS, Command and SQL Injection vectors: Beyond the Form | 2013-04-29 13:28:44 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Tablet PC 2.0; InfoPath.3) | MAFB-Gunter Annex AL US | Xmas scan with Nmap (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-29 13:14:07 |
| *.gtwy.uscourts.gov | 199.107.*.* | Intel Mac OS X 10_8_3) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | San Diego CA US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-04-29 13:11:52 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-04-29 13:04:59 |
| *.redstone.army.mil | 136.205.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-29 12:58:24 |
| *.sddc.army.mil | 144.100.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; MS-RTC LM 8; InfoPath.2; .NET4.0C; .NET4.0E) | Fort Huachuca AZ US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-04-29 12:41:25 |
| *.amrdec.army.mil | 199.209.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Columbus OH US | Thumbscrew: Software USB Write Blocker | 2013-04-29 12:34:36 |
| *.amrdec.army.mil | 199.209.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Columbus OH US | Thumbscrew: Software USB Write Blocker | 2013-04-29 12:34:36 |
| *.dhs.gov | 216.81.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.3; MS-RTC LM 8; .NET4.0C; .NET4.0E) | Washington DC US | Building a boot USB, DVD or CD based on Windows 7 with Winbuilder and Win7PE SE Tutorial | 2013-04-29 12:32:33 |
| *.dhs.gov | 216.81.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.3; MS-RTC LM 8; .NET4.0C; .NET4.0E) | Washington DC US | Building a boot USB, DVD or CD based on Windows 7 with Winbuilder and Win7PE SE Tutorial | 2013-04-29 12:27:02 |
| *.chs.spawar.navy.mil | 163.240.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 12:20:32 |
| *.hfc.nps.gov | 165.83.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Washington DC US | | 2013-04-29 12:11:29 |
| *.gtwy.uscourts.gov | 199.107.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | San Diego CA US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-04-29 12:06:15 |
| *.state.gov | 169.252.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) | Washington DC US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-04-29 12:04:57 |
| *.gordon.army.mil | 155.8.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Fort Huachuca AZ US | General Network Security | 2013-04-29 11:52:29 |
| *.gordon.army.mil | 155.8.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Fort Huachuca AZ US | | 2013-04-29 11:50:20 |
| *.spawar.navy.mil | 150.125.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | | Deliberately Insecure Web Applications For Learning Web App Security
(WebGoat, BadStore, Hacme, SecuriBench, WebMaven) | 2013-04-29 11:48:22 |
| *.centcom.mil | 214.26.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | Columbus OH US | | 2013-04-29 11:45:20 |
| *.ptr.hqda.pentagon.mil | 134.11.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Huachuca AZ US | Building a Svartkast with a pretty pink Pogoplug: Cheap hardware to leave
on someone else's network | 2013-04-29 11:39:26 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-04-29 11:34:27 |
| *.afnoc.af.mil | 132.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MAFB-Gunter Annex AL US | | 2013-04-29 11:32:14 |
| *.cdc.gov | 158.111.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; MS-RTC LM 8; InfoPath.3) | Atlanta GA US | | 2013-04-29 11:29:13 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 11:13:34 |
| *.irs.gov | 152.216.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.1; .NET CLR 1.0.3705; .NET CLR 1.1.4322; .NET CLR 2.0.50727; MS-RTC LM 8; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) | Washington DC US | | 2013-04-29 11:11:45 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.3) | | Pat McCoy/Mike McGilvray - Hook, Line and Syncer: A Liar for Hire's Ultimate Tackle Box SkyDogCon 2011 (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-04-29 11:01:17 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 10:54:24 |
| *.state.gov | 169.252.*.* | | Mozilla/4.0 (compatible;) | Washington DC US | Irongeek.com | 2013-04-29 10:49:00 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 10:33:34 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 10:21:33 |
| *.chs.spawar.navy.mil | 163.240.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 10:17:16 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 10:13:34 |
| *.usdoj.gov | 149.101.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Potomac MD US | Cracking Cached Domain/Active Directory Passwords on Windows XP/2000/2003
| 2013-04-29 10:11:30 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 10:05:33 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 09:57:33 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 09:49:33 |
| *.chs.spawar.navy.mil | 163.240.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 09:49:18 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.3) | | Pat McCoy/Mike McGilvray - Hook, Line and Syncer: A Liar for Hire's Ultimate Tackle Box SkyDogCon 2011 (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-04-29 09:42:12 |
| *.chs.spawar.navy.mil | 163.240.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 09:29:25 |
