This is a quick chat from David Irvine, CEO of MadeSafe The world forces us to change. Private and public info is everywhere now. It was fine, till the companies started to map the data and use it to craft their algorithms. Server based infrastructure is the easiest way that Read more…
Os Detection Techniques Background information This is a list, with explanations for all the active and passive techniques I can find for remoteoperating system identification – there is a massive list of sources at the end. Background information: techniques Active fingerprinting – Active fingerprinting is the process of transmitting packets Read more…
I have decided to start studying towards a CISSP and / or an OSCP, as part of that I saw an excellent blog post recommending to go through a lot of CTF challenges from vulnhub.com. These are my Kioptrix walkthrough guides / findings and observations for each of the first Read more…
Spidering a web application using website crawler software in kali linux There are lots of tools to spider a web application (an companies which are based on this tech, eg google) short list of tools to help you spider a site (eg for creating a sitemap for SEO, or recon Read more…
This is a WordPress mega-post containing a lot of best-practice information on securing, hardening, updating and maintaining a WordPress site. Used by more than 60 million websites, including 30% of the top 10 million websites as of April 2018, WordPress is the most popular website management system in use. (wikipedia) Read more…
Malware detection on Plesk systems using maldet and clamav Linux Malware Detect (LMD) is a malware scanner for Linux released under the GNU GPLv2 license, that is designed around the threats faced in shared hosted environments. It uses threat data from network edge intrusion detection systems to extract malware that Read more…
Vagrant with sshfs. You can use sshfs in vagrant with only a private network. This is fine if you are doing all your devlopment from a single machine and dont need to access the vagrant box from your network, but if you need to run some testing from an external Read more…
Metasploitable background: What is metasploitable? “Metasploitable is a Virtual Machine that is built from the ground up with a large amount of security vulnerabilities. It is intended to be used as a target for testing exploits with metasploit.” Why do we need metasploitable? One of the problems you encounter when Read more…
A comparison of service-oriented architecture and frameworks IntroductionPapazoglou, (2003) organised SOA in four architectural layers: Service Foundations, Service Composition, Service Management and Service Engineering and outlined a host of technologies that could be utilised when developing and deploying an SOA system to overcome the challenges of a distributed enterprise system, Read more…
Continuing on from my original metasploit beginners tutorial, here is a slightly more advanced Metasploit tutorial on how to use metasploit to scan for vulnerabilities. The outcome of this tutorial will be to gather information on a host and its running services and their versions and vulnerabilities, rather than to Read more…
Crypto Asset Convergence This was a really good talk – A company called New Alchemy from Seattle 4 categories of crypto currencies exist to be money utility tokens exist to access a network of value smart contracts exist to be a global compting network security tokens exist to confer ownership Read more…
build your own blockchain application in less than an hour Edward Ciggaar developer advocate IBM I’ve been looking forward to this one for a while now :D starting with an example of a game (coffee with blockchain) the hyperledger platform was explained – a map was shown on the screen Read more…
I joined a few older posts together (and redirected those old posts here) to create a single place for my public dns services list and instructions. Short list of IP addresses if you know what your doing google: 8.8.8.8 8.8.4.4 opendns: 208.67.222.222, 208.67.220.220 quad9 (IBM): 9.9.9.9 cloudflare: 1.1.1.1, 1.0.0.1 You Read more…
This post is a combination of previous posts about privacy settings in mac and ios. Safari do not track: Safari gives users the option to enable the ‘do not track’ feature. It’s easy to enable: safari > preferences > privacy > Ask websites not to track me Safari prevent cross-site Read more…
This is a burpsuite beginners tutorial. Burpsuite is a collection of tools, written in Java used to perform various network security related tasks. Burpsuite can be used as a basic http proxy to intercept traffic for analysis and playback, a web application security scanner, a tool to perform automated attacks Read more…
This is a short post on how to setup a dvwa vagrant box for your testing. I recommend this method when installing and testing new tools (and even for developing tools of your own) – there are known vulnerabilities in this system, so you can use the scientific method while Read more…
Vagrant with NFS and public_network. You can use NFS in vagrant, but it requires a private_network to work; This is fine if you are doing all your devlopment from a single machine and dont need to access the vagrant box from your network, but if you need to run some Read more…
Blackarch pacman package groups Install with pacman -S groupname to quickly install a bunch of tools in one command: This info is available in the blackarch developers guide here: https://blackarch.org/blackarch-guide-en.pdf – this post is a copy-paste of that info – there are a lot of red-team things in the list, Read more…
Blackarch on the chuwi hi10pro – prereq’s a usb hub a usb flashdrive a usb mouse a usb wifi adaptor (at least for the initial setup) Download blackarch from https://blackarch.org/downloads.html write to a usb drive (I used Etcher to do this part) Plug into chuwi and boot – Press F7 Read more…
Kali linux wpa_supplicant cli config. To setup a wifi connection using wpa_supplicant on the cli in kali, first you have to bring up your network interface ifconfig wlan0 up Next, we create a config file wpa_passphrase ‘router_ssid’ ‘wifi_password’ > /etc/wpa_supplicant.conf We need to edit the config file and remove some Read more…
