+44 (0)113 3280104 | Email Us

Industry News

News and updates from the ethical security testing industry...

RSS Aircrack-ng

  • Aircrack-ng 1.5.2
    This is a smaller release than the previous one but we did want to release the fixes and improvements before the holidays so it will be available for Shmoocon next month in your favorite distro.Small issues were found in 1.5 and then in 1.5.1, which is why we ended up with 1.5.2. Respectively, a crash […]
  • Continuous Integration/Contious Delivery
    As mentioned a few times in the changelog and quite a bit in the commits, we have been using a bunch of tools to improve our code quality. And fine tuning them to do more and give us better information. We also use static analysis tools but that step is often done manually.GitHub has been […]

RSS Armored Packets

  • Massive WordPress Brute-Force Botnet Attack April 15, 2013
    SUMMARY As of April 9, 2013, multiple web hosting companies began seeing brute force, dictionary attacks against their WordPress Content Management System. Approximately 140,000 IPs have been seen attacking these systems. After successful login, the actors are installing several PHP scripts which execute shell commands, download files from www.marinabybloshotel.com that establish connections with an IRC […]
  • Security Awareness – Hold The Line March 20, 2013
    Yesterday began like all others, a good morning to my Twitter followers and a quick scan through the topics of others I follow. The topic of discussion that stood out, dividing our industry more often than any others got started; the belief, or lack thereof, in Security Awareness Training Programs being a benefit to organizations. […]

RSS BeEF – The Browser Exploitation Framework Blog

  • Mapping your LAN from a web browser: Introducing the Network extension for BeEF June 8, 2016
    Today's blog post brought to you by Brendan Coles:How many tabs do you have open in your browser right now? For how long have they been open - more than 10 minutes? Any one of them could have mapped your local networks and launched exploits against your outdated or misconfigured software.From the BeEF laboratory comes […]
  • Kali (formerly Backtrack) Linux & BeEF January 22, 2016
    Today's post is contributed by Ben Waugh (@bw_z).BeEF is preinstalled on Kali linux distributions, allowing you to quickly use BeEF as part of your security testing toolkit. Running BeEF in KaliKali packages BeEF within the beef-xss service which can either be started from the command line, or the pre-populated menu item under Kali-Linux > Exploitation Tools […]

RSS Shell is Only the Beginning

  • Operating Offensively Against Sysmon October 8, 2018
    Sysmon is a tool written by Mark Russinovich that I have covered in multiple blog post and even wrote a PowerShell module called Posh-Sysmon to help with the generation of configuration files for it. Its main purpose is for the tracking of potentially malicious activity on individual hosts and it is based on the same […]
    Carlos Perez
  • Rebuilding My Playbook .. Knowledge Base December 13, 2017
    I find myself in the situation where I lost my personal playbook by user error. I accidentally deleted the VM where I ran xWiki where it was kept and did not realized the mistake until days later. Even if painful to rebuild it is a good opportunity to think on how to better organize it […]
    Carlos Perez

RSS Carnal0wnage & Attack Research Blog

  • Kubernetes: Master Post February 5, 2019
    I have a few Kubernetes posts queued up and will make this the master post to index and give references for the topic. If i'm missing blog posts or useful resources ping me here or twitter.Talks you should watch if you are interested in Kubernetes:Hacking and Hardening Kubernetes Clusters by Example [I] - Brad Geesamanhttps://www.youtube.com/watch?v=vTgQLzeBfRUhttps://github.com/bgeesaman/https://github.com/bgeesaman/hhkbe [demos for […]
  • Abusing Docker API | Socket February 1, 2019
    Notes on abusing open Docker socketsThis wont cover breaking out of docker containersPorts: usually 2375 & 2376 but can be anythingRefs:https://blog.sourcerer.io/a-crash-course-on-docker-learn-to-swim-with-the-big-fish-6ff25e8958b0https://www.slideshare.net/BorgHan/hacking-docker-the-easy-wayhttps://blog.secureideas.com/2018/05/escaping-the-whale-things-you-probably-shouldnt-do-with-docker-part-1.htmlhttps://blog.secureideas.com/2018/08/escaping-the-whale-things-you-probably-shouldnt-do-with-docker-part-2.htmlhttps://infoslack.com/devops/exploring-docker-remote-apihttps://www.blackhat.com/docs/us-17/thursday/us-17-Cherny-Well-That-Escalated-Quickly-How-Abusing-The-Docker-API-Led-To-Remote-Code-Execution-Same-Origin-Bypass-And-Persistence_wp.pdfhttps://raesene.github.io/blog/2016/03/06/The-Dangers-Of-Docker.sock/https://cert.litnet.lt/2016/11/owning-system-through-an-exposed-docker-engine/https://medium.com/@riccardo.ancarani94/attacking-docker-exposed-api-3e01ffc3c124https://www.exploit-db.com/exploits/42356https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/docker_daemon_tcp.rbhttp://blog.nibblesec.org/2014/09/abusing-dockers-remote-apis.htmlhttps://www.prodefence.org/knock-knock-docker-will-you-let-me-in-open-api-abuse-in-docker-containers/https://blog.ropnop.com/plundering-docker-images/Enable docker socket (Create practice locations)https://success.docker.com/article/how-do-i-enable-the-remote-api-for-dockerdHaving the docker API | socket exposed is essentially granting root to any of the containers on the systemThe daemon listens on unix:///var/run/docker.sock but you can bind Docker to another […]

RSS Command Line Kung Fu

  • Episode #181: Making Contact October 3, 2017
    Hal wanders back on stage Whew! Sure is dusty in here!Man, those were the days! It started with Ed jamming on Twitter and me heckling from the audience. Then Ed invited me up on stage (once we built the stage), and that was some pretty sweet kung fu. Then Tim joined the band, Ed left, […]
  • Episode #180: Open for the Holidays! December 31, 2014
    Not-so-Tiny Tim checks in with the ghost of Christmas present: I know many of you have been sitting on Santa's lap wishing for more Command Line Kung Fu. Well, we've heard your pleas and are pushing one last Episode out before the New Year! We come bearing a solution for a problem we've all encountered. […]