DragonGorge

Forum Replies Created

Viewing 14 reply threads
  • Author
    Posts
    • #53835
      DragonGorge
      Participant

      @n37sh@rk wrote:

      slmgr -rearm from the research I have done dose not seem to work in XP I would have to use the rundll32.exe syssetup,SetupOobeBnk.

      Supposedly, “msoobe.exe” is used for the XP activation. Haven’t used it myself though.

    • #53833
      DragonGorge
      Participant

      If I understand your question correctly, you want to have one “baseline” VM that’s good for 30 days after you distribute it. Would “slmgr -rearm” work?

      I think you’ll then be able to create your baseline VM. Before you send it out, run slmgr -rearm which resets the activation timers for 30 days IIRC. If this works for you you could always automatic it via a script so it runs once after the VM is configured and first starts up then deletes itself.

    • #53690
      DragonGorge
      Participant

      dynamik – I should have mentioned that I’m going to the live courses. 660, for whatever reason, isn’t being offered this time around. Same goes for the advanced web app. In your opinion is 760 at/above/below OSCE? From the course description it seems like it’s above (don’t recall 64 bit anything in the latter).

      Sooooooo, looks like I’m going with the forensics class.

    • #53457
      DragonGorge
      Participant

      Great article. Good to know if one of my family members ever loses their phone – time to change my router’s password.

      BTW – I noticed the screenshot says “Kali Linux” but the picture suggests it’s actually a Backtrack machine. I suppose it’s possible that someone would put a BT wallpaper on Kali. 😉

    • #52702
      DragonGorge
      Participant

      On a related note…I’ve heard of a person getting a bump to passing based on their report, but have never heard of someone *failing* because of a poor report, despite having garnered enough points.

      I know for a fact that they do require a report. I had an e-mail snafu when I took my exam where they sent out an message indicating that they’d not received my document, even though I had passed point-wise. Talk about scrambling! No way was I going to blow my exam due to a technical difficulty with my e-mail!

    • #52705
      DragonGorge
      Participant

      I used this tutorial:
      http://forums.kali.org/showthread.php?74-Installing-Kali-Linux-as-a-Virtual-Machine-in-Virtual-Box&highlight=virtual

      Went fairly smoothly overall. While Kali seems generally better organized, it’s very slow on my machine compared to BT 5 R3. Despite giving it more resources than I did for the aforementioned.

    • #52692
      DragonGorge
      Participant

      You submit the report after you take the exam. As for the material changing since ’12…highly doubtful.

      On a related note are you sure it’s a good idea to go into the exam “cold” (i.e. after so long a break since the labs)? Or have you been working on your own?

    • #52667
      DragonGorge
      Participant

      Personally, I’m not that fond of Kali – it’s slow (in my VM) compared to the Backtrack versions. However, it’s unlikely that they’ll continue to support BT so if you’re starting out, you might as well go with the latest version and the one they’re going forward with…Kali.

    • #14458
      DragonGorge
      Participant

      @reverse_eng00 wrote:

      Can someone explain me why EAX+ECX is the entered serial address.
      Why it isn’t only ECX ?

      My Assembly isn’t the best but I’ll take a stab…ECX points to the serial address and it’s a DWORD. The routine is comparing BYTE. So ECX is the base address of of the serial addy and adding EAX allows you to step through it byte by byte.

      One thing that helped me in learning how to read assembly is stepping through it in a debugger. It makes loads more sense when you can see the registers being modified.

      Now for some coffee…

    • #51968
      DragonGorge
      Participant

      Kick its ass!!

    • #52336
      DragonGorge
      Participant

      I used Matt Walker’s ALL-IN-ONE Guide for the CEH:
      http://www.amazon.com/Certified-Ethical-Hacker-All-Guide/dp/0071772294

      It’s much more readable than some of the other guides on the same topic (the CEH official materials included). It also points out some of the more archaic things about CEH v7.

    • #52184
      DragonGorge
      Participant

      Re. OffSec programming languages…I took the OSCP last year and didn’t write a single line of Ruby. Strictly Python & C.

    • #51938
      DragonGorge
      Participant

      Good luck!

      I 3rd (or 4th) what ajohnson said…a password attack shouldn’t be your primary vector. Personally speaking, in the lab and on the exam, I didn’t put much effort into password cracking/guessing other than the obvious ones (username, defaults, etc). I felt that there were more direct/less random ways to get into the machines.

    • #51911
      DragonGorge
      Participant

      IIRC, this is a vulnerability that hasn’t had an exploit (to do what you want) written for it (yet).

      I seem to recall seeing exploits that claimed to allow remote code execution or something similar on Pastebin BUT in reality they were bogus and ended up pwning the downloader’s machine.

    • #51495
      DragonGorge
      Participant

      @MaXe wrote:

      He’s beginning to sounds more and more like Gregory D. Evans.
      (http://attrition.org/errata/charlatan/gregory_evans/) Except that Joe, actually knows something.

      Hard to believe that Anonymous hasn’t taken this guy down already. World’s #1 Hacker indeed. http://gregorydevans.com/

      He could have made the same points using a bit more tact.

      Never a good idea to drive, e-mail, or blog angry.

      I’m thinking McCray has some other things going on in his life besides the financial troubles and (intense) dislike for the folks at exploitlabs.

Viewing 14 reply threads

Copyright ©2020 Caendra, Inc.

Contact Us

Thoughts, suggestions, issues? Send us an email, and we'll get back to you.

Sending

Sign in with Caendra

Forgot password?Sign up

Forgot your details?