-
Simple Personal Hack Lab – 2
In the previous post we had set up VirtualBox with Ubuntu so that we could start with creating our own lab. In-fact depending on what you want to hack, you may only need this one machine and some software within it. So how do we install that “software” without bloating our Ubuntu machine, well that…
-
Simple Personal Hack Lab
There is significant value in being able to set up your own simple environment rather than having to rely on an external party. Mainly because you can be very specific about what you want to test, such as a zero-day, you can keep sessions alive without worrying about a network connection disconnect. Its also a…
-
Antivirus/EDR Evasion with Shellter
A crucial segment of a Pen-test is the ability to evade EDR tools. Shellter is a very handy and easy to use tool to ensure that your malware is undetected and leads to a successful compromise of the systems you are testing.
-
Git Clone – SSH
SSH keys provide additional security for any git based projects specially if you choose to use a public key with a passphrase enabled.
-
Dummy Git Basics & Git Client Setup
Git is a tool/technology that allows you to create and manage shared resources, such as code, documents, diagrams etc. It is specially useful for projects that have multiple simultaneous contributors.
-
Buffer Overflow – Example Setup
Now that we understand what a buffer overflow is theoretically, lets see what it looks like on a computer. In this blog post let me see if I can help you understand the code that we shall be working with. First we are going to know what the basic setup looks like though. I am…
-
Buffer Overflow -2 (Theoretically Exploiting the stack)
It’s been a while since I’ve written, owing mainly to work – work. In the last post I laid down the foundation for understanding the buffer overflow attack, and I think most of my work is complete. If the concepts about how the stack works are clear, understanding a basic buffer overflow should not be…
-
Install BlindElephant
What is BlindElephant: BlindElephant is a web application fingerprinting tool. As per their sourceforge.net page – “The BlindElephant Web Application Fingerprinter attempts to discover the version of a (known) web application by comparing static files at known locations against precomputed hashes for versions of those files in all all available releases. The technique is fast,…
-
E-Commerce Quick Introduction
This term has kept me really busy, and in particular one course. E-Commerce Systems. As challenging as the course is, it is equally if not more interesting. The first thing that I will layout in this post is a brief theory of what e-commerce is, and what it entails. This is more of a overview…
-
Set up Pidgin and IRC
Hi guys, for those of you who have never set up IRC, I hope this post helps you. There are numerous clients for IRC. I personally use Pidgin, its pretty simple to setup. Download Here is the link to the download page Pidgin. The installation is pretty simple, just clicking through the wizard should get…