Collaborate Disseminate
I’m responding to a penetration test finding on one of my application servers. The finding is that the private key embedded in my client script is capable of being used to open an SFTP session to the server.
My understanding has been that … Continue reading Interaction between sftp subsystem and forced command
We are in the process of developing a Red Teaming team to offer as a service, and one of the biggest obstacles we are struggling with is how to maintain a good op-sec and stealth during engagements.
Since most of our teams’ experience come… Continue reading Red Teaming methodologies focused on op-sec and stealth
I am a newbie cyber security engineer working on IoT. Today, a task is given to me. The task was making pentest to a cooker. Because of the privacy, I cannot share the brand of the cooker. The cooker has its own wifi card and connects to w… Continue reading Next movement in IoT pentest when you have restricted information
I want to make a rule set to try all possible combinations of upper and lower case letters in a wordlist, let’s say the wordlist contains password , after applying the rule, john will try paSswOrd , PasswoRd , passWord and so on.. all poss… Continue reading john the ripper custom rules
What on-premises services or open-source tools do you use for gathering findings and putting it into a pdf-generated format?
I’m willing to stop using Word/Open Office for those purposes because it is really unhandy as pentest report gener… Continue reading Best tool for penetration test report generation [closed]
I am currently working on an assignment paper that asks how each type of fuzzing would work and in what use case they would be used.
I defined Feedback as a tool that would throw inputs which would deviate and check to see if those deviate… Continue reading In what use case would Mutational and Feedback fuzzing be used in?
I’ve stumbled across an article about pentest standards and among others there was one called Information System Security Assessment Framework (ISSAF) which attracted my attention. Maybe someone can bring me more information on this stand… Continue reading Information System Security Assessment Framework (ISSAF) out of date?
If a company doesn’t explicitly state that a tool or technique is out of scope, does that mean it’s okay to use that tool or technique?
I encrypted my Ubuntu Desktop 20.04.3 with LVM/LUKS during the installation process. If I turn off the computer, is the brute force the only attack available for getting the password and accessing the files? I think it doesn’t encrypt the … Continue reading Full disk encryption with LUKS?
A bounty hunter reached out to us to give us information about a security vulnerability in our company’s information systems. In our estimation, the risk of exploitation for this vulnerability is rather small, but nevertheless, we apprecia… Continue reading Anonymous unasked bounty hunter wants bounty for found issues