Izy- – WindowsTechs.com

Using auditd to monitor execution of scripts in Linux [closed]

Posted on August 11, 2020 by Izy-

I’m trying to log execution of scripts (bash, python, perl, php) with command line params using auditd. I don’t want to add execve to my config as it brings too much noise. In my audit.rules I have the following
-w /usr/bin/python -p x -k … Continue reading Using auditd to monitor execution of scripts in Linux [closed]→

Can MDM on an iPhone restrict custom keyboard usage?

Posted on March 8, 2020 by Izy-

I have an iPhone that runs 13.3.1 (latest at this time). It’s a corporate phone and has an MDM profile installed. I’ve been using the phone for almost 2 years now with a custom keyboard (Google Keyboard). However, after recently traveling … Continue reading Can MDM on an iPhone restrict custom keyboard usage?→

Fingerprinting Windows Architecture from a file on remote system

Posted on February 3, 2019 by Izy-

This is a post following up with this one.

Similar situation as the above post – I’d like to know if there’s a way to find out the architecture (x86 or x64) of a windows system from a file on a remote system. This is assumin… Continue reading Fingerprinting Windows Architecture from a file on remote system→

Explanation of linux shell access via backpipes? [on hold]

Posted on December 3, 2018 by Izy-

I have been looking at different ways to gain shell access to a Linux machine and came across this article.

Under point #2, there is an slightly different way of using netcat to gain shell. here it is:

According to man pa… Continue reading Explanation of linux shell access via backpipes? [on hold]→

How does this simple buffer overflow work?

Posted on November 8, 2018 by Izy-

I’ve got this simple code

vuln.c

#include <stdio.h>
#include <string.h>

int main(int argc, char** argv)
{
char buffer[500];
strcpy(buffer, argv[1]);
printf(“%s”, buffer);
return 0;
}

I am trying to perform … Continue reading How does this simple buffer overflow work?→

Difference between "weakness" and "vulnerability"?

Posted on August 22, 2018 by Izy-

What is the difference between the terms “vulnerability” and “weakness” when it comes to security?

I was looking at the CWE page and it mentions that a weakness leads to a security vulnerability. I understand this only parti… Continue reading Difference between "weakness" and "vulnerability"?→

Calling Netcraft via Python script

Posted on April 17, 2018 by Izy-

I’m trying to get a site report from Netcraft via my Python script, but it doesn’t seem to work. A simple request call

requests.get(‘https://toolbar.netcraft.com/site_report?url=http://www.example.com’)

returned me an erro… Continue reading Calling Netcraft via Python script→

Difference between whois of a hostname and an IP [on hold]

Posted on December 14, 2017 by Izy-

I was reading through No Starch’s Metasploit book when I came across a segment which showed the results of running the ‘whois’ command on a hostname and then on it’s corresponding IP only to yield different results.

> who… Continue reading Difference between whois of a hostname and an IP [on hold]→

Testing for CCS Injection

Posted on November 29, 2017 by Izy-

I’m trying to test for a CCS Injection. I have found two prevailant methods to do so

Use nmap’s ssl-ccs-injection nse script
Tripwire’s OpenSSL-CCS-Inject-Test

Both are pretty simple to use, however, they are giving me di… Continue reading Testing for CCS Injection→