phillips321

Penetration Tester and Linux fanboy!

Better domains for social engineering

Published June 28, 2011 | By phillips321

The other day i had to perform some brief and remote social engineering tasks. (1 day and telephone only)

I was attempting to trick a target into downloading a malicious executable by calling up, pretending to be BT (British Telecom) and then requesting that the user downloads a Speed Test in order for me to perform some “diagnostics”.

I provided the link to the customer as btsupport.com.phillips321.co.uk, unfortunately the phillips321.co.uk… Continue reading →

Posted in Uncategorized | Tagged domain, engineering, index.aspx, link, social, trick | 2 Comments

Capture all metasploit input/output

Published June 28, 2011 | By phillips321

I know how we all have our own way of copy/paste from console windows but metasploit has just introduced a new feature as of r13028.

You can now save all of the output of metasploit (including meterpreter) to a file using the spool command:

123spool /root/msf3_output.txt [OWNAGE GOES HERE] spool off

Or to ensure you always have a log of what you are doing add to the ~/.msf3/msfconsole.rc file… Continue reading →

Posted in Linux | Tagged capture, framework3, metasploit, monitor, msf3 | Leave a comment

Pivoting through a meterpreter session

Published June 20, 2011 | By phillips321

So you’ve owned a box and now you want to exploit others using the first as a pivot. First thing to do is background your current meterpreter session:

1234567meterpreter > background msf exploit(multi_handler) > sessions -l Active sessions =============== Id Type Information … Continue reading →

Posted in Networking | Tagged metasploit, meterpreter, pivot, portforward, portfwd, route, sessions | Leave a comment

Linux and the Magic SysRq Key!

Published June 6, 2011 | By phillips321

So your Linux box has locked up and you can’t get a response… step in SysRq!

This wonderful key is on most keyboards and i bet you’ve hit it a low more times than you realise as it’s usually paired up with the PrtSc (PrintScreen) key. What does it do?

Well it allows you to send system requests to a linux kernel, effectively allowing you to bypass the usual GUI/CLI… Continue reading →

Posted in Linux | Tagged cursor, locked, Magic, reboot, sysrq | Leave a comment

Cisco PIX firewall config that needs understanding?

Published May 25, 2011 | By phillips321

So, you’ve been given a cisco config from a pix firewall using

1'show run'

and you’ve looked through it and it seems a ballache to understand. We know we could use nipper but you either have to pay a wedge for the professional version of suffer with the free version.

After a little googling I found a few tools to help along the way. fwbuilder looks good but doesn’t… Continue reading →

Posted in Linux, Networking, Uncategorized | Tagged axa, cisco, fwbuilder, fwconfigparser, ios, pis, routerdefense | 2 Comments

phillips321.co.uk

pen testing, security and linux

Capture all metasploit input/output

Pivoting through a meterpreter session

Linux and the Magic SysRq Key!

Cisco PIX firewall config that needs understanding?

Recent Posts

Meta

Links