The interwebz is thundering with doomsday predictions about the Samba CVE-2017-7494 exploit, and here I am, deciding that now is the best time to make a post on setting up Samba shares! xD
On a related note, if for some reason you can’t patch the vulnerability yet, there is a workaround (with some drawbacks). Edit the global section in smb.conf and add the line nt pipe support = no.
Load balancing is the practice of distributing traffic across multiple servers, in order to increase performance and reliability. With multiple servers offering the same resources, single points of failure are eliminated, and availability is increased. Load balancers may be set up in a way that users from certain geographic locations are sent to specific servers, in order to increase the speed of access.
Load balancing introduces some issue in penetration tests, because it interferes with the accuracy of the testing. This is why it’s important to establish whether load balancers are in place, and if there are, taking that into account when performing the tests and writing the reports.
It’s time to slay the second troll in the Tr0ll series!
Today we’ll look at dnsenum, one of the tools that come preinstalled on Kali for DNS information gathering.
iptables is a CLI tool for configuring firewall functionality in Linux. It operates on a series of tables, which on a CentOS 7 system are:
Today I want to mix things up a bit, and do a challenge focused exclusively on web vulnerabilities. For the target, I will use the Web for Pentester ISO offered by PentesterLab. They host many challenges dedicated to web hacking, and I recommend you give them a try!
Today I’m back with another vulnerable machine from Vulnhub! It’s’ been a while since I’ve done one, and I was getting restless :D The target for today is called NullByte, and the goal is to read /root/proof.txt
In this post I will continue the series on configuring various servers on the CentOS 7 distribution. Let’s see how we can get a DHCP server up and running!
The Cisco Cybersecurity Scholarship program has concluded for the first cohort, and I have been fortunate enough to make it into the program! Now that the course and 2 exams are over, and I have a brand new certification, I thought I’d share some info about what is covered in the CCNA Cyber Ops study materials.
Today I will go over the use of Fabric, a Python library and CLI tool for executing local / remote tasks via SSH.
Requirements:
Features at a glance:
Install Fabric with pip install fabric