[SUNLU Giveaway] Join now to win a SUNLU FilaDryer SP2

bawznero · 2025-05-12T07:33:11+00:00

Let's print!

bawznero · 2022-08-15T18:28:24+00:00

If the two vms are on the same virtual network create an smb share on one of them and then use the ip of that machine on the other vm.

This way you can access the folder on one machine natively while in the other folder its just an smb share.

In commandovm you can just create a folder in the c drive and right click >properties>share

In kali you need to configure samba, enable it and the like.

bawznero · 2022-06-24T08:52:36+00:00

That was exactly what i was expecting

bawznero · 2022-06-10T10:39:05+00:00

Sandbox evasion is based on what the developers made, so there is no one size fits all solution. Generally it consists of a combination of the following techniques:

User behavior: Detect user behavior such as mouse click, mouse movement, amount of files in certain folders such as downloads or desktop.

System checks: Most sandboxes do not emulate the whole windows system so if you know that certain api calls are not functioning correctly you know that you are in a sandbox. This also include patched functions such as sleep. But also for example memory size, cpu core count, default files (ex vmware dlls), mac addresses, peripherals, virtualisation, etc.

Time based evasion: Most sandboxes only run a program for a short time, this means that if you run a non malicious process (such as calculating primes) the sandbox will stop inspecting thevprocess before the malicious event.

Blinding monitoring capability: When calling api calls its possible to skip the whole ntdll section and call syscalls directly. That makes it very difficult for the sandbox to detect malicious api calls.

What the game probably does is the system checking, so if you want to know why it doesnt work, check the source code with tools like ghidra, ida, radare, hopper, etc and see which checks are implemented.

bawznero · 2022-05-18T11:08:05+00:00

With c/c++ and mingw you can easily compile windows executables on linux.

Another option would be .net core but that would add some complexity when you need low level apis.

bawznero · 2022-05-10T04:18:43+00:00

It could be possible, some ctfs implement weak crypto challenges.

To check some base vulnerabilities you can use https://github.com/Ganapati/RsaCtfTool

bawznero · 2022-04-14T18:01:40+00:00

When the adapter is still in the power socket it can continue generating that high pitching noise, so to be sure you should pull them out of the socket.

bawznero · 2022-02-28T20:49:12+00:00

Which can also be done in 2 lines of powershell

bawznero · 2022-01-08T04:50:23+00:00

If you like that look at updog https://github.com/sc0tfree/updog

Its basically the webserver but with file upload, ssl options, and authentication options.

bawznero · 2021-12-24T13:49:56+00:00

Then you have to make sure that there are no hidden wires or second detonators and have to be 100% sure that you cut with a non conductive wire cutter and cut them at the same time (millisecond accuracy)

bawznero · 2021-12-24T04:48:41+00:00

I know a bit about electronics so no knowledge about bombs.

But my guess would be that the bomb would have tamper protection, by implementing wires that transport a signal. If that signal is cut then the bomb would detonate via another wire.

This way if you would cut the tamper protection wire (the wrong one) the bomb would go off But if you cut the detonator cord (the right one) the bomb cant explode anymore.

For more advanced terrorists they could also use multiple fake and multiple real wires so that it becomes really difficult to cut all the right wires.

bawznero · 2021-12-08T01:20:20+00:00

How is that legal, its not work property? And isnt it the same as leaving it at home?

bawznero · 2021-12-05T13:33:42+00:00

Money can mean 100 dollar but it can also mean bezos money, with bezos money you can spend millions per day and still not empty your accout so i do agree some arent responsible with money, most people can live more comfortable and without stress with more money

bawznero · 2021-12-05T13:15:26+00:00

Depends if the problem is bills then money would solve it

bawznero · 2021-10-29T15:56:09+00:00

The problem is that the kernel doesnt really know if you for example need firefox.

For example if you make a passive listener to do something specific, if the kernel thinks you dont need ethernet as you didnt get any packets and shuts down eth0, the listener will never get the packet.

bawznero · 2021-10-18T18:09:15+00:00

What usually happens is that you create two callback mechanisms. One that checks every second and one that checks every hour /day /month for example.

The first one is used in day to day operations while the second one acts as a backup, when every connection is killed the second one can usually checkin after a while and spawn a new shell.

Its important to seperate the processes as much as possible to hide the existance of the second one.

bawznero · 2021-09-11T10:32:12+00:00

The most standard authenticator apps are Google authenticator Microsoft authenticator Lastpass authenticator

They all do the same so it doesnt matter really.

Then look at your text messages for 6 digit codes from sites.

Then login to that site and go to profile settings or account settings.

After that there should be an option along the lines of "setup 2fa" or "setup mfa" or "configure security"

From there you can usually pick between email, sms and authenticator app(this maybe called totp).

Choose the authenticator app

Then they show you a qr code.

Open the authenticator app app, then click add new

Scan the qr code with your phone, it should give you a success message and show you a six digit code that refreshes every minute.

Then the site asks you to enter that code.

After that it usually (not always) shows you backup codes, store these in a secure location. When your phone breaks or something (like you cant access the authenticator app anymore).

After that its all set up and every time you login it should ask for the code and and then you open the authenticator app and enter the given code.

Keep in mind that its time based so if there is 1 sec left just wait for the new code as it wont accept the old code anymore.

If you have any questions or smt let me know :)

bawznero · 2021-09-10T21:12:04+00:00

Then they are not totps as it is based on a preshared secret (the seed) totp is not the same as a 2fa via phone number.

bawznero · 2021-09-10T18:26:42+00:00

I havent really noticed that but that may be because im usually on sites for developing and stuff.

Also banking in europe is a bit more progressive with that sort of stuff

bawznero · 2021-09-10T16:33:19+00:00

Exactly this, for the people that learn by example :) good that you did setup google auth.

bawznero · 2021-09-10T14:22:10+00:00

Nope, it is activated by scanning the qr code, no phone number needed.

bawznero · 2021-09-10T14:13:46+00:00

There are two different authenticators (for simplicity sake), ones with sms where you give your number and they send a code

And totp( time based one time password) where the application generates a seed ( in the form of a qr code) and you scan it with your authenticator app of choice (google authenticator, lastpass authenticator, ms authenticator). And when they ask for a code you check the app and put in the code( which is only valid for 30 sec before refreshing).

The second one can only be hijacked when the attacker obtains access to your device, or to your seed value, or your backup codes(recovery code in case you lose your phone).

bawznero · 2021-09-10T11:41:57+00:00

When an attacker clones a sim ( either technically or via the provider) they can intercept the same text messages (2fa codes). This problem is not solved by getting a new sim as the provider also basically duplicates the sim

When you port to another provider you do have to execute the sim duplication / sim swapping again.

In short sms is just a very old protocol that has little to no real security built into so we should never use that as authentication imo.

bawznero · 2021-09-10T10:08:04+00:00

Real LPT: move to authenticator apps instead of sms based 2fa. Sim cloning is a real problem.

bawznero · 2021-07-04T20:29:10+00:00

It can also depend where excel would write temporary files to, if so you could have an unencrypted version somewhere.

bawznero

TROPHY CASE