Cobalt Strike is software for Adversary Simulations and Red Team Operations. What this means is, if you wanted to test your SOC capabilities or IR functions and see how well they do against someone mimicking an APT, this tools allows you to do that. With that said let’s move on. Load […]
Tutorials
28 posts
TLDR: Canary tokens are not new but can help give you some Intel into your attackers, be it insider or external . If you’re not familiar with the idea of a canary as an early warning system, its origins lie in coal mining. Miners would carry a small bird […]
Increasing the TXpower above what is allowed in your country can be illegal. If you decide to make these changes to your system and use the wireless above the allowed legal limit, that is down to you and I will not be held responsible. This document is for educational research […]
I have a number of Kodi Media Centre running in different rooms around the house. Some are hooked up to surround sound and some are not. One of my media centres is hooked up to a projector with a rubbish tinny speaker. In the same room i have a google […]
So the OSCP journey is hard work, needs commitment, understanding from your wife and a try harder attitude (you will hate the words try harder and love them at the same time). To be able to pass the exam and earn the OSCP cert you will need to get enough points […]
Ok, so you have upgraded your Wi-Fi to a new shiney circular Ubiquiti device….and you are using PfSense too? Welcome to the club. Lets get started. There are multiple parts to get this all working so lets step through them. Few things to note:- I have setup the GUEST network […]
If like me you want to customise your Squid Proxy error page then , you have come to the correct place. Before we start, i have already setup transparent proxy on port 80 and WPAD to cover the HTTPS stuff. Go do that then come back, ( i can’t be […]
HatCloud is built in Ruby. It allows you to discover the real IP address of a host that is being hidden by CloudFlare. This can be useful if you need test your server and website. obviously it can also be used for malicious purposes, but hey so can a car! […]
Have you ever done a domain password audit? Well yes the cracking of the passwords can be fun depending on the rig your using, but what happens after that? Yeah…… the reporting! There are some tools that give stats but none of the can compare to this new tool “PasswordStats”. […]
So due to the UK government being dicks and forcing all UK ISPs for store logs for 1 year of all visited websites, I decided to go ahead and start using a dedicated VPN service. I had a look around and decided that NordVPN was going to be the best […]
IF like me you have moved from one service to another over the years, you have probably exported a calendar or two and imported it, right? We’ll I did just that, but one of my events was a reoccurring event, so when it was imported it was added as 10,000 […]
So today i go home and fired up the Windows 10 PC with all of my drives Bitlockered. Long story short, one of my drives was throwing up some I/O error and i was unable to open the drive. At this point, I was thinking, hmm ok , let’s just […]
Well, not really a security related post but just found out that you can play chess in Facebook Messenger.. Like this You just need to load Messenger and click on a person and type @fbchess. You will get a chess board come up and to make a move you […]
So your looking for a way to use a free lets encrypt cert on your shared godaddy host? Well this is the place to come. This only works with GoDaddy cPanel hosting, not their classic web hosting. These steps show you how to also add the SSL certificate on multiple […]