-
Recent Posts
- Weaponizing AMSI bypass with PowerShell
- CVE-2019-15305 – CVE-2019-15309 Several Security Vulnerabilities in “Innosoft Einsatzplanung Web” Version 5.2q4
- Exploitation of Server Side Template Injection with Craft CMS plugin SEOmatic <=3.1.3 [CVE-2018-14716]
- Comprehensive data leakage via Google Groups
- Pingsweep with Windows CLI
Author Archives: 0xB455
IP-tables configuration for sending traffic into local proxy
Quite often I find myself in the need in order to analyse traffic for applications on an jailbroken Android device which ignore the global system proxy settings. In such cases I usually leverage iptables in order to send the traffic … Continue reading
Posted in Backtrack / Kali-Linux, General Stuff
Comments Off on IP-tables configuration for sending traffic into local proxy
Tunneling ports via SSH
People often forget that they can use SSH in order to access remote services which are only reachable from the network of the SSH server. Here is the snippet you want to use:
1 |
ssh -L [bind_address:]port:host:port user@server |
So as a general example: You … Continue reading
Posted in Backtrack / Kali-Linux, General Stuff
Comments Off on Tunneling ports via SSH
Parsing a line based hosts file to Firefox under Windows
I just needed to parse a line based file containing hosts and access the hosts with Firefox under Windows in multiple tabs. Here is what I did:
1 2 3 |
for /f %%a in (file.txt) do ( start "%Program Files%\Mozilla Firefox\firefox.exe" %%a > nul ) |
If you want to slow things down and the sleep command is … Continue reading
Posted in Windows
Comments Off on Parsing a line based hosts file to Firefox under Windows
Arpspoofing within Linux
For ARP based spoofing simply go for arpspoof Syntax is quite simple and goes like this:
1 |
arpspoof -i [interface] -t [victim] [gatewayip-to-be-spoofed] |
Posted in Backtrack / Kali-Linux
Comments Off on Arpspoofing within Linux
Enhanced security controlls for Internet Explorer on windows servers
Due to enforced security controlls you will often find yourself unable to access any website while running the Internet Explorer on a windows server. This is related towards the Enhanced Security Configuration (ESC). You can manually disable it by jumping … Continue reading
Posted in Windows
Comments Off on Enhanced security controlls for Internet Explorer on windows servers
Dumping of installed programs and services within Windows
I use the following snippets to dump installed programs on Windows machines via WMIC (Windows Management Instrumentation Commandline):
1 2 3 |
C:\Users\MyUser> wmic wmic:root\cli>/output:C:\tmp\InstallList.txt product get name,version wmic:root\cli>/output:C:\tmp\ServiceList.txt service |
The output can be processed as CSV
Posted in Windows
Comments Off on Dumping of installed programs and services within Windows
Broken packages with Backtrack 5
People still running on Backtrack 5 R2 are not able to pull updates anymore. In oder to fix this make sure to modify your /etc/apt/sources.list by adding this entry:
1 |
deb http://updates.repository.backtrack-linux.org revolution main microverse non-free testing |
Posted in Backtrack / Kali-Linux
Comments Off on Broken packages with Backtrack 5