Follow my journey
Nmap -sV -T5 10.10.10.78 PORT STATE SERVICE VERSION 21/tcp open ftp vsftpd 3.0.3 22/tcp open ssh OpenSSH 7.2p2 Ubuntu 4ubuntu2.2 (Ubuntu Linux; protocol 2.0) 80/tcp open http Apache httpd 2.4.18 ((Ubuntu)) Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel Running dirbuster with medium wordlist 10.10.10.78/hosts.php => There are 4294967294 possible hosts for This is... Continue Reading →
Welcome to the 21st century! Remember back in the day when we would write down a password so we wouldn’t have to memorize it? Well let’s do that again! Just this time we are going to do it better. So a password manager is exactly what it sounds like. It is an application used to... Continue Reading →
Eccellenza Touch Coffee Maker Rooting the Coffee Machine So you get a new coffee machine. It has network capabilities…. and It has a USB port… Obviously this means you should hack it. The Process: The steps we took sort of went like this.Go make cup of Coffee Notice login interface while making coffee. Google default... Continue Reading →
OverTheWire These were basically just my notes from each level that I figured I'd post just in case other people got stuck on a level or if I wanted to look back to these. Overall completing all of the levels was certainly a grind but there were plenty of nights where I just couldn't stop... Continue Reading →
Security+ Get Certified Get Ahead SY0-501 Study Guide by Darril Gibson The day has come, I have, for the first time, read an entire book, since probably the third grade! You may hold the applause. This book was probably the single best source of knowledge I have come upon so far in my short life.... Continue Reading →
SQL Injection What is an SQL injection? URL encoding Types of SQL injections How basic SQL injections work What is an SQL injection? This code injection technique is used to attack data-driven applications. Attackers can insert SQL statements into an entry field on a vulnerable website for execution. A common reason for using this... Continue Reading →
Log Management Tools (Graylog) As you probably know by now keeping track of logs and alerts is a crucial part of security. Therefore, having tools that allows administrators to create an efficient way to manage their logs. The tool we are going to discuss in this post is Graylog, but first let’s look at Log... Continue Reading →
HackThisSite.org I'll be going through the HackThisSite basic missions in this walk-through/experience. I'll be completing all missions through the Firefox web browser. Basic Missions 1. The first basic mission is beyond easy. Simply inspect the element of the page and when you get near the password form html code there is a comment containing the... Continue Reading →
This is really more of a post for me, here you can find my notes while following the metasploitable walkthrough found here: https://metasploit.help.rapid7.com/docs/metasploitable-2-exploitability-guide There are some definitions and summaries of some of the tools and vulnerabilities and than further down you can see the actual method of exploiting the vulnerabilities and using the tools. msfconsole Commands... Continue Reading →
