-
Recent Posts
- Weaponizing AMSI bypass with PowerShell
- CVE-2019-15305 – CVE-2019-15309 Several Security Vulnerabilities in “Innosoft Einsatzplanung Web” Version 5.2q4
- Exploitation of Server Side Template Injection with Craft CMS plugin SEOmatic <=3.1.3 [CVE-2018-14716]
- Comprehensive data leakage via Google Groups
- Pingsweep with Windows CLI
Category Archives: Backtrack / Kali-Linux
Feeding content from Burpsuite into other tools e.g. sqlmap
If you ever wonder how to foward your content from Burpsuite towards any other tool you have to keep in mind that there is a logging options available. Enable logging within burp and parse the logfile as input towards sqlmap: … Continue reading
Posted in Backtrack / Kali-Linux
Comments Off on Feeding content from Burpsuite into other tools e.g. sqlmap
Carving the filesystem for large files under linux
Find files which are greater than 20MB: find / -size +20000k -exec du -h {} \;
Posted in Backtrack / Kali-Linux
Comments Off on Carving the filesystem for large files under linux
Carving the filesystem for recently created files in linux
Files created or modified less than 48 hours ago, sorted from the newest to the oldest:
|
1 |
find / -mtime -2 -printf "%T@" -ls | sort |
Posted in Backtrack / Kali-Linux
Comments Off on Carving the filesystem for recently created files in linux
Copy datastreams via SSH
I just realized that one can push or pull data streams through SSH as well. Just used it with DD and it saved me a lot of time. pushing with DD:
|
1 |
ssh target_address dd if=remotefile | dd of=localfile |
pulling with DD:
|
1 |
dd if=localfile | ssh target_address dd of=remotefile |
Posted in Backtrack / Kali-Linux, General Stuff
Comments Off on Copy datastreams via SSH
IP-tables configuration for sending traffic into local proxy
Quite often I find myself in the need in order to analyse traffic for applications on an jailbroken Android device which ignore the global system proxy settings. In such cases I usually leverage iptables in order to send the traffic … Continue reading
Posted in Backtrack / Kali-Linux, General Stuff
Comments Off on IP-tables configuration for sending traffic into local proxy
Tunneling ports via SSH
People often forget that they can use SSH in order to access remote services which are only reachable from the network of the SSH server. Here is the snippet you want to use:
|
1 |
ssh -L [bind_address:]port:host:port user@server |
So as a general example: You … Continue reading
Posted in Backtrack / Kali-Linux, General Stuff
Comments Off on Tunneling ports via SSH
Arpspoofing within Linux
For ARP based spoofing simply go for arpspoof Syntax is quite simple and goes like this:
|
1 |
arpspoof -i [interface] -t [victim] [gatewayip-to-be-spoofed] |
Posted in Backtrack / Kali-Linux
Comments Off on Arpspoofing within Linux
Broken packages with Backtrack 5
People still running on Backtrack 5 R2 are not able to pull updates anymore. In oder to fix this make sure to modify your /etc/apt/sources.list by adding this entry:
|
1 |
deb http://updates.repository.backtrack-linux.org revolution main microverse non-free testing |
Posted in Backtrack / Kali-Linux
Comments Off on Broken packages with Backtrack 5