computers Hack The Box: Sau Enumeration Port 80 doesn't give me anything but port 55555 reveals what looks like a Python-based web app. The application appears to be some sort of app to inspect HTTP requests that are sent to the application. There is a function to enter a master token that allows the user
computers Hack The Box: Keeper Enumeration As always, start off with an NMAP Scan Just 80 and 22 open today. We will start by enumerating the web app. To make some of this work easier, I am going to add keeper.htb and tickets.keeper.htb to my hosts file. Navigating to the linked site
azure Quick and Dirty IP Lookup In Microsoft Sentinel I had a need to determine if IPs in Microsoft Sentinel events were from our VPN block or not. Sentinel does not provide any native way to look up WHOIS information for an IP, so I had to do this in a quick and dirty fashion. Get the IP Ranges
computers Hack the Box: Inject Enumeration Browsing to the webpage on port 8080 lands at a "Zodd Cloud" product page. There seems to be signup and sign in functionality that will be worth exploring. None of the links work except signup, which lands at an Under Construction page. Oh, but there is an Upload link
computers Streaming Logs From Azure Event Grid to Log Analytics Workspace I use Azure Sentinel and the way that Sentinel is able to analyze logs is through a Log Analytics Workspace. Some third-party platforms allow log streaming to Event Grid. So I needed a way to get my logs from Event Grid into the Log Analytics workspace. You might think this
azure Broken Azure I saw this link posted on LinkedIn with a collection of free cloud training resources and decided to try my hand at some of the Azure ones given my relative lack of familiarity with Azure versus GCP and AWS. Kind of going in order, I decided to start with Secura's
computers Hack the Box: Busqueda Initial Recon Conduct typical initial portscan └─$ nmap 10.10.11.208 Starting Nmap 7.93 ( https://nmap.org ) at 2023-04-26 11:13 EDT Nmap scan report for 10.10.11.208 Host is up (0.089s latency). Not shown: 998 closed tcp ports (conn-refused) PORT STATE SERVICE 22/tcp open
computers Hack The Box: Precious Initial Enumeration A simple NMAP scan to just get the lay of the land initially. Only two ports appear to be open. SSH appears to allow for password auth, and the web port hosts a page that allegedly converts pages to PDFs. Brute forcing additional pages on the web server
computers Toniebox Tonies Duration Python Script Maximize your value on Tonie figurines with this sorted list of Tonie durations.
computers Bulk Download Photos From Procare Our son's daycare/preschool uses Procare to track attendance and send info about the school including pictures of the kids during the day. As he moved to a new school for Kindergarten, we wanted to make sure that we had all his photos from the app. Too bad the app
computers Hack The Box: Previse NMAP shows that ports 80 and 22 are open. The site at port 80 is a login page to a File Storage site. Running GoBuster against the site reveals several additional pages that although they redirect back to the main login page, do indeed have content as well. Specifically: * accounts.
computers Return To Hack The Box - BountyHunter After a several year hiatus from Hack The Box, I decided to jump back in and take a look. Here is the write-up for Bounty Hunter BountyHunter Initial nmap scan indicates ports 22 and 80 are open. Browsing the page on port 80, there is a "Portal" section that indicates
stadia Stadia Firewall Rules Google was running a deal that if you bought a game on Stadia you would get a free controller and Chromecast Ultra (what they call the Premier Edition). I was excited for this as this would round out my gaming capabilities to let me game on all of my screens.
computers Head Against Wall: Odd Bootable USB Behavior So for work, we provision devices to send to clients using a bootable USB Ubuntu installer with a bunch of custom options and additional software. This all happens without hiccups generally...until this week, when I needed to clone the drive for someone else. After much weeping and gnashing of
cloudflare SSH Access With Cloudflare Argo and Access Although Cloudflare generally has pretty good documentation. In this specific case, the documentation is spread over multiple pages and actually just wrong in a couple spots. I am going to try to consolidate this process here. My goal here was to enable programmatic SSH access to an arbitrary number of
computers Unattended Install: virtualbox-ext-pack On 30 September 2019, Ubuntu updated the virtualbox-ext-pack package to no longer auto-accept the EULA in order to align with legal requirements and their desire to be very clear about non-open-source software installed through their repositories. Reference: https://bugs.launchpad.net/ubuntu/+source/virtualbox-ext-pack/+bug/1844654 As such, attempting to
computers Verizon Wi-Fi Calling Firewall Config UPDATE: wo.vzwwo.com is an additional domain that needs to be allowed. This is short and sweet. If you want to get Verizon Wi-Fi calling enabled on a restrictive network here is what you need. UDP ports 500 & 4500 open to sg.vzwfemto.com and wo.vzwwo.com. The
computers pfSense With CenturyLink 1GB Fiber We just recently moved into a neighborhood that offers CenturyLink 1GB fiber into the house. I mistakenly though the change would be as simple as plugging in my current setup to whatever modem they provided. Turns out that is not the case and that a little more work is required.
computers Hack The Box: Irked Irked: Retired If you are interested in learning more about penetration testing, Hack the Box is a great way to get your feet wet in a legal and well built environment. Head over to hackthebox.eu [https://hackthebox.eu] to get started. Enumeration My initial enumeration returned a handful of
computers pfSense Insights This post will be updated as I find out interesting tidbits while working with my pfSense. Usually this will be getting something in the house to work as expected with out opening up the firewall to everything. Amazon Shopping App UPDATE: The solution listed below no longer works. The Amazon
computers Verifying Slack Slash Commands in Google Cloud Functions Recently Slack moved from using "Validation Tokens" to validate that Slash Command requests were actually from Slack to signing the requests with a "Client Signing Secret". This seems like a simple change but turned out to be a huge pain in the butt to figure out. This problem stumped me
computers SANS Holiday Hack 2018 I have to be honest, life is just too busy this year for me to actually write a full report in the context of the story. Suffice it to say, I really enjoyed this year's challenge, much better than last year in terms of not having to actually play games.
computers Hack The Box: Jerry Jerry: Retired 17 November 2018 If you are interested in learning more about penetration testing, Hack the Box is a great way to get your feet wet in a legal and well built environment. Head over to hackthebox.eu [https://hackthebox.eu] to get started. This box was almost too
computers Holiday Theming Update: Added more to the commandline zsh config to apply specific emoji throughout the year. I have been playing around with a few theme options lately and the holidays got me in the spirit to adjust appropriately. Specifically, my command line theme and my Razer keyboard theme. Command Line After
computers Hack The Box: DevOops DevOops: Retired 13 October 2018 If you are interested in learning more about penetration testing, Hack the Box is a great way to get your feet wet in a legal and well built environment. Head over to hackthebox.eu [https://hackthebox.eu] to get started. Been a while since I
