This is a writeup for the Stratosphere machine on hackthebox.eu which was retired on 9/1/18! First, enumerate! Let’s try the custom python enumeration script a friend of ours made: https://github.com/vishalb2308/Pentest-Enumeration-Script/blob/master/EnumScript.py This means we run the following 3 commands.. mkdir /root/Desktop/MyScripts mkdir /root/Desktop/MyScripts/Reports python3 EnumScript.py Script suggests port 22, 80, and 8080 are open. Note:SSH supports […]
Hackthebox – Celestial Writeup
This is a writeup for the Celestial machine on hackthebox.eu! We first enumerate for open ports as usual, with the nmap scan: nmap -sC -sV -Pn 10.10.10.85 Ok… port 3000 is open.. let’s try to browse there: 10.10.10.85:3000 404 is on the page.. hmmm. ctrl+u whoa.. refreshing the page changed it: hey dummy 2+2 is […]
Quick Screenshots in Kali Linux Terminal
The best way to take a quick screenshot on Kali Linux, aside from clicking “Print Screen” and finding those screenshots in the pictures folder, is to type import whatevernameyouwant.png A little crosshair will appear and you can select the area you want to take a picture of. Needed to figure this out since it is […]
How to install Kali Linux on a Bootable USB Flashdrive from Windows
This is a guide to allow you to quickly install Kali Linux onto a bootable flashdrive. Step 1. Go here, download either the 64 bit or 32 bit image depending on your OS. Note: 64 bit will have a filename of amd64, this will work on Intel processors, don’t worry about it. Step 2. Download […]
Splunk Certified User Certification
So I kept seeing that jobs near me were looking for Splunk experience so I decided to get the Splunk Certified User certification. It’s a free certification that you can take online, and I suggest you go and register for it right away as they are changing the model by August 15th, 2018. You have […]
Hackthebox – Valentine Writeup
So we’ve been doing a bit of HackTheBox to prepare for the OSCP, and this is a write-up for the Valentine Machine. First let’s enumerate – scan the ports! nmap -sC -sV -Pn 10.10.10.79 seems port 22, 80, 443 are open so we browse to the 80 first We get a nice picture, that seems […]
EC-Council CEH Certification
The Certified Ethical Hacker v9.. what a prestigious name, should have turned me away but it didn’t. I wanted it because it was a “check the box” activity.. many companies and contracts are looking for this on your resume so I figured why not. In the end the content was extremely similar to the CompTIA […]
CompTIA Security+ Certification
Honestly – I don’t have much for you here.. My company paid for a 3-day boot camp. Two eight hour days of learning and exam on the third day. About 70% of us passed, but overall I think it was pretty basic of an exam. Just memorize memorize memorize and you’ll pass like I did! […]
CCNA Certification
My first step was getting the Cisco Certified Network Associate (CCNA Routing and Switching) certification to get fundamental network knowledge, to really understand all the layers of the OSI model, and to understand how packets flow, how DNS resolves, and how firewalls/routers work at a fundamental level. Looking back, I still think this certification was […]