Author: Ahmad
Date: June 29, 2015
RedHat comes with a mitigated package called RHSA (RedHat security advisory) This RHSA comes with a unique id like CVE Contain the date of fix and these type packages come for the applications that shipped from RedHat Example RHSA-2015:0291 For listing available updates for application yum updateinfo list openssl FEDORA-2015-0512 security openssl-1:1.0.1k-1.fc21.x86_64 FEDORA-2015-4303 security openssl-1:1.0.1k-6.fc21.x86_64 … Read More
Author: Ahmad
Date: February 3, 2015
nmap scan sheet cheat 😀 Host Discovery nmap -PE <range> nmap -PP <range> nmap -PM <range> arp scan nmap -PR <range> Stealth Scan nmap -sS <range> Idle Scan nmap -sI zombie <range> Version Scan nmap -sV <range>
Author: Ahmad
Date: January 12, 2015
hello in this article we will simply convert vhd file (VirtualBox disk image) to VMware disk our VirtualBox disk is “systemdisk.vhd” we will use qemu emulator to convert the disk our target app to do the convert is qemu-img qemu-img convert -f vpc -O vmdk systemdisk.vhd systemdisk.vmdk
Author: Ahmad
Date: January 8, 2015
Categories:
Security,
techLet’s assume u attacked machine with 2 nic cards our IP is 10.0.0.5 first, one ip is 10.0.0.10 that you reach it from and in ifconfig shows, the machine has a different IP 10.0.2.30 you can scan the network 10.0.2.x via meterpreter arp_scan meterpreter > run arp_scan -r 10.0.2.1-255 we can connect to the RDP … Read More
Author: Ahmad
Date: January 8, 2015
Categories:
Firewall,
Linuxhello this iptables rule to redirect all incoming traffic from all ports to one port example 80 on ip 192.168.1.10 iptables -A PREROUTE -t nat -i eth0 -p tcp –dport 1:65535 -j DNAT –to-destination 192.168.1.10:80 enjoy
Author: Ahmad
Date: January 8, 2015
# msfvenom No options Usage: /opt/metasploit/apps/pro/msf3/msfvenom [options] <var=val> Options: -p, –payload <payload> Payload to use. Specify a ‘-‘ or stdin to use custom payloads -l, –list [module_type] List a module type example: payloads, encoders, nops, all -n, –nopsled <length> Prepend a nopsled of [length] size on to the payload -f, –format <format> Output format (use … Read More
Author: Ahmad
Date: December 14, 2014
RedHat and centos come with the default repo so you have to install additional repos to get all your software from yum epel ius remi rpmfroge rpm -ivh http://dl.iuscommunity.org/pub/ius/stable/RedHat/7/x86_64/ius-release-1.0-13.ius.el7.noarch.rpm rpm -ivh http://dl.iuscommunity.org/pub/ius/stable/RedHat/7/x86_64/ius-release-1.0-13.ius.el7.noarch.rpm rpm -ivh http://rpms.famillecollet.com/enterprise/remi-release-7.rpm rpm -ivh http://pkgs.repoforge.org/rpmforge-release/rpmforge-release-0.5.3-1.el7.rf.x86_64.rpm enjoy this list for 64bit system centos 7 u can customise the links as you … Read More
Author: Ahmad
Date: December 13, 2014
MySQL check if there is a relation between rows before deleting it it will raise an error can’t delete or update a parent row we need to till mysql to stop this check SET FOREIGN_KEY_CHECKS = 0 to reactivate it SET FOREIGN_KEY_CHECKS =1 enjoy
Author: Ahmad
Date: December 5, 2014
Categories:
Security,
techSmash The Stack Level 6 level6@io:/levels$ ./level06 a b Hi a this app take 2 argument 1 – username 2- password it takes it then say hi also, it checks ur env language and change the msg level6@io:/levels$ export LANG=fr level6@io:/levels$ ./level06 a b Bienvenue a level6@io:/levels$ export LANG=de level6@io:/levels$ ./level06 a b Willkommen a … Read More
Author: Ahmad
Date: December 4, 2014
some time u put the shellcode inside the environment and u will need the address of it to build ur payload here is a simple C code to get the address 1 #include <stdio.h> 2 #include <stdlib.h> 3 4 int main(int argc, char *argv[]) 5 { 6 char *nix = getenv(“NIX”); 7 printf(“%p\n”, nix); 8 … Read More