Collaborate Disseminate
Previous post was deleted for not enough context, which I apologise for. I will try to provide as much context as I can. I am aware this appears to be an example of a SYN flood attack with spoofed ip addresses, however should there not be… Continue reading Can’t find anomalies / abnormalities in wireshark capture
Based on the above capture, there are supposed to be anomalies or other observations. The only things I have found, are that in some of the frames, there is a "Source MAC must not be a group address" warning message, and in all … Continue reading Finding abnormal behaviours/observations in this packet capture [closed]
In the below scenario, I’m using Yersinia for VLAN Hopping through switch spoofing.
Steps are:
eth0 on kali is unset.
runing Yersinia and launch a DTP attack (Sending DTP packet or Enabling trunk method)
Check if eth0/3 (switchport) bec… Continue reading VLAN Hopping (Switch Spoofing) not working in GNS3?
I have 3 VM’s
1 with Ubuntu server version 20.04, apache2, php, mysql and DVWA. (10.0.2.4)
1 with Ubuntu client version 20.04 with hydra installed. (10.0.2.5)
1 with Kali 2021.3. (10.0.2.6)
All VM’s are at the same Nat Network.
hydra 10…. Continue reading Using Hydra not sending traffic to target VM
I want to monitor traffic on my home router, how to do this? I have a Huawei router. I have searched this question before asking here but most of the sites and blogs just mentioned hacking and other stuff.
I want to monitor all traffic on … Continue reading Monitor router traffic from PC
I would like to analyse the traffic generated by one of the apps that I use.
This .app contains an OpenSSL 1.1.0 dylib in its Frameworks folder. I would like to extract the pre-master keys using the SSLKEYLOGFILE Environment-variable.
When… Continue reading How to extract SSL pre-master key from Mac app? [migrated]
Is it possible for a non-administrator/non-root user in Windows/Linux to sniff network traffic?
With or without third-party tools?
Continue reading Can a non-admin user sniff network traffic? [migrated]
So I’m learning to run MITM attacks on my own WiFi network but I seem to be running into an issue. I’m following this tutorial.
The process is simple and I’m running the attack from my Ubuntu laptop. I first enable IP forwarding using echo… Continue reading Running ARP Spoof disables internet access on target machine, doesn’t intercept traffic as well
By Paul Dokas, Keith Jones, Anthony Kasza, Yacin Nadji, & Vern Paxson – Corelight Labs Team Recently Blackberry analyzed a new GoLang Remote Access Trojan (RAT) named “ChaChi.” This sample was interesting in that it tunnels information over DNS as … Continue reading Corelight Sensors detect the ChaChi RAT
I am trying macsec between computers. Currently, the encryption mode is disabled, the state of the exchanges is categorized as "protected" by macsec.
I got a Wireshark capture from ubuntu to understand the difference between the … Continue reading How to prevent wireshark translating macsec protocol into the original protocol [migrated]