Jhaddix

Wesley is awesome, and i respect his opinion =)

If you read carefully we actually have the same ideas about the book but draw different conclusions.

I see it as the only up to date reference atm, and being so cheap, for anyone who wants to get into pentesting or has no idea about backtrack, it is a great resource.

Comparing it to WAHH by…[Read more]

I know a few people out of college who did security work right away, but they were all-stars and were already focusing on hacking/pentesting while still attending university. Some were doing CCDC or Defcon CTF, others were doing projects on heuristic IDS or other security tool development.

If your major is directly related then it is more…[Read more]

Hey Sil,

I have a cheatsheet for command line scripts and workarounds that i use often. Most of them are from Ed Skoudis and other pentesters who trade ’em around. When you first show them to people they lol… and then they cry when they cant use nmap.

Ill host my cheatsheet up later this weekend. Good post.

Here’s one for Directory Bruteforcing i did.

Sorry just let me clear up this post:

ElearnSecurity and LearnSecurityOnline are two COMPLETELY different trainings..

Elearn is in the middle of UPDATING their first revision of Penetration Testing Pro, which was awesome. The main guy to talk to there is Armando Romeo (armando@elearnsecurity.com)

LSO is in the middle of completely restructuring…[Read more]

Hey BlueEyedSamurai,

I know the authors pretty well, they have some good stuff. Right now they are trying to restructure the course. You should email joe@learnsecurityonline.com and ask him what he’s got going on atm.

Also if we’re talking network level shell (not webapp/php/etc) Metasploit has some built in privilege escalation exploits in the priv module (meterpreter) and after patch tues a few weeks ago more should be coming 😉


meterpreter > use priv
Loading extension priv…success.

meterpreter > getsystem -h
Usage: getsystem
Attempt to elevate your p…[Read more]

Whats funny about this is that it seems to have happened out of need not want…. 

Rapid7 and HD Moore said “SANS New Class is the official Metasploit Training” so obviously people on twitter asked “what about Metasploit Unleashed?” and HD replied ” We will continue to link to it as long as it is updated”

And hey… look at that! Updates!

😉

There was a really good presentation at Bsides by one of the Intrepidis guys on this. He attacked the protocols, auth mechanisms, and other aspects using a variety of MiTM attacks… Ill see if i can dig it up.

Mallory is gonna be sweet for this.

DAVtest is a newer tool for testing extensive web server options,

http://code.google.com/p/davtest/

it has also been implemented as a Nmap script, check out the scripts directory for more information.

The default shell it will give you is limited, i replace it with the new meterpreter PHP payload. Or you can supplement with Ironfist’s AJAXShell…[Read more]

I know i’m resurrecting an old thread, but having taken all the courses that have been mentioned in this thread i can offer the following:

GWAPT has a great methodology, but it does lack in some of the technical areas. It covers the domains of app testing, the best and most current tools, intros to scripting languages, and lots of application…[Read more]

There are a few initiatives for this kind of documentation out there atm. One i like a lot is:

http://tools.securitytube.net/index.php?title=Main_Page

Which has syntax and videos for a lot of tools.

gl!

ill be there sunday-sunday, we should all grab some drinks!

Also CG did an excellent writeup of XPATH injection right here on EH.net =) Gives some tool mentioned above:

http://www.ethicalhacker.net/content/view/185/24/

feed the wsdl to founstone’s WSDigger, then go to the top menu and chose to run tests, this will check for commonly known injection attacks.

Sec542 has a whole section on webservice hacking =)

Ha! Check out the author for the Ferruh interview 😉

I expect writeups from all of you! Congrats! =)

I <3 JOOMLA (and Codeigniter)

gimme gimme

Testing a /dev/tcp version atm that will send goodness over the wire in *nix =)

So, metaphish uses this functionality only with javascript. I believe Dave Kennedy will be implementing into SET (the Social Engineering Toolkit) soon =)

So many ways to trick the user =(

I used to love Pandora untill i found Grooveshark 😉