Core dump overflow

Core dump in progress...

dnsmap - Kali Linux tools

| Comments

Today we’ll explore another tool for DNS enumeration: the DNS Network Mapper (dnsmap). Although at the time of this post, its last update was in 2010, this tool has survived the passage of time, and has been packaged with versions of both Backtrack and Kali. There is quite a wealth of information about the tool on its homepage, and it comes with a built-in wordlist for domain bruteforcing.


HackLAB Vulnix

| Comments

Vulnix is an older machine from VulnHub that intends to present vulnerabilities from a misconfiguration point of view. The goal is to get the flag inside /root

Bow before the Lord of the Root

| Comments

Back to looking through VulnHub’s selection of virtual machines, I got hooked by the name of this one. The author intended for this machine to be similar in difficulty to those in the OSCP lab, so it’s definitely good training if you’re preparing to jump into the fray!

Automater - Kali Linux tools

| Comments

Objective: you want to check suspicious IPs, domains and hashes for maliciousness. Maybe you’ve heard that your favorite news site has been hacked and is serving malware to its users. You’d like to confirm if something is dangerous or not, without navigating to it and risking to get compromised in the process. There is a Python tool on Kali that can help you with just that! Enter Automater!

Masscan - Kali Linux tools

| Comments

Nmap is our favorite port scanner, but if you want to scan billions of hosts, and still be relatively young when you get the results, there is a solid alternative focused entirely on speed: Masscan – the Mass IP port scanner

Quick shares with Samba on CentOS

| Comments

The interwebz is thundering with doomsday predictions about the Samba CVE-2017-7494 exploit, and here I am, deciding that now is the best time to make a post on setting up Samba shares! xD

On a related note, if for some reason you can’t patch the vulnerability yet, there is a workaround (with some drawbacks). Edit the global section in smb.conf and add the line nt pipe support = no.

lbd - Kali Linux tools

| Comments

Load balancing is the practice of distributing traffic across multiple servers, in order to increase performance and reliability. With multiple servers offering the same resources, single points of failure are eliminated, and availability is increased. Load balancers may be set up in a way that users from certain geographic locations are sent to specific servers, in order to increase the speed of access.

Load balancing introduces some issue in penetration tests, because it interferes with the accuracy of the testing. This is why it’s important to establish whether load balancers are in place, and if there are, taking that into account when performing the tests and writing the reports.