| *.wood.army.mil | 155.9.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | | 2013-04-29 09:13:03 |
| *.chs.spawar.navy.mil | 163.240.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 09:09:31 |
| *.dfas.mil | 207.133.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.3; MS-RTC LM 8) | Columbus OH US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-04-29 09:03:25 |
| *.soc.mil | 204.34.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2; .NET4.0C; .NET4.0E) | Columbus OH US | Hacking Illustrated: Computer security videos | 2013-04-29 08:57:01 |
| *.ccs.ornl.gov | 160.91.*.* | Linux x86_64 | Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130329 Firefox/17.0 | Oak Ridge TN US | Manual Page - truecrypt(1) | 2013-04-29 08:52:33 |
| *.fnal.gov | 131.225.*.* | Intel Mac OS X 10_8_3) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Batavia IL US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-04-29 08:36:12 |
| *.cms.hhs.gov | 63.119.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.3) | | Basics of Arpspoofing/Arppoisoning | 2013-04-29 08:24:09 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.3) | | Pat McCoy/Mike McGilvray - Hook, Line and Syncer: A Liar for Hire's Ultimate Tackle Box SkyDogCon 2011 (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-04-29 08:24:02 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 08:17:33 |
| *.dinfos.dma.mil | 204.34.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Columbus OH US | File Systems and Thumb Drives: Choosing between FAT16, FAT32 and NTFS to
get a faster USB Flash Drive | 2013-04-29 08:14:15 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.3) | | Pat McCoy/Mike McGilvray - Hook, Line and Syncer: A Liar for Hire's Ultimate Tackle Box SkyDogCon 2011 (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-04-29 08:08:38 |
| *.srvs.usps.gov | 56.0.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Raleigh NC US | Manual Page - netcat(1) | 2013-04-29 08:08:17 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 08:01:34 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 07:54:47 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 07:45:33 |
| *.sc.pima.gov | 159.233.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Tucson AZ US | | 2013-04-29 07:40:51 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.3) | | Pat McCoy/Mike McGilvray - Hook, Line and Syncer: A Liar for Hire's Ultimate Tackle Box SkyDogCon 2011 (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-04-29 07:37:32 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.3) | | SkyDogCon 2012 Videos (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-04-29 07:35:38 |
| *.jsc.nasa.gov | 128.157.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0 | MSFC AL US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-04-29 07:33:39 |
| *.doe.gov | 198.124.*.* | | Mozilla/4.0 (compatible;) | | Irongeek.com | 2013-04-29 07:33:32 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.3) | | Hacking Your Credit Score; How the System is Flawed SkyDogCon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-29 07:24:11 |
| *.nycourts.gov | 207.29.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Troy NY US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-04-29 06:54:05 |
| *.spawar.navy.mil | 150.125.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | | le="text-align:center;">Mutillidae
What is Mutillidae?
Mutillidae is a free, open source web application provided to allow security enthusiest to pen-test and hack
a web application. Mutillidae can be installed on Linux, Windows XP, and Windows 7
using XAMMP making it easy for users who do not want to install or administrate their own webserver.
It is already installed on Samurai WTF. Simply replace existing version with latest on Samurai.
Mutillidae contains dozens of vulnerabilities and hints to help the user exploit them;
providing an easy-to-use web hacking environment deliberately designed to be used as a hack-lab
for security enthusiast, classroom labs, and vulnerability assessment tool targets. Mutillidae has
been used in graduate security courses, in corporate web sec training courses, and as an
"assess the assessor" target for vulnerability software.
Mutillidae has been tested/attacked with Cenzic Hailstorm ARC, W3AF, SQLMAP,
Samurai WTF, Backtrack, HP Web Inspect, Burp-Suite, NetSparker Community Edition, and other tools. If you
would like to practice pen-testing/hacking a web application by exploiting cross-site scripting, sql injection,
response-splitting, html injection, javascript injection, clickjacking, cross frame scripting,
forms-caching, authentication bypass, or many other vulnerabilities, then Mutillidae is for you.
The current version of Mutillidae, code named "NOWASP Mutillidae 2.x", was developed by Jeremy Druin aka webpwnized. Mutillidae 2.x
is based on Adrian "Irongeek" Crenshaw's Mutillidae project which is now refered to as Mutillidae 1.x or Mutillidae classic.
Mutillidae 1.x is still available on Sourceforge along side the current project.
Downloads
Announcements
Quickstart Installation Video
Documentation
Usage Instructions
Mutillidae contains all of the vulnerabilties from the
OWASP Top 10.
Go to the OWASP Top 10 page to read about a vulnerability, then choose it from
the list on the left to try it out. Hints may help.
