Quantcast
Channel: All Posts - Malicious Link - Blog by mubix - Rob Fuller
Browsing all 1156 articles
Browse latest View live

Image may be NSFW.
Clik here to view.

pfSense without Internets

A while back I needed to set up a pfSense box for CTF/example stuff that didn’t and wouldn’t ever have Internet connectivity. Doesn’t seem like much of a task right? Just pop it in and go. Problem is...

View Article


Image may be NSFW.
Clik here to view.

Back to Blogger

I’ve had my fare share of “trying new things” after SquareSpace. I tried Ghost, Octopress, Wordpress, and about 30 others in between. All the blogging platforms I tried had some major issues that I...

View Article


Image may be NSFW.
Clik here to view.

Tres Lessons From Pied Piper Delete Key Hack

The teflon crew at Pied Piper suffered quite a bit during Season 2 of SILICON VALLEY. But there was no greater indignity than being brought to their knees by a tequila bottle. Since episode eight...

View Article

Image may be NSFW.
Clik here to view.

2015 DerbyCon Hiring List

It’s often tough from both hiring and job hunters to find one another at conferences. I think this is mostly because of a couple things. No one wants to stand at a booth on either side and talk job...

View Article

Image may be NSFW.
Clik here to view.

Using Domain Controller Account Passwords To HashDump Domains

Since I follow both Carlos Perez and Benjamin Delpy on Twitter, something caught my eye on August 2nd, soon after Benjamin Delpy drops DCSync: @Carlos_Perez haha, if yes, it will be a 0d ;) No, like...

View Article


Image may be NSFW.
Clik here to view.

Get PasswordLastSet Time For Domain Controller Accounts

AKA - ROB WRITES POWERSHELL!! Yesterday I posted a way to dump hashes using a Domain Controller account. But how do you know which account to use? And when was it’s password last set? net user...

View Article

Image may be NSFW.
Clik here to view.

Hacking Advice For @Krystropolis

Today I was asked by @Krystropolis for a “Hello” and maybe some hacking advice, see tweet: @mubix I have my class in 4 hours. Would you be willing to post a 'hello' and maybe some hacking advice for my...

View Article

Image may be NSFW.
Clik here to view.

Hiding Desktop Icons For Presentations On OSX

If you found this post via a search, you are probably like me, “not great” at keeping your desktop clear “stuff” (you probably have a ‘stuff’ folder you once put stuff in and forgot about). If you are,...

View Article


Image may be NSFW.
Clik here to view.

DotNet's DNVM For Persistence On Developer Machines

One of the best resources for persistence mechanisms is Hexacorn’s blog. http://www.hexacorn.com/blog/category/autostart-persistence/ If you haven’t checked out his “Beyond good ol’ Run key” (linked...

View Article


Image may be NSFW.
Clik here to view.

R5 Industries

I recently took the plunge and joined a startup called R5 Industries. I wanted to say thanks for all the well wishes that I received on social media. It has certainly calmed my nerves about the choice...

View Article

Image may be NSFW.
Clik here to view.

Time

Time is a one-time non-renewable precious resource you are given. It is ok to be greedy, selective, and even snobbish about how, and with whom you spend it. If it helps, think of your time as a vault,...

View Article

Image may be NSFW.
Clik here to view.

Meterpreter show_mount

Meterpreter’s STDAPI extension (the one that always gets loaded) has a new command. This doesn’t happen very often so it’s worth noting. The new command prints out the currently attached “mounts”. In...

View Article

Image may be NSFW.
Clik here to view.

Intel NUC Super Server

Hi. I’m Rob… and I have a problem. Lets just say, when you find the limitations on Amazon’s wishlist features for single items, you know you have a problem. My problem? I’m kinda addicted to Intel...

View Article


Image may be NSFW.
Clik here to view.

Reverse Proxying Attacker Tools

Ever want to have all of your C2 go to the same box, have the functionality of Meterpreter, and Empire, while making it so if anyone goes to the actual site of your C2 all they get is something like...

View Article

Image may be NSFW.
Clik here to view.

2016 Shmoocon Hiring List

Created the 2016 UNOFFICIAL ShmooCon Hiring List. To get on the list is even easier now! Just complete the following form: http://goo.gl/forms/pbYI0TZ9dG (One small tip, first come first serve, so if...

View Article


Image may be NSFW.
Clik here to view.

Another Blogging Platform

Yes yes yes, I know, another platform, but guess what, it’s my blog, so ne-ner-ne-ner-ne-ner Hugo removed what I didn’t like about Octopress (the generating / pushing of content using a mix of branches...

View Article

Image may be NSFW.
Clik here to view.

Metasploit Minute

Metasploit Minute Season 6 is on the air! I know we have been away for a long while. The first episode is posted https://www.patreon.com/posts/5083466 each Monday a link will be posted on the Patreon...

View Article


Image may be NSFW.
Clik here to view.

BlackHat USA 2016

Once again, @egyp7 and I will be teaching both our Metasploit Basics course as well as the Mastery Course.

View Article

Image may be NSFW.
Clik here to view.

Kerberoasting - Part 1

Previous works: There has been a number of differnet blog posts, presentations and projects that have happened before this post and I will reference a number of them during the post and at the end have...

View Article

Image may be NSFW.
Clik here to view.

Kerberoasting - Part 2

Previous works: There has been a number of different blog posts, presentations and projects that have happened before this post and I will reference a number of them during the post and at the end have...

View Article
Browsing all 1156 articles
Browse latest View live