ITerm2 Things That Will Help You! ๐Ÿงจ

Gonna just make this as a quick reference to save you some reading. This read will make you so much better. TURN ON THE TOOLBELT!!!๐Ÿ›  # Finding this out actually inspired me to write this blog post. I've never heard of anyone I know that uses this but this will be extremely helpful to me in the future. The toolbelt will basically open up a pane in the terminal where you can toggle on certain features like.
Read more โ†’

Sweetrolls AWS Solutions Architect Associate Experience

Overview # The Cloud is becoming an increasingly prolific part of modern IT environments. Itโ€™s cheap, secure, and offloads responsibilities like patching and hardware maintenance to a third party. Unfortunately, the cloud remains largely misunderstood, even by industry โ€œexpertsโ€. The Certified Solutions Architect โ€“ Associate (CSAA)** certification validates an examineeโ€™s ability to โ€œarchitect and deploy secure and robust applications on AWS technologiesโ€. Certificate holders can expect, on average, a salary of $130,000 in the U.
Read more โ†’

How to Phish Using a Jump Box Part 2

GoDaddy GUI Stuff ๐Ÿ™ˆ # So in my first post I didn't show how I had all the DNS things set up in GoDaddy. One thing I always get hung up on is adding the TXT record for Let's encrypt. I always find a way to mess up the TXT record somehow. This is how it should look when you're waiting for the DNS registrar to update your Let's Encrypt TXT record: Let's Encrypt Setting As for the other settings, this is what my Beefhooks.
Read more โ†’

Helpful Tricks I Use to Get Domain Admin

So I was recently on an internal assessment (Thanks Hexcartel) and got to do some cool tricks I felt like sharing. Behold some tricks: Dumping Lsass on Windows 10 ๐Ÿ˜‹ # Quick and Easy # So, we all know you can’t just blast Crackmapexec and attach a C2 stager and get shells raining like you could in an unpatched Windows 7 network. See my post on “How I use Koadic on Internals” for that; No, on Windows 10 we have to be a little more sophisticated.
Read more โ†’

Kiosk Escapes Pt. 3 - Mexico Edition!!

Storytime… ๐ŸŽง # So this one's gonna be short and sweet; More of a lesson than anything. So, for those of you that don't follow me super close, I recently went on a trip to Cancun Mexico; It was great in case you were wondering. Anywho, one of those days I noticed this huge kiosk that happened to be a 40 inch Flatscreen Touchscreen TV that listed the hotel's special services and was there for public use.
Read more โ†’

How to Phish Using a Jump Box Part 1

Installing Postfix # First thing you need to do to get started is install postfix on your jump box. โ‹Š> /e/gophish sudo apt-get install postfix Once you have it installed you'll need to configure the main.cf file. After making changes to your main.cf file make sure that the service actually runs. If you run the postfix service with sudo service postfix start do a quick netstat and see if you see port 25 open and listening.
Read more โ†’

How to Use Silent Trinity - Bresaola 0.3.0dev

Overview โ˜” # Yea.....so apparently there is very little documentation for the current build of Silent Trinity. I was in the office today and saw my boy TheTalilama figuring it out so I decided to hop in and see how it worked. It actually does a great job against Windows 10 from what I have seen from just fooling around with it. Let's get into how it works. Download Silent Trinity!
Read more โ†’

Kiosk Escapes Pt 2 - Ft. Microsoft Edge!!

Backstory ๐Ÿ“– # So...there was this one location in Vegas during Defcon 27 that had these pcs that could be used by the general public. Kiosks as some would say...Well I went over to them to see what all accessibility these kiosks had to offer out of general curiosity, you know, "can these let me access facebook, github, reddit" etc. type stuff. Well, to my astonishment these kiosks had an interface that wouldn't allow me to access the C:\ drive!
Read more โ†’