LHF Scan (Lowest Hanging Fruit Scan)

A Python script using nmap libraries in order to audit and quickly highlight areas of interest regarding security on a network. Currently highlights: Web servers running HTTP SMB shares FTP SSH Telnet (with banner grabbing) SMTP server identification and identification of dangerous hosts (XP and Server 2003) Many bugs, but provides a good intelligence feed … More LHF Scan (Lowest Hanging Fruit Scan)

Installing PFSense

So I’m used to working with expensive firewall solutions which, in fairness, protect SMBs and enterprises against a multitude of threats. A common theme amongst all smaller companies is that they cannot afford proper hardware to cater for additional UTM features like AV scanning etc. These can cascade into the tens of thousands of pounds. … More Installing PFSense

Resetting a Windows Password Using Kali Live Boot and CHNTPW

If presented with a PC that no one can remember the admin pass, and the usage of your Hiron boot disk is not available due to driver support issues, you have an alternative which is to use the Kali live boot. Once booted into Kali on the local machine, you’ll need to mount the drive. … More Resetting a Windows Password Using Kali Live Boot and CHNTPW

Installing OpenVAS 9 on Ubuntu 16.04.3

OpenVas is an open source vulnerability scanner. Using authenticated scans we can identify vulnerabilities within the configuration and current versions of software existing on our infrastructures. SO using a barebones install of Ubuntu 16.04 we are going to install the latest rendition of OpenVAS (that being v9). Firstly we need to add the APT repository … More Installing OpenVAS 9 on Ubuntu 16.04.3

Simulated Password Cracking with the NTDS.DIT Export – Part 2

Now we have a copy of the hashes we can sling them through John. There are several approaches to this, but for the purposes of simulating an attack its best to use 2. They are: A default JTR crack A company specific wordlist crack Basically JTR has certain options for rules. I’ve found that if you’re … More Simulated Password Cracking with the NTDS.DIT Export – Part 2

Simulated Password Cracking with the NTDS.DIT Export – Part 1

In order to check to see if passwords can be cracked or guessed by the evil-doers we have an advantage that we rarely use. By performing a simulated password crack on our existing AD users we can obtain the upper hand by finding the failing passwords before the bad guys do. Firstly we need to … More Simulated Password Cracking with the NTDS.DIT Export – Part 1

IoT – Stopping Your Toasters Plot For World Domination

So now we don’t just have to be worried about politics and financial issues… we have to be concerned that our toaster will want to take part in world domination and that our vacuum cleaners will spy on us in an attempt to provide better advertising. So how do we control these wild little things … More IoT – Stopping Your Toasters Plot For World Domination