Wardriving was once a really popular sport, I myself loved mapping new areas with my trusty Orinco Gold Card. I’m not sure how popular it is these days but I thought I’d write this guide as I came across my GPS dongle and got set it up in Kali Rolling. […]
Category: Linux
Reporting SSL/TLS Issues the Easy Way with YANP
Quick Guide to Installing Bloodhound in Kali-Rolling
Exploiting MS17-010 – Using EternalBlue and DoublePulsar to gain a remote Meterpreter shell
[su_heading align=”left”]This walk through assumes you know a thing or two and won’t go into major detail. After all it’s meant for fellow researchers and penetration testers.[/su_heading] Findings so far… Findings from using these tools are the following so far [su_note]The default process that Doublepulsar injects into is ‘lsass’ It […]
Exploiting the OpenNMS/Jenkins RMI Java Deserialization Vulnerability
Even though this vulnerability was detected back in 2015 I am only starting to notice it popping up on engagements more frequently. CVE-2015-8103 – Jenkins CLI – RMI Java Deserialization allows remote attackers to execute arbitrary code via a crafted serialized Java object. Apparently, according to Foxglove security Jenkins and […]