zacheller@home:~/blog$

  • HackTheBox - Blue (Retired)

    Enumeration root@kali:~/Security/HackTheBox/blue# portscan 10.10.10.40 Open ports: 135,139,445,49152,49153,49154,49155,49156,49157 Starting Nmap 7.80 ( https://nmap.org ) at 2020-09-01 15:36 EDT Nmap scan report for blue.htb (10.10.10.40) Host is up (0.074s latency). PORT STATE SERVICE VERSION 135/tcp open msrpc Microsoft Windows RPC 139/tcp open netbios-ssn Microsoft Windows netbios-ssn 445/tcp open microsoft-ds Windows 7 Professional...

  • Malware Traffic Analysis Exercise - EGGNOG SOUP

    This challenge is from MALWARE-TRAFFIC-ANALYSIS.NET. Download the PCAP ZIP yourself here. Check their about page for the password. Scenario LAN segment data: LAN segment range: 172.16.3.0/24 (172.16.3.0 through 172.16.3.255) Domain: eggnogsoup.com Domain controller: 172.16.3.2 - EggNogSoup-DC LAN segment gateway: 172.16.3.1 LAN segment broadcast address: 172.16.3.255 Task How many hosts besides...

  • Vulnhub - DC: 3

    Here’s a walkthrough for the third VM in the DC Vulnhub series. Enumeration After a quick nmap 10.10.10.0/24 I find the box at 10.10.10.8 with port 80 open. An in depth scan reveals Joomla! CMS. $ nmap -sC -sV -Pn 10.10.10.8 ... PORT STATE SERVICE VERSION 80/tcp open http Apache...

  • pwnable.kr - bof

    Prompt Nana told me that buffer overflow is one of the most common software vulnerability. Is that true? Download : http://pwnable.kr/bin/bof Download : http://pwnable.kr/bin/bof.c Running at : nc pwnable.kr 9000 Solution Download bof.c: #include <stdio.h> #include <string.h> #include <stdlib.h> void func(int key){ char overflowme[32]; printf("overflow me : "); gets(overflowme); //...