Congrats BillV, enjoy it

(p.s. was expecting a completely different thread when I read the title )

I just hope he likes it hot, I've heard you can get a serious tan where he's going....

Try this EH Thread (dive into python)

Read the rest of the programming board threads for some great resources.

And remember, the search box and google are your friend......

Senss,

if this is a criminal matter the best advice is to report it too the authorities. Even if your actions are 'justified' you may end up on the wrong side of the law. Hiring third party investigators probably isn't the way to go.

Failing this contact the providers of the domain to attempt to have the site taken down. Additionally you could try contacting the Internet Storm Centre (ISC)

RR

Ketchup,

if you are trying to sniff traffic for defensive purposes your can configure span ports (on Cisco devices, I believe similar features exist forother manufacturers). This will allow you to see traffic at packet level without restorting to re-directing traffic with arp spoofing.

However as you state, the bad-guys will likely have no qualms attempting an ARP spoof technique as the fallout of network failure isn't going to effect them. Might be a good idea to see how the network would handle such an attack. As with everything in this area make sure that you have fully explained the risks to your employer/client before trying these techniques and CYA, in writing, at all times.

RR

Teamer,

couple of things
All good, first fence hurdled.

The links that BillV has provided should point you in the right direction. However without knowing the exact config of your environment step-by-step instructions will be near impossible. But the setup you describe should be fairly simple, just read and experiment.

Fair enough, your call. What's your IP by the way?......

Cheers for the heads up BillV.

Slightly concerned about module 67 though....

(Emphasis is mine)

 

Teamer,

first things first, my answer depends on each of your network connections having a separate, static IP address.

The bandwidth you quote for the connections: are they the upstream figures? Bear in mind that as standard (in the UK at least) even a 20Mbps ADSL connection may be limited to as little as 256kb upstream. Which is the important aspect if you are trying to server content.

Also check with your telco's t's & c's as there may be restrictions on hosting content of the connection, possibly with some inbound ports being filtered.

All that said, some solutions....

Simplest solution would be to configure Apache to listen on each IP for each domain as appropriate and set DNS records for each domain. Job done.

I'm assuming that there is some issues with this however. Do you routers pass through public IP addresses or NAT to a private range? Make sure that you get your NATs configured so that external traffic reaches the correct internal IP/service.

If you're using Vista I'd suggest some form of hardware firewall if available, resorting to software f/w at a minimum.

One issue you may face is the default gw settings in Vista. I've had issues in the past trying to dual-home a 2003 server using native windows infrastructure. Not sure if Vista will have the same or similar issues, but if you encounter problems this may be a place to look.

Hope this is of some help.
RR

especially if you like DNS enumeration;)

(sorry, I'll get my coat)

Dale,

• decent writeup of Leo on WikiPedia.
• Leo homepage HERE
• download from SourceForge

Easiest way to learn (at least for me) is just to play with it. Mutz has a nice video showing it's us to document pen-test findings, not sure if it is world viewable or students only. If I can find a public link I'll update.

Agreed guys, I'm starting to get the hang of it. The 'tree' view seems to fit in with how my brain works. Also it's nice (and extremely useful) to slowly see the information gathered about the network grow as you work through the activities.

Cheers Vijay,

I got access to the course material yesterday and so far it's great. I've watched the videos for the first two modules and gone through the exercises (inc. extra mile) for module 1.

Haven't had too much opportunity to hit the labs yet due to the nature of the first few modules. But from what I've seen there is plenty to play with and I can't wait to get more involved. I'm having to try really hard to stick with the course material and not just dive straight in with hacking around the lab.

Biggest issue I've had so far is getting my head around using Leo. Think I'm starting to figure it out and I'm starting to see the benefit of using it. Just wish there was some mention of Leo in some of the preperation material so I could have gained experience before getting the material. If any one is planning on taking the course spend at least a bit of time looking at Leo for documentation.

Cheers for the responses guys, just got access to the course material today (wish I was at work, the download would be faster ) Printer is currently in overdrive

Hopefully the programming section shouldn't be too much of an issue, I come from a development/Linux admin background so know the basics. (plus I use nano too )

I've been hanging around in the irc channel for a few days, seem to be similar to most communication places on the web. Plenty of useful helpful people providing you can take the high-road and ignore some of the less usefull comments.

Hi All,

I've just signed up for the OffSec101 course starting 13th July. At the moment I'm bouncing around like a kiddy at christmas waiting for it to start

Basically I was looking for some advice from those that have already taken (or currently taking) the course with regard to the best way to study the material.

Also from posts I've read here and elsewhere the final exam sounds a bit evil. Any advice on which aspects of the material to learn 100% would also be apreciated.

Thanks in advance, just hoping talking about the course may calm me down some
RR

Nicely done Apollo

and thanks for posting the solution aswell as the problem.