Its been a while since I posted. This is a quick update of the new changes. I’m now using a new Jekyll theme called klisé by Mahendrata Harpi. With this change, I’ll also try to post more regularly since my last post was back in 2019. I have also added my public key which is available here.
In this blog post I’ll share a report I wrote a few months ago for a XSS bug found on podcasters.spotify.com. This was submitted on HackerOne but unfortunately, it was already reported and mine was considered a duplicate, oh well, better luck next time. Summary When a user submits a new podcast RSS feed for verification, the description tag inside it is not properly escaped. This results in JavaScript being executed on the page which could allow attackers to hijack users’ session cookies and/or take over accounts....
Overview In this guide we’ll be going through the process of configuring an intercepting set-up using mitmproxy and a wireless network, to inspect, modify and monitor encrypted HTTPS traffic. This will allow for a simple way to analyse traffic on mobile handsets and IoT devices, with the only requirements is Wi-Fi support and the ability to install custom certificates. mitmproxy is your swiss-army knife for debugging, testing, privacy measurements, and penetration testing....
In this blog post I’ll be demonstrating a process of obtaining or acquiring a memory image from a running Linux system. The tool of choice LiME (Linux Memory Extractor) and is available on Github. After a forensic image has been acquired we will use Volatility with a custom Linux profile for the analysis, to keep things simple I’ve used the latest Debian Stretch kernel version 4.9.0-8-amd64 as the target system so it’s easily repeatable....
Update (2021) Debian ended support MIPS big endian, as a result some links became broken. I have updated the link and you can still follow this tutorial for MIPS little endian.. How to set up and build your own MIPS big endian or little endian image running under the QEMU emulator. This guide can also be applied to other architectures. For example I’m currently running this in a virtual machine inside another virtual machine on my MacBook Pro....
This guide shows you how to quickly set up and get started with Nzyme and Graylog version 2.3.2 using Docker. In this tutorial I’m using Mac OS but Docker can be install on any platform. For testing purposes, I’d recommend using Kali Linux or any Debian based distro on where Nzyme sensor is installed. What is it? Nzyme collects 802.11 management frames directly from the air and sends them to a Graylog (Open Source log management) setup for WiFi IDS, monitoring, and incident response....
Since last April in 2016, the main BBC Homepage has been accessible only via HTTPS, which I thought was a good step forward, heading in the right direction. However, most pages or URLs still use insecure HTTP. Trying to navigate to a page while manually typing HTTPS in the browser address bar will force a 301 re-direct to HTTP. Here’s an example of cURL while navigating to /news/ path: $ curl -IL https://www....
Whilst studying at University I became interested in hardware keyloggers, and so decided to purchase one for a research paper. This device is specifically for wired USB keyboards (non Wi-Fi or Bluetooth) which records every single key stroke typed, without the need for drivers or worrying about any security product. I thought why not write a review and share some interesting findings. I DO NOT condone or encourage the use of any such devices for ILLEGAL purposes....
UPDATE: Kali Team have migrated to a new Kernel Version I’ve tested the new kernel 4.12.13-1kali2 and can confirm it fixes issues with my wireless card. I’d advise people to update their packages and use this kernel. I’ll keep this page as it’s still a useful guide on how to downgrade for falling back on an other kernel. More info available: https://pkg.kali.org/pkg/linux As you may of heard the recent 4.12.6-1kali1 kernel version broke functionality on most wireless devices, resulting in serious performance and range issues making devices almost unusable....
Reload bash_profile Apply any changes made to ~/.bash_profile with reload: alias reload='source ~/.bash_profile' Network Connections List all network connections with nets: alias nets='lsof -i' Internet Speed test Speed test using a 100Mbyte file from OVH Hosting: alias speedtest='curl -o /dev/null http://ovh.net/files/100Mio.dat' WAN IP Address Show WAN IP address with myip: alias myip='curl ifconfig.co' Web Server Banner A curl function to grab web server banner information with headers followed by a URL:...