Offsec Proving Grounds Walkthrough – Exghost
New OffSec Proving Grounds walkthrough. This time we tackle a machine called Exghost. This walkthrough involves:
Brute forcing credentials
Reading through a Wireshark packet capture file
Crafting a malicious image to exploit ExifTool
Exploiting a kernel vulnerability I had to get creative at the end and I leaned a bunch…
Certification Review – ISC2 System Security Certified Professional – SSCP
Hey there New Video Day! This video is my review of the ISC2 Systems Security Certified Practitioner (SSCP). The resources I used to study were Mike Chapple's LinkedIn Learning course and his study guide I bought off Amazon (highly recommend both!). It's a great exam and you will learn a…
Hack the Box Walkthrough – Cicada
This is a walkthrough of the Hack The Box machine called "Cicada". I learned a lot about Active Directory tackling this one. It features the use of tools like:
nxc
pypykatz
evil-winrm
***SPOILERS***
-- I show you how to pwn the box, so if you don't want…
How to Decrypt an Ansible Vault
In this video I explain how to decrypt and Ansible vault using several tools like ansible2john, hashcat, and ansible-vault. There are several steps that need to be followed in order to successfully decrypt an Ansible vault and I lay them all out here for you. Hope this help and let…
Walkthrough – Offsec Proving Grounds – Astronaut
New video - OffSec Proving Grounds Walkthrough of "Astronaut". This was an interesting box that we use many tools an techniques to pwn including Metasploit Framework, PHP reverse shell, and GTFObins! This is a complete walkthrough of the machine so don't watch the video unless you want help compromising the…
Multithreaded Port Scanner
I am FAR from a developer so go easy on me. This is an attempt at a multithreaded port scanner. I have it down to about 40 seconds to scan all 65,535 port (using my PC). The threading was obviously the hard part and I relied on several code examples…
Certification Review – Cisco CyberOps Associate (Cisco Cybersecurity Associate)
This is my review of the Cisco CyberOps Associate exam/certification. The cert was rebranded to the Cisco Cybersecurity Associate by Cisco in January. I give you my overall impressions of the exam and how I prepared for it using the official study guide and CBT Nuggets. Keith Barker and Robert…
Hack the Box Walkthrough – Manager
”How to Generate Shellcode with
msfvenom
”
This is a follow up video to the Offsec Proving Grounds walkthrough of "Kevin". I show you how to modify an exploit that possibly may not be working for you by generating a new shellcode payload. I learned a ton after being challenged by a viewer of the Kevin video…