• sprawllatest

    19 jul
    spam nation

    Spam Nation is a non-fiction book written by Brian Krebs, a well known journalist and the author of the blog. The book's primary focus is on the cybercrime coming from the post-Soviet states, especially related to spam. The main story line revolves around Pavel Vrublevsky and Igor Gusev, two partners in crime who, like in a classic gangster flick, become enemies and start an all out war of attrition - “Pharma Wars”. Bribing politicians, hiring FSB agents, hacking and leaking each other's databases anything goes in this personal fight. Along the way you will learn about the inner workings of the massive spam operations and the political, criminal, financial, and social forces that drive them. Read more.

    the 414s: the original teenage hackers

    A short documentary by Michael T. Vollmann explores the birth, the exploits, and the eventual demise of The 414s - a hacker group active in the early 1980s until the summer of 1983. The documentary offers an interesting look into the early innocent days of hacking, especially just how influential the movie Wargames was to bring mainstream recognition. At the same time, the ease with which The 414s could penetrate even the more sensitive computers and the lack of laws to prosecute the adult members of the group resulted in the series of laws including the infamous Computer Fraud and Abuse Act (CFAA) of 1986. Read more.


    Size 2.5 MB
    DateNovember 6th, 2014

    DNSChef is a highly configurable DNS Proxy for Penetration Testers and Malware Analysts. It is capable of fine configuration of which DNS replies to modify or to simply proxy with real responses.

    Version 0.3 introduces support for more DNS record types, DNSSEC, logging, more configurable remote nameservers, support for the updated dnslib library and several bug fixes.

    Version 0.2 introduces IPv6 support, large number of new DNS record types, custom ports and other frequently requested features. Read more.

    01 oct
    exodus - vuln-dev - master class

    A few weeks ago I had a great pleasure of studying at a week-long training taught by Exodus Intelligence. The Vulnerability Development - Master Class was taught by Aaron Portnoy, Zef Cekaj, and Peter Vreugdenhil. The class had an excellent presentation of two complementary yet unique subjects of vulnerability discovery and exploit development primarily under Windows environment. The instructors are truly masters of their field which was reflected in the great quality and depth of the material.

    While it is still fresh in my mind, I would like to share with you some of the notes on the covered subjects, the recommended prerequisites, and tips on how to get the most out of this very intensive training. Read more.


    The Sprawl is a research and development environment with a focus on information security and hacking culture.

    If you find the content of this site useful consider making a donation to help support future development and hosting expenses.

    The site was designed and developed by Peter Kacherginsky (iphelix).

    All original content on this site is copyright protected and licensed under Creative Commons - Attribution, NonCommercial, ShareAlike 4.0 International.