Accessing Alternate Data Streams on VMDK Images on Linux

On January 10, 2021 By DanielIn forensics, Linux, malware, windowsLeave a comment

Accessing Alternate Data Streams on VMDK Images on Linux.

REVIEW:Malware Data Science – Attack Detection and Attribution

On January 10, 2021January 10, 2021 By DanielIn malwareLeave a comment

Review of Malware Data Science: Attack Detection and Attribution

REVIEW: RED TEAM Operator: Windows Persistence Course by SEKTOR7 Institute

On January 2, 2021January 2, 2021 By DanielIn forensics, lolbas, lolbins, pentesting, windowsLeave a comment

My review of SEKTOR7 Institute's Red Team Operator, Windows Persistence course.

git: You can’t push to git://…

On January 2, 2021 By DanielIn UncategorizedLeave a comment

Configure a git repository's origin as SSH rather than HTTPS.

Using finger.exe to Transfer Files

On December 31, 2020 By DanielIn lolbas, lolbins, pentesting, windowsLeave a comment

Abusing finger.exe to send data over the network

Windows Startup Folders

On December 31, 2020December 31, 2020 By DanielIn windowsLeave a comment

Windows Startup Folder locations.

REVIEW: RED TEAM Operator: Malware Development Essentials Course by SEKTOR7 Institute

On December 31, 2020December 31, 2020 By DanielIn windowsLeave a comment

Review of RED TEAM Operator: Malware Development Essentials Course by SEKTOR7 Institute.

CTF Laptops

On December 27, 2020 By DanielIn CTFLeave a comment

A common question that new CTF players have is what kind of hardware and software they should bring to an event. I am writing this post to have general-purpose documentation to point people to. The main takeaways from this write-up: Know the rules of the event.You don't need anything fancy.Your laptop should probably be capable …

Continue reading CTF Laptops

crackmes.one “EZ crackme” Writeup

On December 22, 2020December 22, 2020 By DanielIn crackmes, UncategorizedLeave a comment

This is a write up for "EZ crackme" by R3tr0BS: https://crackmes.one/crackme/5fcfb87933c5d424269a1afc This challenge came with two files: Readme.txt and run.exe Readme.txt contained the following: so this is my first crackme, you need to use the password or..... do it your way, good luck, R3tr0. run.exe has a hash of 3bc592f4963add05a2d28bc469b5cd6ea00b973516ba1a1fccc10f1590f26152 % sha256sum run.exe 3bc592f4963add05a2d28bc469b5cd6ea00b973516ba1a1fccc10f1590f26152 run.exe …

Continue reading crackmes.one “EZ crackme” Writeup

Volatility Notes

On December 20, 2020 By DanielIn CTF, forensicsLeave a comment

I don't use Volatility as often as I'd like. Whenever I need to use it, I have to re-familiarize myself with the plugins and syntax. Here are some of the commands that I end up using a lot, and some tips that make things easier for me. Cheat Sheets and References Here are links to …

Continue reading Volatility Notes

Volatility on Ubuntu 20.04

On December 18, 2020December 18, 2020 By DanielIn CTF, forensics, LinuxLeave a comment

Quick and dirty way to get Volatility working on Ubuntu 20.04

Windows Sysinternals Notes

On December 14, 2020 By DanielIn windowsLeave a comment

Notes about Windows Sysinternals tools from a security point of view.