Mutillidae currently has two modes: secure and insecure (default). In insecure mode, the
project works like Mutillidae 1.0. Pages are vulnerable to at least the topic they
fall under in the menu. Most pages are vulnerable to much more. In secure mode,
Mutillidae attempts to protect the pages with server side scripts. Also, hints are disabled in
secure mode. In the interest of making as many challenges as possible, this can be defeated.
In Mutillidae 2.0, the code has been commented to allow the user to see how the defense works.
To get the most out of the project, avoid reading the source code until after learning how
to exploit it. But if you get stuck, the comments should help. Learning how the attack
works should help to understand the defense.
Get rid of PHP "Strict" Errors
Please see documentation at the Sourceforge documentation page. Please note help file "tips-on-php-strict-errors.txt" concerning PHP strict errors.
Notes
- Created by Jeremy "webpwnized" Druin based on the original Mutillidae project of Irongeek.
- If you would like to learn about other deliberately vulnerable web
applications, check out
Deliberately Insecure Web Applications For Learning Web App Security.
-
Do NOT run this code on a production network. Either run it on a
private network, or restrict your web server software to only use the local
loopback address. By default Mutillidae only allows access from localhost
(127.*.*.*). Edit the .htaccess file to change this behavior (not recommended on a public network).
If for some reason .htaccess is not parsed you can
restrict the IP by finding the "Listen" line in the http.conf file and changing
it to read: Listen 127.0.0.1:80
| 2013-04-29 06:52:54 |
| *.jpl.nasa.gov | 137.78.*.* | Intel Mac OS X 10.7 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:20.0) Gecko/20100101 Firefox/20.0 | MSFC AL US | Security and Software Defined Networking: Practical Possibilities and
Potential Pitfalls | 2013-04-29 06:33:58 |
| *.dia.mil | 214.3.*.* | | Mozilla/4.0 (compatible;) | Columbus OH US | Irongeek.com | 2013-04-29 06:03:24 |
| *.dia.mil | 214.3.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0 | Columbus OH US | | 2013-04-29 06:02:39 |
| *.doe.gov | 198.124.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; InfoPath.3) | | Hacking Your Credit Score; How the System is Flawed SkyDogCon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-29 05:58:28 |
| *.tn.gov | 170.141.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-04-29 05:54:02 |
| *.bnl.gov | 130.199.*.* | Intel Mac OS X 10_8_2) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_2) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Upton NY US | Becoming Mallory – How to Win Creds and Influence Devices Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-29 05:45:01 |
| *.bnl.gov | 130.199.*.* | Intel Mac OS X 10_8_2) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_2) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.65 Safari/537.31 | Upton NY US | The potential impact of Software Defined Networking on security - Brent Salisbury (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-29 05:44:59 |
| *.state.gov | 169.252.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.3) | Washington DC US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-04-29 05:11:43 |
| *.med.navy.mil | 131.158.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-04-29 04:49:34 |
| *.afnoc.af.mil | 132.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MAFB-Gunter Annex AL US | | 2013-04-29 04:39:01 |
| *.redstone.army.mil | 136.205.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Fort Huachuca AZ US | Dual Booting Slax Linux and BartPE (Windows) from a USB Thumbdrive (UFD)
| 2013-04-29 02:38:14 |
| *.redstone.army.mil | 136.205.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Fort Huachuca AZ US | Dual Booting Slax Linux and BartPE (Windows) from a USB Thumbdrive (UFD)
| 2013-04-29 02:21:03 |
| *.ngb.army.mil | 132.79.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-28 23:00:08 |
| *.korea.army.mil | 144.59.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | | 2013-04-28 21:12:49 |
| *.dmzout.wiesbaden.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-28 20:26:08 |
| *.srf.navy.mil | 163.251.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.3; .NET4.0C; .NET4.0E) | | Introduction to Pen Testing Simple Network Management Protocol (SNMP) -
ISSA Kentuckiana workshop 9 - Jeremy Druin (Hacking Illustrated Series InfoSec
Tutorial Videos) | 2013-04-28 19:00:58 |
| *.srf.navy.mil | 163.251.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.3; .NET4.0C; .NET4.0E) | | AIDE Winter Meeting 2011 (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-04-28 18:58:46 |
| *.centcom.mil | 214.26.*.* | | Mozilla/4.0 (compatible;) | Columbus OH US | Irongeek.com | 2013-04-28 16:52:35 |
| *.edu.usafa.hpc.mil | 140.32.*.* | | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1485.0 Safari/537.36 | Columbus OH US | Practical Guide to Alternative Data Streams in NTFS | 2013-04-28 16:43:36 |
| *.dhs.gov | 216.81.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | Washington DC US | How To Cyberstalk Potential Employers IronGeek
