Latest posts

  • Port Full Scan

    Effective Service Enumeration In this post we will address one of the tasks that haunts every pentester or red team operator, service enumeration. Its challenging task for every red team operator / pentester, specially when confronted with a Class A network address range for the first time. A typical service enumeration technique is comprised of: Host discovery: Create a list of live hosts (as close to 100%) as possible. Port Scanning: Find the exposed services...… (Read More)

  • Rop Aventures

    In this post we will dive into and old MSRPC Vulnerabilty specifically NetPathCanonicalize. Understanding the bug The vulnerabilty is a stack corruption bug, in short the main objective is to remove ‘..' form a path, and do so its using a recursive call, the problem happends when the ‘..' forces the recution to go beyond the last element of the path. You can find the full bug analysis decompiling-ms08-067 Its old bug… Yes, theirs lots...… (Read More)

  • Strong Password change

    Hey what’s up, yeah i know its been a long time since i posted something. Strong password change Over the last years alot of things have been said about strong passwords and the meaning of a strong password, as the CPU power increases the number and range of charecters also increase. This makes things hard at many levels, from the users prespective think about a string that meets all the requesits and remember it, it’s...… (Read More)

  • Wordlist Prosessor

    Happy new year. ( yeah.i know i been busy ) The last year end up been a cool year with a great end, i was speaker at two events with something i been working on for while now password cracking. Every thing started some time ago after googling around about password cracking, that i first shared with my colleagues after a small poc, and since to me everything less then 100% isn’t worth spending time...… (Read More)

  • Install Openvas 8 with Postgres on Kali linux Rolling

    This one is something that took quite some time to pull off while searching, most of the information I found was either wrong or incomplete, so here we go. Objectives Build openvas with postgresql support. Make required configuration changes to Kali linux source, such as service scripts. Create .deb package with kali linux source. Requirements To pull this off I will be using the Kali Linux Rolling v4.6.4, other than the usual build tools we...… (Read More)