Os Detection Techniques Background information This is a list, with explanations for all the active and passive techniques I can find for remoteoperating system identification – there is a massive list of sources at the end. Background information: techniques Active fingerprinting – Active fingerprinting is the process of transmitting packets Read more…
I have decided to start studying towards a CISSP and / or an OSCP, as part of that I saw an excellent blog post recommending to go through a lot of CTF challenges from vulnhub.com. These are my Kioptrix walkthrough guides / findings and observations for each of the first Read more…
Spidering a web application using website crawler software in kali linux There are lots of tools to spider a web application (an companies which are based on this tech, eg google) short list of tools to help you spider a site (eg for creating a sitemap for SEO, or recon Read more…
This is a WordPress mega-post containing a lot of best-practice information on securing, hardening, updating and maintaining a WordPress site. Used by more than 60 million websites, including 30% of the top 10 million websites as of April 2018, WordPress is the most popular website management system in use. (wikipedia) Read more…
Installing and configuring the fail2ban centos service fail2ban is a service for linux systems that checks log files for failed login attempts and automatically inserts firewall rules to block further attempts at logins from those IP addresses for a specified amount of time. Installing fail2ban on centos is relatively easy Read more…
What is a WAF A WAF is a web application firewall. A Web Application Firewall protects HTTP applications (eg websites) using a set of rules to protect against various common attacks, such as SQL Injection and Cross site scripting (XSS). Mod Security Web Application Firewall Mod_Security is an apache (and Read more…
Malware detection on Plesk systems using maldet and clamav Linux Malware Detect (LMD) is a malware scanner for Linux released under the GNU GPLv2 license, that is designed around the threats faced in shared hosted environments. It uses threat data from network edge intrusion detection systems to extract malware that Read more…
This tutorial will show you how to make a Raspberry Pi hack tool by installing Kali on the Raspberry Pi – by the end of this guide you will have a Kali Raspberry Pi hacking tool with lots of tools ready for use! Install Kali on the Raspberry Pi Following Read more…
Vagrant with sshfs. You can use sshfs in vagrant with only a private network. This is fine if you are doing all your devlopment from a single machine and dont need to access the vagrant box from your network, but if you need to run some testing from an external Read more…
Metasploitable background: What is metasploitable? “Metasploitable is a Virtual Machine that is built from the ground up with a large amount of security vulnerabilities. It is intended to be used as a target for testing exploits with metasploit.” Why do we need metasploitable? One of the problems you encounter when Read more…
A comparison of service-oriented architecture and frameworks IntroductionPapazoglou, (2003) organised SOA in four architectural layers: Service Foundations, Service Composition, Service Management and Service Engineering and outlined a host of technologies that could be utilised when developing and deploying an SOA system to overcome the challenges of a distributed enterprise system, Read more…
Continuing on from my original metasploit beginners tutorial, here is a slightly more advanced Metasploit tutorial on how to use metasploit to scan for vulnerabilities. The outcome of this tutorial will be to gather information on a host and its running services and their versions and vulnerabilities, rather than to Read more…
It turns out that coding in php on android is possible (even if its not as good as on a mac, linux or even windows). In this blog post I’ll go into some editors, IDE’s and other options for editing php code (and running a development LAMP stack) on your Read more…
This is a simple Vega scanner tutorial for beginners on XSS scanning with vega scanner in kali linux. VEGA is an open-source web security scanner, written in java with a GUI. you can scan for XSS issues and can also scan for SQL injection vulnerabilities. In this short introduction tutorial Read more…
This is a short post on how to remove unused kernels in linux. I’m adding it here because I use it regularly and keep forgetting the commands – it might help you too! Removing kernels manually firstly, check your running kernel version uname -a next, show all the installed kernels: Read more…
Blackarch on the chuwi hi10pro – prereq’s a usb hub a usb flashdrive a usb mouse a usb wifi adaptor (at least for the initial setup) Download blackarch from https://blackarch.org/downloads.html write to a usb drive (I used Etcher to do this part) Plug into chuwi and boot – Press F7 Read more…
How to root android on a chuwi hi10 Pro First, you need to enable developer mode How to root android on a chuwi hi10 Pro: Enable Developer Mode start android, goto settings > about tablet > click on “build number” 10 times Then you need to allow oem unlocking settings Read more…
Kali linux wpa_supplicant cli config. To setup a wifi connection using wpa_supplicant on the cli in kali, first you have to bring up your network interface ifconfig wlan0 up Next, we create a config file wpa_passphrase ‘router_ssid’ ‘wifi_password’ > /etc/wpa_supplicant.conf We need to edit the config file and remove some Read more…
I wrote a previous post about kali on the hi10, and promised a followup on Chuwi hi10 pro kali linux wifi fixes; here it is. The on-board wifi works out of the box in kali 2018.01 :D Kali chuwi hi10 pro wifi fix if you have just installed kali on Read more…
