Domain Controller Machine$ Account To Dump Hashes Notes
In case you missed it, Mubix posted this post a few days ago:http://www.room362.com/2015/09/using-domain-controller-account.htmlThe great part of the post in case you didn't see/understand is that you...
View ArticleThe Reason Why
If you are curious as to they the Government and big business are discussing infosec skill gaps, the ability to fill contracts and get quality work, the following video outlines it pretty well:...
View ArticleClik here to view.
CVE's & My Vuln Disclosure Experience
Back in January I received my first CVE; CVE-2014-9354Reference: https://kb.netapp.com/support/index?page=content&id=9010021The reference above, like usual, gives no actual information. Luckily,...
View ArticleThoughts on the skills shortage
Sorry no meterpreter shells on this one.Reading Trey Ford's article https://community.rapid7.com/community/infosec/blog/2015/11/19/ciso-guidance-on-building-the-team led me to want to put some ideas...
View ArticleMore with smbclient, smbget, enum4linux
More notes because I can never remember and I'm sick of looking it upTesting open shares/445List shares with smbclient -L 1.2.3.4root@localhost:~# smbclient -L 1.2.3.4Enter root's password: Anonymous...
View ArticleClik here to view.
Arcade Gaming System on Raspberry Pi 2 & RetroPie (Part 1)
Arcade Gaming System on Raspberry Pi 2 & RetroPie (Part 1)I've been wanting an arcade system every since Rec Room Masters posted an ad on my Facebook feed last year. It's very much a want vs. need...
View ArticleClik here to view.
Arcade Gaming System on Raspberry Pi 2 & RetroPie (Part 2)
Arcade Gaming System on Raspberry Pi 2 & RetroPie (Part 2)MAMEThe RetroPie readme on ROM Management is here:https://github.com/RetroPie/RetroPie-Setup/wiki/Managing-ROMsPrepare to spend a bunch of...
View ArticlePurple Teaming - Lessons Learned & Ruxcon Slides
Note:I wrote a bunch of this while still at Facebook but have since changed jobs. Anything FB is now replaced with $previousjob since I cant speak for them anymore. This was supposed to go on their...
View ArticleCCDC Quals Notes (metasploit)
Some quick notes for interesting stuff to keep for CCDC Quals/NotesRapid Fire PSExecUse db_nmap to scan and populate the databse or db_import to import nmap xml into your workspace. This one uses open...
View ArticleAPT Ransomware
Yesterday this article came out from Reuters: http://www.reuters.com/article/us-china-ransomware-idUSKCN0WG2L5.I thought it would be useful to make a post explaining the situation a little more...
View ArticleMore on Purple Teaming
I wanted to add a bit more context/info/explanation on Purple Teaming after publishing the Ruxcon slides as well as Facebook and Twitter interactions on that topic.What is Purple Teaming?Currently...
View ArticleClik here to view.
Subtee regsvr32 sct with metasploit web delivery
So I put this out on twitter but failed to document it for historical reasons/find it when I need it.I was able to replace the PoC payload with the payload from Metasploit's web delivery and it worked...
View ArticleBlackHat 2016 Classes
BlackHat 2016 is quickly approaching! Early registration ends on Friday. So can save a few bucks and use that to go to Defcon 2016.This year we have decided to split our Tactical Exploitation class...
View ArticleAttack Research is Hiring!
It is very rare we post a public job ad. Right now we have one position open with more on the way. http://www.attackresearch.com/jobs.htmlPlease take a look and apply if interested. Or if you know...
View ArticleClik here to view.
Got any RCEs?
Security is a boomin’, and so there are many different appliances to protect your network. Some of them do very little to protect, some of them open new holes in yournetwork.In line with best practice,...
View ArticleClik here to view.
Exporting workspaces from your MSF database
Quick and dirty hack to export all your findings/host/services/etc and creds from your metasploit databaseNormally you'd do this with a:workspace myworkspacedb_export -f xml -a...
View ArticleOn Nation States and Sophistication
Thomas Ptacek made an interesting tweet today about Nation States, and if the term has any meaning, which got me thinking. In light of the numerous breaches that have been occurring, affecting both...
View ArticleHacking Complex Systems
Back in the day, you could download a piece of software, reverse engineer / fuzz it, find bugs, notify the vendor, post on Full Disclosure, watch a patch come out, and move on to the next bug.These...
View ArticleClik here to view.
DevOoops: Elasticsearch
Notes from the Devoops talk on Elastic SearchElasticsearch Provides a distributed, multitenant-capable full-text search engine with a RESTful web interface and schema-free JSON documents.GET request to...
View ArticleClik here to view.
DevOoops: Client Provisioning (Chef)
Notes on Chef from the 2015 Devoops Talk. Posting it so i can remove it from the slide deck but still refer to it. Also relevant from a common problems with devops theme.Chef allows you to define the...
View Article