Clik here to view.
Linkedin NXDOMAINs - Purchased Pwnage
I recently asked a friend if I could have just a list of the domains in the LinkedIn dump, no passwords, not full emails, just domains. I run a program that I lovingly call “DeepMagic” and I feed it...
View ArticleClik here to view.
Meterpreter show_mount
Meterpreter’s STDAPI extension (the one that always gets loaded) has a new command. This doesn’t happen very often so it’s worth noting.The new command prints out the currently attached “mounts”. In...
View ArticleClik here to view.
Intel NUC Super Server
Hi. I’m Rob… and I have a problem. Lets just say, when you find the limitations on Amazon’s wishlist features for single items, you know you have a problem. My problem? I’m kinda addicted to Intel...
View ArticleClik here to view.
BlackHat/Def Con/BSides Talk Picks for 2016
Each year I make up a list the week before Blackhat and Def Con of talks that I “can’t miss” and some that I want to see (and use it for video watching afterwards for those I missed). This year I...
View ArticleClik here to view.
2016 DerbyCon Hiring List
Created the 2016 UNOFFICIAL DerbyCon Hiring List. To get on the list is even easier now! Just complete the following form: https://goo.gl/forms/LW5b1xo4O9D8eVZU2(One small tip, first come first serve,...
View ArticleClik here to view.
Snagging creds from locked machines
First off, this is dead simple and shouldn’t work, but it does. Also, there is no possible way that I’m the first one that has identified this, but here it is (trust me, I tested it so many ways to...
View ArticleClik here to view.
Intel NUC Super Server
Hi. I’m Rob… and I have a problem. Lets just say, when you find the limitations on Amazon’s wishlist features for single items, you know you have a problem. My problem? I’m kinda addicted to Intel...
View ArticleClik here to view.
Reverse Proxying Attacker Tools
Ever want to have all of your C2 go to the same box, have the functionality of Meterpreter, and Empire, while making it so if anyone goes to the actual site of your C2 all they get is something like...
View ArticleClik here to view.
2016 Shmoocon Hiring List
Created the 2016 UNOFFICIAL ShmooCon Hiring List. To get on the list is even easier now! Just complete the following form: http://goo.gl/forms/pbYI0TZ9dG(One small tip, first come first serve, so if...
View ArticleClik here to view.
Another Blogging Platform
Yes yes yes, I know, another platform, but guess what, it’s my blog, so ne-ner-ne-ner-ne-nerHugo removed what I didn’t like about Octopress (the generating / pushing of content using a mix of branches...
View ArticleClik here to view.
Metasploit Minute
Metasploit Minute Season 6 is on the air! I know we have been away for a long while. The first episode is posted https://www.patreon.com/posts/5083466 each Monday a link will be posted on the Patreon...
View ArticleClik here to view.
BlackHat USA 2016
Once again, @egyp7 and I will be teaching both our Metasploit Basics course as well as the Mastery Course.
View ArticleClik here to view.
Kerberoasting - Part 1
Previous works: There has been a number of differnet blog posts, presentations and projects that have happened before this post and I will reference a number of them during the post and at the end have...
View ArticleClik here to view.
Kerberoasting - Part 2
Previous works: There has been a number of different blog posts, presentations and projects that have happened before this post and I will reference a number of them during the post and at the end have...
View ArticleClik here to view.
Kerberoasting - Part 3
Previous works: There has been a number of different blog posts, presentations and projects that have happened before this post and I will reference a number of them during the post and at the end have...
View ArticleClik here to view.
WPAD Persistence
Mostly just writing this so I can keep notes.Today I came up with the idea to forcibly put the WPAD entry into a Windows Domain’s DNS. For those who don’t know what this would do there is an entire...
View ArticleClik here to view.
SMB/HTTP Auth Capture via SCF File
Recently saw a link to an SCF file. Didn’t know what those were so I went digging. Turns out they are a simple text based file that controls Windows Explorer. ;-)Here are the examples I found via the...
View ArticleClik here to view.
Linkedin NXDOMAINs - Purchased Pwnage
I recently asked a friend if I could have just a list of the domains in the LinkedIn dump, no passwords, not full emails, just domains. I run a program that I lovingly call “DeepMagic” and I feed it...
View ArticleClik here to view.
BlackHat/Def Con/BSides Talk Picks for 2016
Each year I make up a list the week before Blackhat and Def Con of talks that I “can’t miss” and some that I want to see (and use it for video watching afterwards for those I missed). This year I...
View ArticleClik here to view.
2016 DerbyCon Hiring List
Created the 2016 UNOFFICIAL DerbyCon Hiring List. To get on the list is even easier now! Just complete the following form: https://goo.gl/forms/LW5b1xo4O9D8eVZU2(One small tip, first come first serve,...
View Article