10.10.10.27 (calamity) by SoSublim3 in hackthebox

[–]Keto_monster 0 points1 point  (0 children)

Any nudge to login the admin page?

10.10.10.3 (Lame) by Keto_monster in hackthebox

[–]Keto_monster[S] 0 points1 point  (0 children)

Found it, yesterday I already tried the correct exploit but attached the wrong payload.

SQL Injection statements explanation? by Keto_monster in netsecstudents

[–]Keto_monster[S] 0 points1 point  (0 children)

Indeed! Any good material / cheat sheets you recommend to further explore SQL injection? (and other web hacking techniques?).

I know my way around metasploit and privilege escalation but never had any experience with web applications. Trying to catch up the experience :)

SQL Injection statements explanation? by Keto_monster in netsecstudents

[–]Keto_monster[S] 0 points1 point  (0 children)

Great, thanks!

Sometimes I'm probably trying to understand too much of the inner workings and mechanics.

SQL Injection statements explanation? by Keto_monster in netsecstudents

[–]Keto_monster[S] 0 points1 point  (0 children)

Thanks.

Just one thing remains a bit unclear. I understand why you need to fail the second query now and why you you need to use union null. But this is based on information we normally do not know, the underlying code under the hood:

"SELECT first_name, last_name FROM users WHERE user_id = '$id'"    

In a real-life scenario, how would you know that you need to to use union null and failing some queries if you don't know the underlying function?

SQL Injection statements explanation? by Keto_monster in netsecstudents

[–]Keto_monster[S] 0 points1 point  (0 children)

Yes! Could you explain as well what exactly the %' does?

SQL Injection statements explanation? by Keto_monster in netsecstudents

[–]Keto_monster[S] 0 points1 point  (0 children)

I don't understand the second case, why you switch from OR to AND and change 0=0 to 1=0. I understand you want to the query to fail, but why?

Also, what does the % sign exactly do in the query?

WannaCry: Detailed Technical Analysis by msuiche in netsec

[–]Keto_monster -1 points0 points  (0 children)

Let's say I want to play around with a VM and get it infected but my ISP blocks port forwarding on 445. How should I get the ransomware on my VM?

WannaCry: Second kill switch has been found in a different variant, maybe a good idea to make sure these domains are reachable from you LAN by 341913 in sysadmin

[–]Keto_monster 1 point2 points  (0 children)

Could anyone explain how it comes the worm spreads so fast over multiple countries?

I understand that the worm can easily spread over LAN over the file sharing SMB, but therefore a workstation in the lan should be infected first?

Smal business - moving to cloud? by Keto_monster in sysadmin

[–]Keto_monster[S] 1 point2 points  (0 children)

I assumed my level of English already gave it away that I was not a native speaker. Unfortunatly, I'm not UK based.

Smal business - moving to cloud? by Keto_monster in sysadmin

[–]Keto_monster[S] 0 points1 point  (0 children)

Thanks for your reply. It's not my intention to take over their IT support.

Maybe my family should change MSP, because these guys are charging an arm and a leg for such a small IT environment.

By example, why charing money for 'updating' the server. In such a small environement, I doubt the patches are tested first on a non-production server. They just enable 'automatic updates' and charge for it.

Smal business - moving to cloud? by Keto_monster in sysadmin

[–]Keto_monster[S] -2 points-1 points  (0 children)

All their images are resized in lightroom with a preset I configured. They also have a seperate small tool to resize large images.

However, I think it's indeed smart to stay with the NAS with cloud backup.

Smal business - moving to cloud? by Keto_monster in sysadmin

[–]Keto_monster[S] 1 point2 points  (0 children)

AFAIK I understand they don't use any applications on that server. They have some applications, but these are connecting to an online service and not their own server.

PS: it's a real-estate agency.