After trying Kali on the hi10 pro (its totally not ready for the bay-trail / cherry-trail platforms) I decided to give ubuntu on the chuwi hi10 pro a go (after hearing good things about their support) This is a short tutorial on dual booting ubuntu linux and windows10 on the Read more…
This is a short tutorial on dual booting windows and Kali on the Chuwi Hi10 Pro. Updated for Kali 2018.4 When I first wrote this post I seriously wouldn’t have recommended Kali on the Chuwi Hi10 Pro as an every-day system – Starting with 2018.01 and the 4.14 kernel it Read more…
Chuwi Hi10 Pro ultrabook tablet convertable surface – That’s some title, but I’m not sure how to describe my new machine. Its a tablet, but its also a laptop – it has a real keyboard and works exactly like a laptop, except you can remove the screen! It was a Read more…
Automatic updates in kali (and other apt based distros). There are a ton of ways to do automatic updates in kali linux (though this will work on debian, ubuntu, proxmox and any other apt-based system): 1) unattended-upgrades 2) a cron script 3) cron-apt This post will go through the various Read more…
This post has a collection of Linux commands for networking. There are basic linux network commands, advanced linux network commands and some centos network configuration commands, but I’ve tried to keep it to the point. jump to:Linux Network ConfigurationBasic Linux Network CommandsAdvanced Linux Network Commands Linux commands for Networking Configuration Read more…
How to install birdwatcher in kali linux Birdwatcher is an OSINT data analysis and data gathering tool for twitter. Birdwatcher has been designed to feel like metasploit or recon-ng, so should be familiar for anyone who has used those tools. Install birdwatcher in kali linux: Kali has ruby 2.2.x. by Read more…
How to copy a file to multiple locations in linux. cp doesnt let you copy one file to multiple locations; There are a few ways to do this, but the one I always return to uses find To copy the contents of a directory to multiple other directories find /location/to/folder Read more…
This post contains the kali linux keyboard freeze fix. Kali 2.0 is out, and I’ve installed it on my work pc; one thing I noticed was that the usb keyboard kept becoming un-responsive. It was very annoying. Symptoms Keyboard stops responding randomly for a few seconds, making typing very difficult. Read more…
Automatic cron updates with yum-cron on centos Update: I made a post on installing and configuring yum-cron in centos I have a virtual machine on my esxi box running centos 7. I dont log in all that much, as most of the operations that are run are automatic (eg polling Read more…
Multiple ip addresses on one physical NIC. I have a gigabyte brix running esxi to host a few virtualised servers. I have one server for my web development. I have multiple apps that all require running on port 80. I have one physical network port. Fortunately, you can have multiple Read more…
My New HomeLab Gigabyte Brix – 8 GB HyperX DDR3 ram for now (another 8GB on its way) Another 8GB has been ordered, bringing me up to 16gb. I’ll be upping the available ram for my Kali install and upgrading my windows 8 to windows 10! – 16GB usb drive Read more…
The data in the Western Digital MyBook drives is stored in a raid on the 4th partition of the drive. Mounting the western digital mybook NAS to recover data in another linux install isn’t for beginners. But here is the process: 1) Remove the drive from the western digital NAS. Read more…
I use an apple keyboard at work, I also use ubuntu. There are two things that I need to do to fix the cmd and fn keys with an apple keyboard in linux. 1) modify a file to make the F1-F12 keys work properly (eg, pressing the fn key makes Read more…
Linux / OSx commandline network host discovery This post contains Various ways to find the hosts in your network using commanline commands. For the following, it is assumed that: 192.168.1.0/24 is your whole network 192.168.1.255 is your broadcast address Replace with your own values (you can find these with ifconfig) Read more…
This is a basic openvas tutorial for beginners. I will explain a little of how to use openvas web ui to perform a test of your systems. It will give you the basic options for using metasploit msfconsole to run an openvas vulnerability scan. You will also learn how to Read more…
This tutorial is a basic Kali linux arachni tutorial: to get arachni up and running on your kali linux system and perform a basic scan. Arahni is a vulnerability scanner for web-apps, it is installed as part of kali-linux, their site is here Arachni via the command line Open a Read more…
This is a basic nikto tutorial for kali linux. It will get you started with nikto. For advanced usage, see ‘man nikto’ or http://cirt.net/nikto2-docs/ Nikto is a web application scanner – it will scan a web service and look for known vulnerabilities. It can be very useful to perform a Read more…
This is a basic plecost tutorial. Plecost is a commandline utility that will scan your wordpress host and identify lots of information leaks that could potentially help crackers breaking in to your site. There is some information at iniqua labs, but its a little difficult to get to grips with. Read more…
MetaSploit tutorial for beginners This MetaSploit tutorial for beginners is to be a starting guide for how to use MetaSploit. It assumes that you already have MetaSploit installed, or that you are running Kali / backtrack Linux. The basic concept of how to use MetaSploit is as follows:– Run msfconsole Read more…
Setting up brackets editor with git and phpcs with wordpress coding standard etc Brackets editor (brackets.io) is an editor that I’ve wanted to try out for a while now, but for it to be viable for me to use, I had to configure a few things: git in brackets editor Read more…