content top

WinEsc

WinEsc

As part of my Priv Escalation  work I have been doing you may know I have created a little Linux script to help automate some of the process. Well, I have now created (sill creating) a windows version too. Written in VB. As  i said,  i am  still writing it, so i will not publish the app just yet but as  soon  as its ready for beta testing then i will let you know. Until then,  you can  see from the screen shots the features it has...

Read More

LinEsc

LinEsc

So  at the moment,  I am  doing a lot  of work  with  Linux systems specifically obtaining  root level access from a standard or locked down user. During each challenge there are numerous steps you would check by default during the enumeration stage whilst on  the box. As part of the enumeration stage you are looking for particular permissions on  scripts and directories, mis-configurations or  config files, user accounts,...

Read More

CTF

CTF

So, I have taken to participating in Security Capture The Flag events and competitions in my spare time. CTFs are a great way to learn and experience new real life scenarios and environments. I personally prefer a smaller team when participating, with each member specializing in their own area. But that’s not to say that being part of a larger team is not enjoyable, very often you find you are helping others learn. I just feel that if...

Read More

Bug Bounty

Bug Bounty

Hall of Fame: Total Number of Bug Bounties: 2   Cagd.leedsmet.ac.uk – Personal Magix.com – Hall of...

Read More

Catflap.py

Catflap.py

So I have been working on a new script which uses Python and Shodan API to allow you to search the web for mis-configured devices. For example; Shodan has detected about 1531095 results (URL’s) with some form of ‘default configurations’ described within the headers. HTTP/1.0 401 Date: Sat, 21 Dec 1996 12:00:00 GMT WWW-Authenticate: Basic realm=”Default password:1234″       So out of...

Read More

Default Password List

Default Password List

I have created a spreadsheet of full of Default Router Passwords.   Default Password List     e.g. netgear 3100d Multi admin password 192.168.1.1 No Netgear DG834 Multi admin password No Netgear MR-314 3.26 HTTP admin 1234 Admin No NetGear RM356 None Telnet (none) 1234 Admin No Netgear router 2 Console admin password admin No netgear router Other admin password No Netgear RP114 n/a Telnet admin 1234 Admin No Netgear...

Read More

Plesk permission recovery

Plesk permission recovery

So recently i made the mistake of running ‘Chown’ on the wrong directory and it messed up my site and all sub-domains. Now on a regular /var/www type set up thats an easy fix. However, this was on a Plesk server. For those of you who use Plesk, will be very familiar with how particular Plesk can be and how differently it is configured as a web server. Using the built in features for Plesk I was unable to perform the permission...

Read More
content top
shared on wplocker.com