When you land on a huge big network with several VLAN’s and are unsure of where to look or start! # install git clone https://github.com/dirkjanm/adidnsdump sudo pip3 install . # NOTE: HOSTNAME is the domain controller which is running the DNS service adidnsdump -u domain\\username -p <password> --print-zones <HOSTNAME> #…

A fairly easy exploit and works for Ignition <= 2.5.1 Ignition is a beautiful and customizable error page for Laravel applications running on Laravel 5.5 and newer. It is the default error page for all Laravel 6 git clone https://github.com/rocketscientist911/CVE-2021-3129 cd CVE-2021-3129 docker-compose up -d vulnerable host starts at port…

I live in a country where often the service providers are known for providing a terrible service and citizens are known for their high expectations. This article is intended for Maldives but feel free to read.. The first thing I am going to be talking about is clean channels, and…

Some decent filter bypasses! — http%3A// /%5cpoc.10degres.net /%2f%2fpoc.10degres.net /poc.10degres.net /%2f%2e%2e/http:/poc.10degres.net /.poc.10degres.net ///\;@poc.10degres.net Top SSRF parameters extracted from hackerone reports ?dest= ?redirect= ?uri= ?path= ?continue= ?url= ?window= ?next= ?data= ?reference= ?site= ?html= ?val= ?validate= ?domain= ?callback= ?return= ?page= ?feed= ?host= ?port= ?to= ?out= ?view= ?dir= ?file=

Get the payloads list and load it up! git clone https://github.com/rocketscientist911/webpayloads.git Intruder is kinda cumbersome with burpcollaborator to test as we do not know which payload has actually worked! For this very reason we will be using bountyburp plugin. Now, scan with extensions only option…

Mythic C2 Framework — A review by a purple team engineer It took me almost a day to understand and setup cloud auto configuration for the framework. I personally think in the long run this is going to be a pretty decent project as the scope is huge. …

Covenant, Digital Ocean, Docker and Cloudflare Proxy — A lazy security engineer automating his C2 Cloud Environment Setup with HTTPS for both C2 Host and Listeners without redirecting. Terraform will be used to auto deploy Infrastructure Digital Ocean — Hosting (It’s cheap and stable). Cloudflare — Hiding Origin IP & Traffic Shaping First is first; install Terraform and…

This was my first box and attempt on #Hackthebox This article will be more focused towards the blue team in implementing defenses which I would be covering in the part #2. 1. Reconnaissance Extra: Ping to understand what is the underlying operating system. A TTL above 64 suggests the operating system might…

CoVID-19 has forced people to stay at home & also to work-from-home! Work-from-home is easy to adopt for organizations who are already mostly using the cloud and hardly have anything on-premises. This is not the case for a lot of corporate and government organizations. …