Security Aegis

Mozilla CTF && Not Dead, Just Busy

Jhaddix — Mon, 30 Jan 2012 20:31:01 +0000

So, it’s been a while since we’ve done anything on SA. Honestly my new gig at HP/Fortify (Director of Pentesting) has kept me busy. I did get a chance to play the Mozilla CTF though with a few other HP/Fortify pentesters. The competition was a worldwide CTF run by Mozilla. The Mozilla CTF (capture the [...]

Mozilla CTF && Not Dead, Just Busy belongs to Security Aegis

LinkedIn Harvesting for OSINT (esearchy video)

Jhaddix — Thu, 08 Dec 2011 08:15:15 +0000

LinkedIn Harvesting for OSINT (esearchy video) belongs to Security Aegis

esearchy – my new favorite OSINT script

Jhaddix — Fri, 11 Nov 2011 08:32:55 +0000

So you’re on a social engineering test… and you need to target some users for spear phishing. Previously we’ve used theHarvester and metasploit for this, but I’ve now fully switched over to esearchy by Matias P. Brutti. Install on BT5: sudo gem sources --add http://gems.github.com sudo gem install gemcutter sudo gem install esearchy Let’s Pick [...]

esearchy – my new favorite OSINT script belongs to Security Aegis

Taking Dirbuster Output into Burp Suite

Jhaddix — Thu, 10 Nov 2011 10:45:38 +0000

Seeing as DirBuster is my brute forcer of choice, and Burp is my interception proxy of choice, bridging the gap between these 2 tools and getting the output from DirBuster into Burp for further analysis is crucial. As you can see below, one bash command, about 140 characters long, does the trick. It takes the [...]

Taking Dirbuster Output into Burp Suite belongs to Security Aegis

Honey Potting for MS11-083

Jhaddix — Thu, 10 Nov 2011 09:42:55 +0000

MS11-083 has arrived and people are getting both excited and scared, it looks like its going to be the next MS08-067. Which if you remember, Conficker used to bend windows over and have a jol. Time for a honeypot? In anycase I took a moment and decided to write a script that would capture potential [...]

Honey Potting for MS11-083 belongs to Security Aegis

Web Application Hacking & Testing Resources

Jhaddix — Thu, 10 Nov 2011 04:31:19 +0000

The quoting of this page has been removed, please visit: http://danielmiessler.com/projects/webappsec_testing_resources/#methodologies# for the full article.

Web Application Hacking & Testing Resources belongs to Security Aegis

Microsoft Office 2007 Excel .xlb Metasploit Module (MS11-021)

Jhaddix — Sun, 06 Nov 2011 19:37:21 +0000

Timeline : Vulnerability discovered and reported to ZDI by Aniway Vulnerability reported to vendor by ZDI the 2010-10-18 Coordinated release of the vulnerability the 2011-04-12 Metasploit PoC provided the 2011-11-05 PoC provided by : Aniway abysssec sinn3r juan vazquez Reference(s) : CVE-2011-0105 MS11-021 ZDI-11-121 Affected version(s) : Microsoft Office XP Service Pack 3 Microsoft Office [...]

Microsoft Office 2007 Excel .xlb Metasploit Module (MS11-021) belongs to Security Aegis

SecTools.Org 2011 Top Network Security Tools

Jhaddix — Sat, 05 Nov 2011 02:32:13 +0000

SecTools.Org: Top 125 Network Security Tools For more than a decade, the Nmap Project has been cataloguing the network security community’s favorite tools. In 2011 this site became much more dynamic, offering ratings, reviews, searching, sorting, and a new tool suggestion form. This site allows open source and commercial tools on any platform, except those [...]

SecTools.Org 2011 Top Network Security Tools belongs to Security Aegis

Easy Wireless Honey-Pots using Win7 and Metasploit

Jhaddix — Fri, 04 Nov 2011 22:31:07 +0000

I found myself inspired by Vivek Ramachandran’s videos, I thought I would take the honor in creating the simple meterpreter script that basically does what you see in the third installation of the Swse Addendum videos. When I watched the third video I thought to myself, “This shouldn’t be too difficult to do”. From my [...]

Easy Wireless Honey-Pots using Win7 and Metasploit belongs to Security Aegis

Simple Framework Domain Token Scanner

Jhaddix — Fri, 04 Nov 2011 17:38:17 +0000

Pretty straightforward little pattern here that will run a post module against all open sessions. ## This RC file assumes that you've got a bunch of open sessions, and now you want to go searching for a domain admin token. use post/windows/gather/enum_domain_tokens ## Now run against all open sessions framework.sessions.count.each do |session| run_single("set SESSION #{session.first}") [...]

Simple Framework Domain Token Scanner belongs to Security Aegis