Outerz0ne 8 (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-04-28 07:30:45 |
| *.dhs.gov | 216.81.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | Washington DC US | Outerz0ne 8 (2012) Videos (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-04-28 07:30:19 |
| *.dhs.gov | 216.81.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | Washington DC US | Hacking Illustrated: Computer security videos | 2013-04-28 07:30:11 |
| *.dhs.gov | 216.81.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | Washington DC US | Hackers in Unganda: A Documentary (Kickstarter Project) - Oncee AIDE 2013 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-28 07:25:13 |
| *.dhs.gov | 216.81.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | Washington DC US | The Maru Architecture Design: A proposed BYOD architecture for an evolving threat landscape - Michael Smith Notacon 10 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-28 07:14:19 |
| *.dhs.gov | 216.81.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | Washington DC US | The Maru Architecture Design: A proposed BYOD architecture for an evolving threat landscape - Michael Smith Notacon 10 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-28 07:11:09 |
| *.centcom.mil | 214.26.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3; .NET CLR 1.1.4322) | Columbus OH US | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-04-28 06:56:12 |
| *.dhs.gov | 216.81.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | Washington DC US | The Maru Architecture Design: A proposed BYOD architecture for an evolving threat landscape - Michael Smith Notacon 10 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-28 06:37:48 |
| *.afghan.swa.ds.army.mil | 214.26.*.* | | Mozilla/4.0 (compatible;) | Columbus OH US | Irongeek.com | 2013-04-28 05:56:38 |
| *.dhs.gov | 216.81.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | Washington DC US | Malware Analysis Triage for n00bs - Grecs (@Grecs) AIDE 2013 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-28 05:30:13 |
| *.dhs.gov | 216.81.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) | Washington DC US | AIDE 2013 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-28 05:29:47 |
| *.ngb.army.mil | 132.79.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-28 04:06:00 |
| *.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-28 01:33:29 |
| *.afghan.swa.ds.army.mil | 214.26.*.* | | Mozilla/4.0 (compatible;) | Columbus OH US | Irongeek.com | 2013-04-27 23:16:45 |
| *.dmzout.wiesbaden.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-27 20:30:05 |
| *.ngb.army.mil | 132.79.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-27 12:18:54 |
| *.pr.navy.mil | 205.56.*.* | U | Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9) Gecko/2008052906 Firefox/3.0 | VIRGINIA BEACH VA US | | 2013-04-27 10:24:51 |
| *.afghan.swa.ds.army.mil | 214.26.*.* | | Mozilla/4.0 (compatible;) | Columbus OH US | Irongeek.com | 2013-04-27 09:56:59 |
| *.atac.mil | 214.16.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Columbus OH US | | 2013-04-27 07:57:49 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-04-27 06:40:25 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-04-27 00:00:32 |
| *.afghan.swa.ds.army.mil | 214.26.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | | 2013-04-26 23:43:36 |
| *.edu.usafa.hpc.mil | 140.32.*.* | | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1485.0 Safari/537.36 | Columbus OH US | Practical Guide to Alternative Data Streams in NTFS | 2013-04-26 23:41:20 |
| *.edu.usafa.hpc.mil | 140.32.*.* | | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1485.0 Safari/537.36 | Columbus OH US | Practical Guide to Alternative Data Streams in NTFS | 2013-04-26 23:41:20 |
| *.ngb.army.mil | 132.79.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-26 23:07:00 |
| *.dmzout.wiesbaden.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-26 20:26:09 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-04-26 18:35:59 |
| *.in.gov | 207.250.*.* | CPU OS 6_1_3 like Mac OS X) AppleWebKit/536.26 (KHTML, like Gecko) Version/6.0 Mobile/10B329 Safari/8536.25 | Mozilla/5.0 (iPad; CPU OS 6_1_3 like Mac OS X) AppleWebKit/536.26 (KHTML, like Gecko) Version/6.0 Mobile/10B329 Safari/8536.25 | Littleton CO US | | 2013-04-26 18:33:21 |
| *.dmv.ca.gov | 205.225.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.3; .NET4.0C; .NET4.0E) | | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-04-26 16:43:36 |
| *.fdic.gov | 167.176.*.* | Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/27.0.1453.65 Safari/537.36 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/27.0.1453.65 Safari/537.36 | Arlington VA US | Links for Doxing, Personal OSInt, Profiling, Footprinting, Cyberstalking | 2013-04-26 13:59:53 |
| *.nmci.navy.mil | 138.162.*.* | | Mozilla/4.0 (compatible;) | VIRGINIA BEACH VA US | Irongeek.com | 2013-04-26 13:52:55 |
| *.michigan.gov | 136.181.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.1; .NET4.0C; .NET4.0E) | Lansing MI US | le="text-align:center;">Mutillidae
What is Mutillidae?
