• Defeating Tr0ll – Infosec Challenge Walkthrough

    Defeating Tr0ll – Infosec Challenge Walkthrough

    This is my walkthrough for defeating Tr0ll infosec challenge.  This is another great “boot2root” VM  that kept my guessing quite a few times.  It also made me focus more on fully utilizing some of the scripts and programs I generally use during a penetration test.  I also really liked the fact that Wireshark played a
    Read More…

  • Threat Profile: Killer Swag

    Threat Profile: Killer Swag

    Introduction I’ve been monitoring an interesting threat for the past several days, a group I’m referring to as “Killer Swag”. Mainly because the initial dropper is called “Swag.sh” and “Killer Swag” just sounds cool. In another life I think I would have been a marketing genius, but I digress. This post will cover my research
    Read More…

  • FreeBSD pkg_add little trick

    FreeBSD pkg_add little trick

    So don’t ask me why but I decided to run FreeBSD 6.0 on an older Dell Latitude laptop. Install goes fine. But now I’ve got an issue. When trying to install a package I get the troublesome ftp error (cannot find this location dummy). But this was quickly resolved with the following. You can also
    Read More…

  • My Favorite New Toy – Nokia 770

    My Favorite New Toy – Nokia 770

    So I’ve had my Nokia 770 for awhile now and I love this thing. I recently upgraded the memory in mine to 2Gigs which really improved it’s performance. I generally use it to check my email and check on quotes for various stocks and such. It’s pretty sweet. http://amzn.to/2lbKDYa

  • How to Install Bro IDS 2.5 on Ubuntu 16.0x

    How to Install Bro IDS 2.5 on Ubuntu 16.0x

    I decided to write out the steps I took to for installing Bro IDS 2.5 on Ubuntu 16.0x. Before we begin installing Bro from source we need to make sure we have all the correct dependencies. On Ubuntu 16.0x you can run the following: sudo apt-get install cmake make gcc g++ flex git bison libpcap-dev
    Read More…

  • WORKOUT

    WORKOUT

    So I’ve been getting up @ 5am to workout and I must say that I’m pretty psyched about it. Well not the getting up at 5 part. But I’m pretty happy that I’ve been consistently going to the gym lately. My six-pack is just a few short months away from finally arriving!! I’m working on
    Read More…

  • SkyDog Con 2016 CTF – Walk Through Guide

    SkyDog Con 2016 CTF – Walk Through Guide

    Download Link The VM is now available for download on Vulnhub at the link below. https://www.vulnhub.com/entry/skydog-2016-catch-me-if-you-can,166/ Instructions The CTF is a virtual machine and works best in Virtual Box. Download the OVA file open up Virtual Box and then select File –> Import Appliance. Choose the OVA file from where you downloaded it. After importing
    Read More…

  • Linux Memory Analysis: How to Start and What You Need to Know

    Linux Memory Analysis: How to Start and What You Need to Know

    Are you ready to dive into the exciting world of memory analysis?!? No? Well that’s too bad because you need to know it. There’s an old saying in InfoSec, “The packet doesn’t lie.” Well the same is true for memory analysis. It simply is what it is and because of that, can provide a wealth
    Read More…

  • Own Windows with PowerShell using Nishang

    Own Windows with PowerShell using Nishang

    Nishang is a framework and collection of scripts and payloads which enables usage of Windows PowerShell for offensive security and post exploitation during Penetraion Tests.  The scripts are written on the basis of requirement by the author during real Penetration Tests. PAYLOADS It contains many interesting scripts like download and execute, keylogger, dns txt pwnage,
    Read More…

  • Quick and Dirty: Installing Htop on FreeBSD 10.x

    Quick and Dirty: Installing Htop on FreeBSD 10.x

    Htop is an interactive system-monitor process-viewer written for Linux. On most of my servers I have it up and running continually if I’m not actively on the box. It’s great to be able to quickly glance up and see the current state of a particular server or to see if something I’m running has gotten
    Read More…