Very recently I felt one of my virtual machines is infected by malware and I was thinking about restoring it to a clean snapshot but then I thought let’s find other ways to identify and block these types of attacks. There were few more issue I wanted to resolve on my network which includes blocking of advertisements on the pages I visit, blocking all malicious IOC over the network, etc, one of the game BattleField 4 which I play on PS4 wasn’t able to connect to online gaming due to blocking of DNS at ISP, etc.
I started doing my research where I found discovered “Pi-Hole”, Basically Pi-Hole is a network-wide Advertisement blocking solution (DNS Server) that can be installed on a virtual machine or on your own hardware e.g RaspberryPI 3 in my case.
Windows privilege escalation exploits are used for elevation of privilege locally and runs arbitrary code in kernel mode. In other words, when you have a web backdoor shell on your target server which doesn’t have administrative privileges you would require a exploit to get admin account.
During my many penetration testing experience, at times i am able to upload web backdoor shell, however my goal is to get Administrator level privileges . When ever i upload a web shell, the second file i upload is a Standalone Executable to Check for Simple Privilege Escalation Vectors on Windows Systems. This can be downloaded from https://github.com/pentestmonkey/windows-privesc-check .
I recently came across a python script which creates random characters like CRUNCH and cracking a WPA / WPA2 cap file.
This script can be found at https://github.com/blmvxer/passgen/ provide a good GPU and you wont need a wordlist anymore.
Furthermore a custom list can be generated , Please see the example below
./crunch 8 8 -f /usr/share/crunch/charset.lst numeric -t ‘abc@’@@@@ -l abc@0000
I have recently become a huge fan of SDR, taking a 12$ USB dongle which is intended to receive FM and TV channels into a whole new world of listening to open frequencies , un-encrypted wireless handsets or ATC.
After getting into SDR in my learning phase i managed to listen to different frequencies and perfecting them making customized antennas using things i find at home.