Mutillidae is a free, open source web application provided to allow security enthusiest to pen-test and hack
a web application. Mutillidae can be installed on Linux, Windows XP, and Windows 7
using XAMMP making it easy for users who do not want to install or administrate their own webserver.
It is already installed on Samurai WTF. Simply replace existing version with latest on Samurai.
Mutillidae contains dozens of vulnerabilities and hints to help the user exploit them;
providing an easy-to-use web hacking environment deliberately designed to be used as a hack-lab
for security enthusiast, classroom labs, and vulnerability assessment tool targets. Mutillidae has
been used in graduate security courses, in corporate web sec training courses, and as an
"assess the assessor" target for vulnerability software.
Mutillidae has been tested/attacked with Cenzic Hailstorm ARC, W3AF, SQLMAP,
Samurai WTF, Backtrack, HP Web Inspect, Burp-Suite, NetSparker Community Edition, and other tools. If you
would like to practice pen-testing/hacking a web application by exploiting cross-site scripting, sql injection,
response-splitting, html injection, javascript injection, clickjacking, cross frame scripting,
forms-caching, authentication bypass, or many other vulnerabilities, then Mutillidae is for you.
The current version of Mutillidae, code named "NOWASP Mutillidae 2.x", was developed by Jeremy Druin aka webpwnized. Mutillidae 2.x
is based on Adrian "Irongeek" Crenshaw's Mutillidae project which is now refered to as Mutillidae 1.x or Mutillidae classic.
Mutillidae 1.x is still available on Sourceforge along side the current project.
Downloads
Announcements
Quickstart Installation Video
Documentation
Usage Instructions
Mutillidae contains all of the vulnerabilties from the
OWASP Top 10.
Go to the OWASP Top 10 page to read about a vulnerability, then choose it from
the list on the left to try it out. Hints may help.
Mutillidae currently has two modes: secure and insecure (default). In insecure mode, the
project works like Mutillidae 1.0. Pages are vulnerable to at least the topic they
fall under in the menu. Most pages are vulnerable to much more. In secure mode,
Mutillidae attempts to protect the pages with server side scripts. Also, hints are disabled in
secure mode. In the interest of making as many challenges as possible, this can be defeated.
In Mutillidae 2.0, the code has been commented to allow the user to see how the defense works.
To get the most out of the project, avoid reading the source code until after learning how
to exploit it. But if you get stuck, the comments should help. Learning how the attack
works should help to understand the defense.
Get rid of PHP "Strict" Errors
Please see documentation at the Sourceforge documentation page. Please note help file "tips-on-php-strict-errors.txt" concerning PHP strict errors.
Notes
- Created by Jeremy "webpwnized" Druin based on the original Mutillidae project of Irongeek.
- If you would like to learn about other deliberately vulnerable web
applications, check out
Deliberately Insecure Web Applications For Learning Web App Security.
-
Do NOT run this code on a production network. Either run it on a
private network, or restrict your web server software to only use the local
loopback address. By default Mutillidae only allows access from localhost
(127.*.*.*). Edit the .htaccess file to change this behavior (not recommended on a public network).
If for some reason .htaccess is not parsed you can
restrict the IP by finding the "Listen" line in the http.conf file and changing
it to read: Listen 127.0.0.1:80
| 2013-04-26 13:50:31 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | VIRGINIA BEACH VA US | Practical Guide to Alternative Data Streams in NTFS | 2013-04-26 13:47:58 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | VIRGINIA BEACH VA US | MadMACs: MAC Address Spoofing and Host Name Randomizing App for Windows 7
(Should work in Windows Vista and Windows 8 too) | 2013-04-26 13:30:53 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | VIRGINIA BEACH VA US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-04-26 13:26:55 |
| *.nps.gov | 165.83.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; InfoPath.3; .NET4.0E) | Washington DC US | Thumbscrew: Software USB Write Blocker | 2013-04-26 13:13:56 |
| *.pacific.dla.mil | 131.76.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | Columbus OH US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-04-26 13:11:52 |
| *.rttc.army.mil | 147.241.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E; .NET CLR 1.1.4322) | Fort Huachuca AZ US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-04-26 13:02:01 |
| *.cmdl.noaa.gov | 140.172.*.* | Linux i686) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.63 Safari/537.31 | Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.63 Safari/537.31 | Boulder CO US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-04-26 12:44:13 |
| *.ngb.army.mil | 132.79.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-26 12:06:24 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-04-26 11:56:06 |
| *.tic.va.gov | 152.130.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Washington DC US | Building a boot USB, DVD or CD based on Windows 7 with Winbuilder and Win7PE SE Tutorial | 2013-04-26 11:47:27 |
| *.belvoir.army.mil | 128.190.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Fort Huachuca AZ US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-04-26 11:32:25 |
