• Double Kill – Hacker’s Dome CTF Walk Through Part 1

    Double Kill – Hacker’s Dome CTF Walk Through Part 1

    This past weekend our Quantum Security CTF Team (consisting of Kamil @vavkamil and myself @jamesbower ) competed on the Hacker’s Dome – Double Kill CTF.  The competition consisted of two vulnerable machines with each containing both a user flag and a super user (root) flag.  We were able to capture both flags on the first
    Read More…

  • FreeBSD pkg_add little trick

    FreeBSD pkg_add little trick

    So don’t ask me why but I decided to run FreeBSD 6.0 on an older Dell Latitude laptop. Install goes fine. But now I’ve got an issue. When trying to install a package I get the troublesome ftp error (cannot find this location dummy). But this was quickly resolved with the following. You can also
    Read More…

  • Kioptrix Level 1 Hacking Challenge Walkthrough

    Kioptrix Level 1 Hacking Challenge Walkthrough

    This is a walkthrough for Kioptrix Level 1. Although getting root on this box is pretty straightforward it’s a great place for those looking to get their feet wet when it comes to boot2root VM’s. I actually suggest this as a starting place rather than something like Metasploitable2, which is almost overwhelming with it’s list
    Read More…

  • WORKOUT

    WORKOUT

    So I’ve been getting up @ 5am to workout and I must say that I’m pretty psyched about it. Well not the getting up at 5 part. But I’m pretty happy that I’ve been consistently going to the gym lately. My six-pack is just a few short months away from finally arriving!! I’m working on
    Read More…

  • How to Visualize Network PCAP Files in Kali Linux

    How to Visualize Network PCAP Files in Kali Linux

    So this past weekend I attended the Security Onion Conference in Augusta, GA.  While sitting in the back listening to some great speakers, @pentestfail and I were hacking away on a side project of his that involved analyzing a decent number of PCAP files. As usual I was doing my analysis using Wireshark.  But when
    Read More…

  • Defeating Tr0ll – Infosec Challenge Walkthrough

    Defeating Tr0ll – Infosec Challenge Walkthrough

    This is my walkthrough for defeating Tr0ll infosec challenge.  This is another great “boot2root” VM  that kept my guessing quite a few times.  It also made me focus more on fully utilizing some of the scripts and programs I generally use during a penetration test.  I also really liked the fact that Wireshark played a
    Read More…

  • Own Windows with PowerShell using Nishang

    Own Windows with PowerShell using Nishang

    Nishang is a framework and collection of scripts and payloads which enables usage of Windows PowerShell for offensive security and post exploitation during Penetraion Tests.  The scripts are written on the basis of requirement by the author during real Penetration Tests. PAYLOADS It contains many interesting scripts like download and execute, keylogger, dns txt pwnage,
    Read More…

  • Threat Hunting with Bro IDS

    Threat Hunting with Bro IDS

    This post is a quick look at how I personally use Bro IDS for threat hunting. Specifically some of the queries I run when I start a hunt by data set. A quick note on Bro. Bro IDS is a pretty amazing piece of software for threat hunting and my go to tool of choice.
    Read More…

  • Stopping FTP Brute Force Attacks in FreeBSD and OpenBSD

    Stopping FTP Brute Force Attacks in FreeBSD and OpenBSD

    This is a great little article that I came across talking about stopping FTP brute force attacks in OpenBSD or FreeBSD (both of my favorite OS’s). It assumes that your using PF as your firewall (which you should!). You can easily stop bruteforce attacks by limiting connections per IP using pf firewall under FreeBSD or
    Read More…

  • Creative Structure is Key by Haruki Murakami

    Creative Structure is Key by Haruki Murakami

    There is a quote I read today by Haruki Murakami that really made me sit back and think about how I handle all my daily task and projects.  Especially with my obsession lately for absolute peak performance in my life. “When I’m in writing mode for a novel, I get up at four a.m. and
    Read More…