Let’s talk about Malware – it’s been a hot topic in the recent past and there’s lots more coming around in terms of reverse engineering, learning more about dissecting malware and running your own labs to generate, recreate and tackle the best. Here’s a page for a growing list of labs to ensure we’re up… Read More Malware
Surely most of you know how invaluable this tool is, some of you are experts and need no guidance – but if you’re green here’s some great info to get you rolling! Metasploit Unleashed Metasploit Tips and Tricks – Ryan Linn Metasploit Class2 – Part1 Metasploit Class2 – Part2 Metasploit Class2 – Part3 On a… Read More Metasploit
Every engineer has a tool-kit – spanners, screwdrivers, voltmeters… while we don’t carry a bag of tools, just a USB stick with the right softwares on it is all you need. Some of us use Kali Linux which is quite a concise and complete tool-kit, and others like to roll their own – here’s some… Read More Tools
A lot of talk has come around about the importance of web app hacking and exploiting of such apps. Here’s a repo of some of the more important – or let’s say – more frequently looked up information. SQLi MSSQL Injection Cheat Sheet SQL Injection Cheat Sheet EvilSQL Cheatsheet RSnake SQL Injection Cheatsheet Mediaservice.net SQLi… Read More WebApp Hacking
In the ever evolving world of technology – cyber security surely is much more fast paced due the distribution of information within the eco-system. In saying this, keeping up to date or keeping-up with practice labs and continuously honing skill-sets is essential when it comes to being “in-the-know”. Therefore, you will find below a list… Read More Practice makes… perfect?
Let’s face it, there’s lots and lots of information out there that you can pretty much “drown” in – so I’m going to create a repo of some of my favorite links here for your ease. Here’s a few of my favorite pages when it comes to preparing for the OSCP exam Tulpa’s Guide –… Read More Preparing for OSCP
This is going to be an always *under construction* sort of page. My favorite enumeration techniques will slowly appear here with more and more explanations to follow – remember #DontWaitEnumerate // Find out what’s connected netdiscover -r 192.168.0.0/16 // My favorite Nmap scan nmap -sS -A -O -n -T5 192.168.1.131 -sS = SynScan -A =… Read More ENUM4LYF
Welcome to my first CTF write-up, we’re going to start with something easily obtainable from our friends at VulnHub. Our target today is the SickOS 1.1 CTF – you can download it direct here It’s a fun exercise and easily approachable for beginners up to medium level experienced practitioners or just someone getting into hacking… Read More SickOS 1.1
Let’s face it, I’m sure there will be a time when we want to exchange rather sensitive information – so apart from the usual, here’s my PGP Key – add it to your secure-mail and we can speak worry free! You know where to find me… 😉 —–BEGIN PGP PUBLIC KEY BLOCK—– mQINBFrLdS0BEADm80BnkzFZi37mKuo4mIddUOcll4sC8N7T2FMIOgdkqsfPDARv BjOAAJJI5J7kduuPSjJIMfFPtSTksDbJsBid5nRJhgHcOyJ3DMnWer7d66z3N3EB hQ0qwnt44eozddrWBXBvKZsqDk+fYBqw3s29iPBEeKpg9ne3CIR0WX6KqJcKV5MQ… Read More Secure communications
This blog is going to cover a few exploits, some VM’s I’ve had a go at, as well as some finds on the web.