| *.les.mil | 205.77.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | VIRGINIA BEACH VA US | Malware Analysis Triage for n00bs - Grecs (@Grecs) AIDE 2013 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-26 11:23:39 |
| *.les.mil | 205.77.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | VIRGINIA BEACH VA US | | 2013-04-26 11:23:13 |
| *.rcert-s.army.mil | 206.37.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Columbus OH US | CCDC and Industry - James L. Siegel Jr. (WolfFlight) AIDE 2013 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-26 10:06:11 |
| *.rccb.osis.gov | 199.221.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E) | | Practical Guide to Alternative Data Streams in NTFS | 2013-04-26 10:01:46 |
| *.state.gov | 169.252.*.* | WOW64) AppleWebKit/537.22 (KHTML, like Gecko) Chrome/25.0.1364.172 Safari/537.22 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.22 (KHTML, like Gecko) Chrome/25.0.1364.172 Safari/537.22 | Washington DC US | | 2013-04-26 09:43:57 |
| *.rcert-s.army.mil | 206.37.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Columbus OH US | Are we getting better? – Hacking Todays Technology - Dave Kennedy Notacon 10 (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-26 09:42:18 |
| *.nmci.navy.mil | 138.162.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; InfoPath.2; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET CLR 2.0.50727; .NET4.0C; .NET4.0E) | VIRGINIA BEACH VA US | Practical Guide to Alternative Data Streams in NTFS | 2013-04-26 08:38:54 |
| *.usdoj.gov | 149.101.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; DI7SP2) | Potomac MD US | int0x80 (of Dual Core) – Anti-Forensics for the Louise Derbycon 2011 (Hacking Illustrated Series InfoSec Tutorial
Videos) | 2013-04-26 08:23:45 |
| *.dhs.gov | 216.81.*.* | | Mozilla/4.0 (compatible;) | Washington DC US | Irongeek.com | 2013-04-26 08:11:57 |
| *.nist.gov | 129.6.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Gaithersburg MD US | Using Kon-Boot from a USB Flash Drive: Bypass those pesky Windows and
Linux login passwords completely | 2013-04-26 07:42:16 |
| *.159.109.10.4k.usda.gov | 199.159.*.* | Intel Mac OS X 10.8 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8; rv:20.0) Gecko/20100101 Firefox/20.0 | Fort Collins CO US | Setting up the HoneyBOT HoneyPot (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-26 07:34:57 |
| *.house.mo.gov | 168.166.*.* | MSIE 10.0 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) | Jefferson City MO US | Derbycon 2012 Videos (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-26 07:23:10 |
| *.house.mo.gov | 168.166.*.* | MSIE 10.0 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) | Jefferson City MO US | Hacking Illustrated: Computer security videos | 2013-04-26 07:22:56 |
| *.house.mo.gov | 168.166.*.* | MSIE 10.0 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) | Jefferson City MO US | | 2013-04-26 07:22:48 |
| *.house.mo.gov | 168.166.*.* | MSIE 10.0 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) | Jefferson City MO US | Derbycon 2011 Videos (Hacking Illustrated Series InfoSec Tutorial Videos) | 2013-04-26 07:22:32 |
| *.house.mo.gov | 168.166.*.* | MSIE 10.0 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) | Jefferson City MO US | | 2013-04-26 07:20:45 |
| *.hst.nasa.gov | 198.118.*.* | rv:17.0) Gecko/20100101 Firefox/17.0 | Mozilla/5.0 (Windows NT 6.1; rv:17.0) Gecko/20100101 Firefox/17.0 | MSFC AL US | Using Bart's PE Builder to Make an Anti-Spyware and Rescue CD | 2013-04-26 06:58:05 |
| *.srvs.usps.gov | 56.0.*.* | | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/535.2 (KHTML, like Gecko) Chrome/15.0.874.121 Safari/535.2 | Raleigh NC US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-04-26 06:37:16 |
| *.navair-rdte.navy.mil | 160.107.*.* | | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | VIRGINIA BEACH VA US | Thumbscrew: Software USB Write Blocker | 2013-04-26 06:26:24 |
| *.net.cia.gov | 198.81.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; InfoPath.2) | | | 2013-04-26 06:23:46 |
| *.afghan.swa.army.mil | 214.27.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | State Hacking/Computer Security Laws | 2013-04-26 05:55:49 |
| *.tn.gov | 170.141.*.* | WOW64 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 | Nashville TN US | | 2013-04-26 05:42:31 |
| *.uscg.mil | 152.121.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.0.30729; InfoPath.2; .NET CLR 3.5.30729; .NET4.0C; MS-RTC LM 8; .NET4.0E) | | | 2013-04-26 05:28:48 |
| *.mcnosc.usmc.mil | 192.156.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; InfoPath.3; .NET4.0E) | QUANTICO VA US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-04-26 05:26:47 |
| *.wes.army.mil | 134.164.*.* | Intel Mac OS X 10_8_3) AppleWebKit/536.28.10 (KHTML, like Gecko) Version/6.0.3 Safari/536.28.10 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/536.28.10 (KHTML, like Gecko) Version/6.0.3 Safari/536.28.10 | Fort Huachuca AZ US | Practical Guide to Alternative Data Streams in NTFS | 2013-04-26 05:03:31 |
| *.ngb.army.mil | 132.79.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-26 02:53:15 |
| *.tc.faa.gov | 155.178.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) | Atlantic City Airport NJ US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-04-25 23:50:36 |
| *.nmci.usmc.mil | 138.162.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; QS 4.2.4.0; QS 5.3.0.4; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3; QS 4.2.4.0; QS 5.3.0.4) | VIRGINIA BEACH VA US | le="text-align:center;">Mutillidae
What is Mutillidae?
