Os Detection Techniques Background information This is a list, with explanations for all the active and passive techniques I can find for remoteoperating system identification – there is a massive list of sources at the end. Background information: techniques Active fingerprinting – Active fingerprinting is the process of transmitting packets Read more…
I have decided to start studying towards a CISSP and / or an OSCP, as part of that I saw an excellent blog post recommending to go through a lot of CTF challenges from vulnhub.com. These are my Kioptrix walkthrough guides / findings and observations for each of the first Read more…
This is a WordPress mega-post containing a lot of best-practice information on securing, hardening, updating and maintaining a WordPress site. Used by more than 60 million websites, including 30% of the top 10 million websites as of April 2018, WordPress is the most popular website management system in use. (wikipedia) Read more…
Installing and configuring the fail2ban centos service fail2ban is a service for linux systems that checks log files for failed login attempts and automatically inserts firewall rules to block further attempts at logins from those IP addresses for a specified amount of time. Installing fail2ban on centos is relatively easy Read more…
Metasploit for website pentest using wmap. Wmap is a web application scanner that runs within metasploit. We can use wmap to get an outline of the application we are probing. Start dvwa inside vagrant In this tutorial I’ll be using dvwa in vagrant as my target If you dont have Read more…
This is a burpsuite beginners tutorial. Burpsuite is a collection of tools, written in Java used to perform various network security related tasks. Burpsuite can be used as a basic http proxy to intercept traffic for analysis and playback, a web application security scanner, a tool to perform automated attacks Read more…
Multiloquent 10 0 0 Changelog f5ed825 – post format 268d5ef – removing old hings e59727b – cleanup dd08d38 – version bump adb1fa7 – syntax error fix 68555e5 – fixes 089c9f0 – remove api key 90426b8 – updating readme 7195e1b – version bump c7dc318 – fix for images, version bunp dbc9b9a Read more…
Configuring free ssl certs with letsencrypt in centos Using letsencrypt in centos requires a few modifications to your centos before you can run the letsencrypt client. The setup for vhosts in centos is different from the setup in debian based distros. This is how I modified my centos install to Read more…
This post is a wapiti tutorial. You’ll find various wapiti options, how to import wapiti scan results into metasploit and how you can disable wapiti modules to speed up your scans. A basic one-liner command to get you started would be: More about the command line arguments: These basics will Read more…
Multiloquent 9 0 0 Changelog 3015a81 – Merge branch ‘master’ of https://github.com/localhost8080/multiloquent a79d3a3 – Update to version number as this removes backward compatibility with the old amelia theme df0d6df – Update to bootstrap code 9bd8d60 – update to all bootstrap and bootswatch themes b39a9f3 – update to all bootstrap and Read more…
What is an sql injection attack? All websites process data entered by users. An input-validation attack is when unexpected user input is processed by a web server or database and an error occurs. What is an sql injection attack? “An SQL Injection Attack (SQLIA) occurs when an attacker attempts to Read more…
MetaSploit tutorial for beginners This MetaSploit tutorial for beginners is to be a starting guide for how to use MetaSploit. It assumes that you already have MetaSploit installed, or that you are running Kali / backtrack Linux. The basic concept of how to use MetaSploit is as follows:– Run msfconsole Read more…
Multiloquent 7 Changelog 3412cf9 – updating readme f0905c2 – updating readme files f498de6 – version bump [major release] updating readme files eae969b – search form css fix 7602671 – search label 3dbab3c – search form mods 764ca66 – markup for label button dacb048 – nicer label and button 2d524fd – Read more…
Multiloquent 6 3 1 changelog development 4f1d71d – lowercase true and false development c35fd69 – minor css fix and version bump to submit to wordpress development 8f84831 – version bump for wordpress site development 2f987cf – fix for featured posts css development a8a711f – style changes for ipad versions of Read more…
Multiloquent 6 2 01 Changelog development c33c95d – fix for mce content body development 8a1cbaf – fix for background colour inside tinymce development 864c9c8 – code cleanup development 37cc370 – aligning things development d8c91b7 – alinging things development dca23c7 – aligning elements development d112d09 – code tidy development afc6101 – Read more…
Multiloquent 6 2 0 changelog development 646e320 – fix for readme file adding multiloquent url at jonathansblog.co.uk development 90f0277 – revert – its easier to read development 708ca0f – fix development afdad58 – small fix for readme development 0a54442 – version bump and changes to the readme development 5f08e9b – Read more…
With the release of osx 10.8.2 all my vitrualbox virtual machines stopped working with the error VirtualBox cant operate in VMX root mode. Fortunately virtualbox developers are very quick to act, and have a solution, https://www.virtualbox.org/ticket/10965 the support ticket has a link for a hotfix here great stuff virtualbox dudes Read more…
Application cant be opened because it is from an unidentified developer: On mac osx, if you download an application that isnt from the app store, or from an arbitrary list that apple has put together, then you will get an error when you try to run that app. the error Read more…
This post shows you how to fix Netflix is currently unavailable on apple tv. When you first try to access Netflix on the apple tv you see that ‘Netflix is currently unavailable’. There are a couple of reasons why you wont be able to access Netflix: Netflix is currently unavailable Read more…
If your audio midi setup takes an age to load, and you get the message ‘the midi server cant be opened’ it might be to do with protools. i run protools 8 and osx lion. everything worked fine if I was plugged into my protools interface, but when the interface Read more…
This post will show you how to fix the error ‘this movie requires quicktime which is not supported in this version of itunes’ when you try to play movies in itunes. If you get this message, then simply open finder, goto applications, right click on itunes and tick the ‘run Read more…
Bulletproof security is an excellent wordpress security plugin for your wordpress installation it provides a lot of cool features: XSS protection SQL injection protection htaccess protection wp-config protection, One-Click Setup Wizard Setup Wizard AutoFix (AutoWhitelist|AutoSetup|AutoCleanup) MScan Malware Scanner .htaccess Website Security Protection (Firewalls) Hidden Plugin Folders|Files Cron (HPF) Login Security Read more…
This will show you how to delete duplicate and stale old bookmarks in chrome. The extension checks each of your bookmark links and if the page responds, the bookmark is kept, if the bookmark returns a 404, or not-found error, then the bookmark is removed! bookmark sentry is the extension Read more…
Linux! Slackware floppies! zip-slack! Redhat 5.2! Tomsrtbt! Downloading zip-slack over modem for a week. Getting a shell and thinking ‘wtf’ trying dos commands. Having to reboot to read documentation! Trying random commands. Learning that xemacs needs x to run. Wtf is x? I was now at university. it was 1998. Read more…
This post will show you how to sync your google calendar with ical. jump to: instructions for osx lion, mountain lion and mavericks instructions for snow leopard faq How to sync your google calendar with ical in osx lion, mountain lion and Mavericks In osx snow leopard it was possible Read more…
I had stopped using the iphone wordpress app after it lost about 20 blog posts I had been writing whilst I was cycling through europe in the summer. it got stuck with an xmlrpc error that was a bug in the app. i looked at the changelog for the newest Read more…
I finally have some time to sort out some issues with my site. I have to fix the html validation, and the css. I would like to add some more cool things, like if you visit my site with IE6 then it only displays a big red warning page with Read more…