Frustration is my fuel
In previous posts we have covered using rsyslog to forward logs from Linux servers into Graylog, and also how to use Trend Micro's OSSEC to forward alert logs to Graylog from both Linux and Windows, but here we will show you how to forward Windows logs into Graylog.We won't be covering the use of IPSEC in …
Continue reading "Forwarding Windows Event Logs into Graylog (Nxlog)"
This is a quick video which shows in a very basic way how important encryption is. It is important to practice defense in depth, so even if an attacker manages to gain persistence on your network and is able to "man-in-the -middle" your network connections, encryption gives another layer of protection meaning communication is not …
Continue reading "The Importance of Encryption. Simple Demo"
In the next of our short videos we show why download warnings should not be ignored. We are using a Windows 7 machine just for ease, this will also work in Windows 10 (I haven't gotten around to updating all my test victim machines yet!) When you are browsing the internet and trying to find …
Another quick video to show just how quickly a server can be compromised and taken over completely by an attacker. In this video we have a server running an out of date and un-patched application, which gives the attacker a way onto the server. Then the attacker dumps and cracks the password hashes, which gives …
https://www.youtube.com/watch?v=KTpy0nsOFm0 A quick video showing why you need both server and client side input validation. Here we bypass client side validation using Burp Suite browser proxy to change our input from our valid credentials for the site to get logged in as admin with a simple SQL injection statement. Server side validation would prevent this …
Continue reading "Bypass Client Side Validation in a website. Getting Admin."
https://www.youtube.com/watch?v=52c83yBgc78 I hope you have enjoyed this short series of RDP hacking. The aim was to show how quickly things can snow ball when just one user becomes compromised on a shared resource like an RDP server. Anyway, back to this last video in the series. If you haven’t watched the previous videos and you …
Continue reading "Deploying Ransomware (Hacking RDP Servers Part 4)"
https://www.youtube.com/watch?v=u2Yze5UC8tU In the 2 previous videos we have shown how by compromising just one user on an RDP server we can steal the hashed passwords of all logged in users. In part 3 we show how to crack those hashes to reveal the plain text passwords. If you haven’t watched the previous videos and you …
Continue reading "Cracking password hashes (Hacking RDP Servers Part 3)"
In the previous video we got a foot hold on the victim machine and managed to elevate ourselves to SYSTEM. At this point though a restart of the server, or a simple glitch will see us booted off the server losing our connection, and putting us back to square one. What if we can get …
Continue reading "Stealing credentials of all logged in users. (Hacking RDP Servers Part 2)"
https://www.youtube.com/watch?v=zyaoWcQvnGM Welcome back, this is a simple demo to show why you don't use administrator rights with normal everyday accounts you use for email and web browsing. It's something you may hear all the time, but it's not easy to understand what the big deal is if you don't know. In the video we have …
Continue reading "Why “Least Privilege” is important. (Hacking RDP Servers Part 1)"
We have recently shown how to do this in Windows so we will now show how to do this in Linux. Here we will be using Kali but it will work with most Linux distros.We want to download the free Home Version of Nessus but want to make sure the file has not been tampered …
@2codemonte 