Mutillidae is a free, open source web application provided to allow security enthusiest to pen-test and hack
a web application. Mutillidae can be installed on Linux, Windows XP, and Windows 7
using XAMMP making it easy for users who do not want to install or administrate their own webserver.
It is already installed on Samurai WTF. Simply replace existing version with latest on Samurai.
Mutillidae contains dozens of vulnerabilities and hints to help the user exploit them;
providing an easy-to-use web hacking environment deliberately designed to be used as a hack-lab
for security enthusiast, classroom labs, and vulnerability assessment tool targets. Mutillidae has
been used in graduate security courses, in corporate web sec training courses, and as an
"assess the assessor" target for vulnerability software.
Mutillidae has been tested/attacked with Cenzic Hailstorm ARC, W3AF, SQLMAP,
Samurai WTF, Backtrack, HP Web Inspect, Burp-Suite, NetSparker Community Edition, and other tools. If you
would like to practice pen-testing/hacking a web application by exploiting cross-site scripting, sql injection,
response-splitting, html injection, javascript injection, clickjacking, cross frame scripting,
forms-caching, authentication bypass, or many other vulnerabilities, then Mutillidae is for you.
The current version of Mutillidae, code named "NOWASP Mutillidae 2.x", was developed by Jeremy Druin aka webpwnized. Mutillidae 2.x
is based on Adrian "Irongeek" Crenshaw's Mutillidae project which is now refered to as Mutillidae 1.x or Mutillidae classic.
Mutillidae 1.x is still available on Sourceforge along side the current project.
Downloads
Announcements
Quickstart Installation Video
Documentation
Usage Instructions
Mutillidae contains all of the vulnerabilties from the
OWASP Top 10.
Go to the OWASP Top 10 page to read about a vulnerability, then choose it from
the list on the left to try it out. Hints may help.
Mutillidae currently has two modes: secure and insecure (default). In insecure mode, the
project works like Mutillidae 1.0. Pages are vulnerable to at least the topic they
fall under in the menu. Most pages are vulnerable to much more. In secure mode,
Mutillidae attempts to protect the pages with server side scripts. Also, hints are disabled in
secure mode. In the interest of making as many challenges as possible, this can be defeated.
In Mutillidae 2.0, the code has been commented to allow the user to see how the defense works.
To get the most out of the project, avoid reading the source code until after learning how
to exploit it. But if you get stuck, the comments should help. Learning how the attack
works should help to understand the defense.
Get rid of PHP "Strict" Errors
Please see documentation at the Sourceforge documentation page. Please note help file "tips-on-php-strict-errors.txt" concerning PHP strict errors.
Notes
- Created by Jeremy "webpwnized" Druin based on the original Mutillidae project of Irongeek.
- If you would like to learn about other deliberately vulnerable web
applications, check out
Deliberately Insecure Web Applications For Learning Web App Security.
-
Do NOT run this code on a production network. Either run it on a
private network, or restrict your web server software to only use the local
loopback address. By default Mutillidae only allows access from localhost
(127.*.*.*). Edit the .htaccess file to change this behavior (not recommended on a public network).