This post has a collection of Linux commands for networking. There are basic linux network commands, advanced linux network commands and some centos network configuration commands, but I’ve tried to keep it to the point. jump to:Linux Network ConfigurationBasic Linux Network CommandsAdvanced Linux Network Commands Linux commands for Networking Configuration Read more…
Pihole on a raspberry pi – making a network wide advert blocker with a raspberry pi. I have a router using dnsmasq with adblocking setup on my router. I also have a raspberry pi (which was being used as a retropi machine). I also have a Pizero. My retropi setup Read more…
This post will explain ddwrt dnsmasq caching dns server configuration Using a ddwrt dnsmasq caching dns server lets machines in your LAN resolve DNS from a machine inside your local network, ultimately reducing the time to resolve an IP address from a domain name. If there is a result in Read more…
My brother and his wife got me a raspberry pi for my birthday :D So far I haven’t decided what to do with it, But I have lots of ideas – I could turn it into a gameboy (though I already have a couple of handheld retro gaming machines – Read more…
This post will show you how to setup dnsmasq in order to serve dns requests for (multiple) internal domains – using dnsmasq as an internal DNS server. Using this setup you can also add block lists so that your entire network doesnt get adverts :D eg you can serve a Read more…
[et_pb_section fb_built=”1″ admin_label=”section” _builder_version=”3.0.47″][et_pb_row admin_label=”row” _builder_version=”3.0.48″ background_size=”initial” background_position=”top_left” background_repeat=”repeat”][et_pb_column type=”4_4″ _builder_version=”3.0.47″ parallax=”off” parallax_method=”on”][et_pb_text admin_label=”Text” _builder_version=”3.0.74″ background_size=”initial” background_position=”top_left” background_repeat=”repeat”] This is a short post on Installing vagrant on centos 7. First, you need to download vagrant – head over to http://www.vagrantup.com/downloads and copy the url to the current vagrant package in Read more…
Multiple ip addresses on one physical NIC. I have a gigabyte brix running esxi to host a few virtualised servers. I have one server for my web development. I have multiple apps that all require running on port 80. I have one physical network port. Fortunately, you can have multiple Read more…
Linux / OSx commandline network host discovery This post contains Various ways to find the hosts in your network using commanline commands. For the following, it is assumed that: 192.168.1.0/24 is your whole network 192.168.1.255 is your broadcast address Replace with your own values (you can find these with ifconfig) Read more…
MetaSploit tutorial for beginners This MetaSploit tutorial for beginners is to be a starting guide for how to use MetaSploit. It assumes that you already have MetaSploit installed, or that you are running Kali / backtrack Linux. The basic concept of how to use MetaSploit is as follows:– Run msfconsole Read more…
M-business Security Threats: Device as an attack vector with mobile devices widespread they are commonly being used as attack vectors Virii While not many viruses exist for mobile devices themselves, mobile devices are being used to speed viruses inside networks as most mobile devices don’t have antivirus software installed Default Read more…
This post is a collection of things to form a best practice for mac security. 1) enable password after sleep or screensaver. settings > security > require a password immediately after sleep or screensaver. This will stop anyone who sneaks up on your machine when your not there from using Read more…
Subnetting class C networks Benefits of Subnetting: Reduced Network Traffic Optimised Network Performance – as a result of reduced traffic Simplified management Facilitated spanning of large geographical distances How to create subnets: Determine the number of required network ID’s one for each subnet one for each WAN connection Determine Read more…
Osx has a lot of built in tools. there is a wifi analyser / packet capture tool to open it, just hold down ALT + click on the wifi icon in the menu bar the dropdown menu will have a lot more information, eg transmit rate / security info for Read more…
What to do when your mac or ipad or iphone is stolen. This is a horrible post to have to write. My house just got broken in to and my macbook pro and my ipad got stolen, along with three other laptops. Here is a list of things I did, Read more…
This post shows you how to fix Netflix is currently unavailable on apple tv. When you first try to access Netflix on the apple tv you see that ‘Netflix is currently unavailable’. There are a couple of reasons why you wont be able to access Netflix: Netflix is currently unavailable Read more…
To join a wireless network on an ipad or an iphone all you have to do is: go to settings > wifi wait for a second for the iphone or ipad to find the available wireless networks pick the network you want to connect to enter the passphrase when prompted.
To stop you iphone or ipad asking you to join lots of different wifi networks all you have to do is: go to settings > wifi at the bottom you will find an option called ‘ask to join networks’ just slide it to ‘no’ and your iphone or ipad will Read more…
This command will force spotlight to reindex your drive. It is useful if your spotlight index isnt returning results you know it should. This post will help you force spotlight to reindex either your whole machine, or a specific folder. force spotlight to reindex your drive using the terminal open Read more…
Automount network drive on startup osx. This will show you how to automount a network drive when you login to osx lion. This method will persist through a reboot, so your drive will always be available. Connect to your network drive (finder > go > connect to server) Enter the Read more…