Quick Hit: Base64 PowerShell Exfiltration

Okay, so you’ve landed in a constrained language PowerShell on a remote box, and the local application security policy is stopping you from using all the regular stuff (e.g. netcat, opening network connections, etc)… but you need to exfil a medium amount of binary data. How would you do that?

The following isn’t perfect, but it’s the solution I used recently… feel free to share better solutions! 🙂

Continue reading “Quick Hit: Base64 PowerShell Exfiltration” →

March 14, 2019 0

Quick-Hit: Editing Submissions in BurpSuite

Let’s say you’re running some tests on a service and want to use some characters that aren’t standard in your systems’ character set. How do you do that?

Continue reading “Quick-Hit: Editing Submissions in BurpSuite” →

February 8, 2019 0

Gpg4win/Kleopatra for Windows

So you need a quick way to generate your own pgp keys and want to do it on a Windows box? Browse over to this page and download the latest version of Gpg4win.

Installation is pretty straight forward.

Continue reading “Gpg4win/Kleopatra for Windows” →

January 31, 2019 0

How to install Wget on Windows

Sometimes you just want to download a bunch of files without having to grab your linux box. Luckily, you can easily install WGet on windows and download content from web servers to your heart’s content.

Continue reading “How to install Wget on Windows” →

January 9, 2019 0

Quick Tip: Linux and Rufus

Just learned today:

If you are making a bootable disk from a Linux distro using Rufus and it won’t mount, try creating it using the DD option.

Apparently, Linux sometimes only likes its own tools being used on it.

Bonum Venandi,

November 27, 2018 0

Wireless Hacking

This is just a quick post to provide the presentation I gave tonight at PwnSchool. If you’d like to review it you can download it here. Thanks!

Topics covered:

Introduction to Radio Frequency
Wireless Hacking (WEP and WPA2)
RFID Hacking (HID Prox and MIFARE)
Bluetooth Hacking (Bluelog/bluesnarfer/Wireshark/etc)

October 17, 2018 0

QuickHit: wget Website Mirroring

You may often need to mirror all (or part) of a website for offline analysis. The ‘wget’ program has some easy features to use when you want to quickly get a local copy of a site and correct common issues (like links pointing to server locations). Set up one of these behind the scenes while you work on other aspects, then peruse at your leisure.

Update 2018-07-21: Or just use the script I wrote to simplify this for my customized Kali build, available here.

Continue reading “QuickHit: wget Website Mirroring” →

July 20, 2018 0

Getting Started with DigiSpark

I bought a pile of DigiSpark devices on a whim (they’re less than $2 each), and the following are just my notes on how to get things up and running with them to do simple testing. I’ll also note that this was based on the DigiStump connecting tutorial, but I found some gaps in their approach and wanted to document my variations here for posterity.

Continue reading “Getting Started with DigiSpark” →

June 20, 2018 0

Firmware Analysis

This is the quick-hit version of the firmware analysis training I gave. As with all of the formal training, you can use the below for a quick reference, or view the full presentation here.

Continue reading “Firmware Analysis” →

June 3, 2017

Up ↑

Category: Tutorials