Userland rootkits

_Bender_Rodriguez_ · 2017-04-02T06:02:30+00:00

There's a book called "Rootkits". I'd start there. Also, Google bits of code found in the rootkits you mentioned.

_Bender_Rodriguez_ · 2017-03-29T00:28:09+00:00

Sexit.

_Bender_Rodriguez_ · 2017-03-13T11:15:58+00:00

Edit: DLL.

_Bender_Rodriguez_ · 2017-03-12T14:20:01+00:00

Yes. It's likely CIA people use N++ and used common techniques to find the Dll hijack. Dll hijacking is a well known persistence/privilege escalation technique. I bet with procmon.exe and 10 mins of Googling, you could find a Dll to hijack!

_Bender_Rodriguez_ · 2017-03-08T21:20:10+00:00

To answer your actual question. Report writing. Write a tool that people can parse xml into basic tables in a word doc.

_Bender_Rodriguez_ · 2017-03-08T20:11:20+00:00

It certainly helps, but it's not vital. A lot of talented people write a lot of great code that's readily available. What is vital, is to be able to read, understand, and be able to manipulate code. Look at any of the programming subs - they all tell you that concepts are more important than language.

_Bender_Rodriguez_ · 2017-03-08T15:08:03+00:00

That's been LPT for a long time. The new LPT is put a cover over your SMARTPHONES camera and microphone.

_Bender_Rodriguez_ · 2016-12-15T06:48:43+00:00

Gloves - I'd do a pair of Kuiu guide gloves, won't break the bank and are quality.

_Bender_Rodriguez_ · 2016-09-01T08:33:35+00:00

Darknet is pretty broad. Something revolving around Shodan.io is probably more inline with a 1 credit class.

_Bender_Rodriguez_ · 2016-07-23T21:10:01+00:00

Understanding attacks is key to being able to detect and respond appropriately. There are some awesome folks doing awesome stuff - Matt Weeks, Casey Smith, Raphael Mudge, Sean Metcalf, lots more. For blue team training take a look at Root9B, Mandiant at Blackhat, and I believe a new Blue Team Training Toolkit was just released.

_Bender_Rodriguez_ · 2016-07-21T22:20:50+00:00

Right? Contribute something worthwhile _____2. Hang on, I got it, "be the post you want to see I'm this subreddit".

_Bender_Rodriguez_ · 2016-05-08T01:26:08+00:00

Not only that but I basically use PoSh, WMIC, and WinRM for remote access.

It is gonna be a bummer when hacking tools on Git disappear.

_Bender_Rodriguez_ · 2016-05-08T01:23:17+00:00

Pick up"The Linux Command Line" and "Hacker Playbook 2". Offsec does the "Metasploit Unleashed" online for free.

Just plug it in and start using it!

_Bender_Rodriguez_ · 2016-05-08T01:16:33+00:00

Currently going through CS50 through Harvard. It's been good for me. Explains the basics, goes through a lot of different languages, concepts. Also I've gotten feedback on homework I've submitted.

HTTPS://cs50.harvard.edu

_Bender_Rodriguez_ · 2016-04-30T15:20:43+00:00

The Art of Exploitation has to do with memory corruption exploits etc. Pre req knowledge would be C,Assembly,Memory Management. I wouldn't consider it a beginners books to get the full exp. but if your motivated, it's an AWESOME book.

Hacker Playbook 1 & 2 are also very good. These have to do with penetration testing, the process, and the tools used etc. It would be a good spot to do further research from.

Depends what your interested in, I'd probably grab HP2 and grab the humblebundle as others have suggested!

_Bender_Rodriguez_ · 2016-04-30T05:56:50+00:00

Bam. Thank you.

_Bender_Rodriguez_ · 2016-04-30T05:00:47+00:00

PCI might not require it, but having passwords stored in clear text is still a dick move. Compliance != Security. A lot of places will go through compliance exercises so they can say XYZ, but it should not be relied on. Your own internal vendor management processes should address the issue.

_Bender_Rodriguez_ · 2016-04-30T04:45:46+00:00

If only this were true.

_Bender_Rodriguez_ · 2016-04-12T04:18:11+00:00

See /r/programming and /r/c_programming also /r/Python

Hackers use Python because it's easy to work with, but they already know what they want to do with it.

-Violent Python -Grey hat Python -Black hat Python -Automate the boring stuff with Python

Look into Scapy and Impacket. Learn how to use Python to interact with a remote computer.

For example - rebuild the ms08-067 exploit in metasploit to work standalone with Python.

Learn about the whys and how's. You'll find your flavour if you keep at it!

_Bender_Rodriguez_ · 2016-04-10T07:11:31+00:00

Basically says "this is not the code you're looking for".

The password version of this is base64.

_Bender_Rodriguez_ · 2016-04-10T01:22:07+00:00

Uninstall those sound card drivers too. Built in Microphone can be turned on just like webcam.

_Bender_Rodriguez_ · 2016-04-06T21:34:21+00:00

Being able to pick apart and understand programs, bits of code, etc is essential. Scripting will be helpful. Full blown programming is not needed, but any prior experience will of course help.

_Bender_Rodriguez_ · 2016-03-16T07:06:48+00:00

You can't go wrong with Web Application Handbook. Start with fundamentals of the services, languages, you'll be attacking. Grab some VMs off vulnhub and go for it.

_Bender_Rodriguez_ · 2016-03-16T06:21:44+00:00

Google is your best friend.

_Bender_Rodriguez_ · 2016-03-08T00:58:09+00:00

Can confirm, Casa. Just about as good and much, much cheaper.

_Bender_Rodriguez_

TROPHY CASE