If for some reason .htaccess is not parsed you can
restrict the IP by finding the "Listen" line in the http.conf file and changing
it to read: Listen 127.0.0.1:80
| 2013-04-25 21:52:28 |
| *.swa.army.mil | 143.81.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-25 20:50:46 |
| *.dmzout.wiesbaden.army.mil | 139.139.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-25 20:22:15 |
| *.ngb.army.mil | 132.79.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-25 19:11:39 |
| *.dhs.gov | 216.81.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3; MS-RTC LM 8) | Washington DC US | | 2013-04-25 18:22:46 |
| *.knox.army.mil | 147.238.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-25 17:01:35 |
| *.tic.va.gov | 152.131.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) | Washington DC US | Forensically interesting spots in the Windows 7, Vista and XP file system
and registry (and anti-forensics) | 2013-04-25 16:54:01 |
| *.utah.gov | 204.113.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Salt Lake City UT US | Manual Page - ettercap(8) | 2013-04-25 16:21:57 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-04-25 16:04:30 |
| *.gtwy.uscourts.gov | 206.18.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C) | | | 2013-04-25 15:18:14 |
| *.gtwy.uscourts.gov | 206.18.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | | | 2013-04-25 15:18:01 |
| *.uscg.mil | 152.121.*.* | MSIE 7.0 | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; InfoPath.2; MS-RTC LM 8; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; .NET CLR 3.0.30729) | | Hacking Network Printers (Mostly HP JetDirects, but a little info on the
Ricoh Savins) | 2013-04-25 12:51:16 |
| *.ngb.army.mil | 132.79.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-25 12:45:39 |
| *.centcom.mil | 214.26.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | Columbus OH US | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-04-25 12:00:25 |
| *.faa.gov | 162.58.*.* | MSIE 6.0 | Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.1; InfoPath.2) | Oklahoma City OK US | A Quick Intro to Sniffers: Wireshark/Ethereal, ARPSpoof, Ettercap, ARP
poisoning and other niceties. | 2013-04-25 11:53:43 |
| *.nmci.navy.mil | 138.162.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 5.1; rv:20.0) Gecko/20100101 Firefox/20.0 | VIRGINIA BEACH VA US | Building an InfoSec lab, on the cheap | 2013-04-25 11:35:25 |
| *.state.gov | 169.253.*.* | | Mozilla/4.0 (compatible;) | Washington DC US | Irongeek.com | 2013-04-25 10:48:09 |
| *.afghan.swa.army.mil | 214.13.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | Columbus OH US | Tracking users, malware and data leaks via the USB serial numbers on flash drives, smart phones and MP3 players | 2013-04-25 10:19:33 |
| *.dfas.mil | 206.39.*.* | | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Columbus OH US | | 2013-04-25 09:27:14 |
| *.afnoc.af.mil | 132.3.*.* | | Mozilla/4.0 (compatible;) | MAFB-Gunter Annex AL US | Irongeek.com | 2013-04-25 09:24:37 |
| *.afnoc.af.mil | 132.3.*.* | MSIE 8.0 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) | MAFB-Gunter Annex AL US | Practical Guide to Alternative Data Streams in NTFS | 2013-04-25 09:05:02 |
| *.ilga.gov | 12.43.*.* | Intel Mac OS X 10_7_5) AppleWebKit/537.4 (KHTML, like Gecko) Chrome/22.0.1229.94 Safari/537.4 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_5) AppleWebKit/537.4 (KHTML, like Gecko) Chrome/22.0.1229.94 Safari/537.4 | | State Hacking/Computer Security Laws | 2013-04-25 08:48:49 |
| *.gtwy.uscourts.gov | 206.18.*.* | MSIE 10.0 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) | | Windows 7: Copy A Modified User Profile Over The Default Profile | 2013-04-25 07:55:52 |
| *.afnoc.af.mil | 132.3.*.* | rv:20.0) Gecko/20100101 Firefox/20.0 | Mozilla/5.0 (Windows NT 6.1; rv:20.0) Gecko/20100101 Firefox/20.0 | MAFB-Gunter Annex AL US | Practical Guide to Alternative Data Streams in NTFS | 2013-04-25 07:50:05 |
| *.ens.ornl.gov | 128.219.*.* | WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 | Oak Ridge TN US | Changing Your MAC Address In Window XP/Vista, Linux And Mac OS X
(Sometimes known as MAC spoofing) | 2013-04-25 07:29:27 |
| *.dmv.ca.gov | 205.225.*.* | MSIE 9.0 | Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) | | Ironkey High Security Flash Drive: Use and Review (Hacking Illustrated Series
InfoSec Tutorial Videos) | 2013-04-25 07:28:59 |
| *.ngb.army.mil | 132.79.*.* | | Mozilla/4.0 (compatible;) | Fort Huachuca AZ US | Irongeek.com | 2013-04-25 07:23:20 |