My Crap – Page 61 – Random Ramblings About Random Crap

2018-08-20 News Feed

Hacker Shit, News Feed Stuff, Random Musings, Security Stuff, Stuff To Learn2018-08-20

Well, it’s been a while since my last post. Things have been hectic… took a week away for #DefCon, started a new job, rebuilt a trailer to pull my new 1961 Jeep… So many little things. 🙂 Life is starting to pick back up. 🙂

dcipher – Online Hash Cracking Using Rainbow & Lookup Tables

dcipher – Online Hash Cracking Using Rainbow & Lookup Tables

#hackerstuff #HackThePlanet

Golang rewrite of eyes.sh. Let’s you perform domain/IP address information gathering. Wasn’t it esr who said “With enough eyeballs, all your IP info are belong to us?”
https://github.com/naltun/eyes
#hackerstuff #HackThePlanet

2018-08-01 News Feed

Hacker Shit, News Feed Stuff, Random Musings, Security Stuff, Stuff To Learn2018-08-01

SamSam Ransomware Attacks Extorted Nearly $6 Million
https://thehackernews.com/2018/07/samsam-ransomware-attacks.html
#hackerstuff #HackThePlanet

Inside Look at Emotet’s Global Victims and Malspam Qakbot Payloads
https://blog.kryptoslogic.com/malware/2018/08/01/emotet.html
#hackerstuff #HackThePlanet

PowerShell Inside a Certificate? – Part 2
PowerShell Inside a Certificate? – Part 2
#hackerstuff #HackThePlanet

Breaking the Bluetooth Pairing: A Fixed Coordinate Invalid Curve Attack
http://www.cs.technion.ac.il/~biham/BT/
#hackerstuff #HackThePlanet

Attacking the attackers: Execute code on the attacker’s c&c

Attacking the attackers

#hackerstuff #HackThePlanet

2018-07-31 News Feed

Hacker Shit, News Feed Stuff, Random Musings, Security Stuff, Stuff To Learn2018-07-31

Well, it’s been a while… Super busy dealing with a lot of stupid shit while transitioning out of my last company. Next week is DefCon! It will be my first time going… 😀

Activist Leaks 11,000 Private Messages from WikiLeaks’ Twitter Chats
https://thehackernews.com/2018/07/wikileaks-twitter-chats.html
#hackerstuff #HackThePlanet

Enumall – Subdomain Discovery Using Recon-ng & AltDNS

Enumall – Subdomain Discovery Using Recon-ng & AltDNS

#hackerstuff #HackThePlanet

PowerShell Inside a Certificate? – Part 1
PowerShell Inside a Certificate? – Part 1
#hackerstuff #HackThePlanet

Multiple vulnerabilities in OCS Inventory 2.4.1 (RCE, SQLI & XXE)

Vulnerabilities in OCS Inventory 2.4.1

#hackerstuff #HackThePlanet

Hakluke’s Guide to Hacking Without Metasploit (for OSCP)
https://medium.com/@hakluke/haklukes-guide-to-hacking-without-metasploit-1bbbe3d14f90
#hackerstuff #HackThePlanet

2018-07-17 News Feed

Hacker Shit, News Feed Stuff, Random Musings, Security Stuff, Stuff To Learn2018-07-17

This morning I ran into an issue after upgrading PIP, to version 10. After the upgrade, anytime I tried to use PIP, I received the
ImportError: cannot import name ‘main’ error. The issue looks to be just a change in the main import, but the solution
is pretty simple (for me, at least).
Instead of typing
pip install --upgrade pwntools

I used
python -m pip install --upgrade pwntools

Hope that helps someone else out…

Change your passwords!
New sextortion scheme uses victims’ real password for blackmailing

New sextortion scheme uses victims’ real password for blackmailing

#hackerstuff #HackThePlanet

PrestaShop 1.6 Privilege Escalation (CVE-2018-13784)
https://www.ambionics.io/blog/prestashop-privilege-escalation
#hackerstuff #HackThePlanet

OWASP Amass tool – Obtain subdomain names by scraping data sources, recursive brute forcing, crawling web archives, permuting/altering names and reverse DNS sweeping.
https://github.com/OWASP/Amass
#hackerstuff #HackThePlanet

CERT Keyfinder: A tool for analyzing private (and public) key files, including support for Android APK files.
https://github.com/CERTCC/keyfinder
#hackerstuff #HackThePlanet

OWNING SAML – by Rick Osgood

Owning SAML

#hackerstuff #HackThePlanet

Ransomware – For analysis only! Don’t do anything stupid

http://106.51.1.25/Ransomware/
#hackerstuff #HackThePlanet

2018-07-16 News Feed

Hacker Shit, News Feed Stuff, Random Musings, Security Stuff, Stuff To Learn2018-07-16

Fucking Homepage Words of Wisdom of the Fucking Day:
Never be afraid of change. You may lose something good, but you may gain something better.

HackTheBox – Bart Writeup
https://www.sploitspren.com/2018-07-15-HackTheBox-Bart/
#hackerstuff #HackThePlanet

Hamburglar – Directory/file traversal to find keys, ip addresses, emails, crypto addresses, and more. One configurable script, regex driven.

https://github.com/needmorecowbell/Hamburglar
#hackerstuff #HackThePlanet

IDA IPython – pure Python implementation for both IDA6.x and IDA7.x (x-post from /r/ReverseEngineering)

https://github.com/tmr232/ida_ipython
#hackerstuff #HackThePlanet