On a recent internal penetration test, I ran into something called HQueue (by SideFX), which seems to be some sort of job queueing solution to process workloads. Logo looks something like this: I took a look around the UI and found no authentication which was interesting, and it apparently had a Windows server hooked up […]
Category: Writeups
2022 CSPM Comparison and Pricing
We recently did a comparison of the top CSPM vendors and did a pricing exercise. If you are unfamiliar, CSPM is more of the compliance side of the house and stands for Cloud Security Posture Management, whereas CWPP stands for Cloud Workload Protection Platform and is more for container and VM scanning. This blog post […]
What I Learned from the BsidesNOVA OSINT Workshop + mini CTF Write-up
Had a few hours this morning luckily to attend the Open Source Intelligence (OSINT) workshop presented by Brian Markham, the current Chief Information Security Officer (CISO) at EAB Global. Definitely learned a thing or two I’d love to share and also a quick write-up of the mini-Capture the Flag event (mini-CTF) we had at the […]
BSidesNoVA Advanced CTF Write-up
I am an active member of NoVA Hackers and one of the members asked if I would participate in the advanced CTF at BSidesNoVA, so I did! This is a simple write-up to describe the approach we took for this competition. See below for the event description: For the advanced players, Arash is returning with […]
Metasploit Community CTF 2020 Writeup
This competition started at noon on 1/30/20 and ran for 4 days until 2/3/2020. There were a total of 18 flags and a grand prize of $500 with a 1 year pro HTB subscription. My team of 4, which I pulled from a local meetup (Nova Hackers) and random people from the Metasploit CTF chat […]
How the CISSP changed my Linkedin Views
Just for those who are curious about what kind of changes they should expect on their Linkedin views and messages after getting the CISSP.. This is a short blog post about how it impacted mine. Being in InfoSec, as long as you’ve got some experience under your belt, recruiters will definitely reach out to you, […]
Hackthebox – Ypuffy Writeup
This is a write-up for the Ypuffy machine on hackthebox.eu which was retired on 2/9/19! Step 1: Enumeration Like usual, let’s start with a quick nmap to see what ports are open: nmap -sC -sV -oA nmap1.txt -Pn 10.10.10.107 First we attempt to browse to port 80 like usual, but we get a “the connection […]
Hackthebox – SecNotes Writeup
This is a write-up for the Secnotes machine on hackthebox.eu which was retired on 1/19/19! Summary Secnotes is a medium difficulty Windows machine which will help you practice some basic SQL injection, explore SMBclient, and use some simple php scripting. Enumeration As always, our first step is enumeration. We use the following command in nmap […]
Hackthebox – Waldo Writeup
This is a write-up for the Waldo machine on hackthebox.eu which was retired on 12/15/18! Step 1: enumerate! Run an automated scan with this script: https://github.com/vishalb2308/Pentest-Enumeration-Script/blob/master/EnumScript.py or something like: nmap -sC -sV -oA /tmp/nmap1.txt -Pn 10.10.10.87 Which should result in something like this: We type in 10.10.10.87 in the browser and this shows up: At […]
Hackthebox – Bounty Writeup
This is a writeup for the Bounty machine on hackthebox.eu which was retired on 10/27/18! We first enumerate ports with: nmap -sC -sV -Pn 10.10.10.93 Port 80 is open so we go to it and it shows a wizard, nice. We look around the site and find that the server is Microsoft-IIS/7.5 but that’s not […]