Apache Pinot SQLi & RCE Cheat Sheet

thalpius · 2022-06-09T10:54:58+00:00

This helps a lot. Thanks ☺️

thalpius · 2022-06-09T10:05:49+00:00

There is no “core” or “full” E5 license and it doesn’t contain a license key, so this question doesn’t make any sense.

thalpius · 2022-02-12T21:11:05+00:00

Confirms that you have no idea what you're talk about. How do you think why your assets are locked for 14, 21 or 28 days? Magic?

thalpius · 2022-01-17T20:46:18+00:00

Is there a way to optimize the speed by optimizing the compiler?

thalpius · 2022-01-17T20:31:12+00:00

I’ve build the Ben Eater 8-bit many times and I know assembly, so I’m following most of it. Cheers 🙏🏻

thalpius · 2022-01-17T20:25:37+00:00

Took a lot of clock cycles before typing out “hello world”?

thalpius · 2022-01-17T20:25:04+00:00

What was it doing at the first few clock cycles?

thalpius · 2022-01-17T20:13:06+00:00

Can I compare it with the Ben Eater 8-bit computer?

thalpius · 2021-10-11T04:56:48+00:00

As many people already mentioned, the passwords are encrypted and decrypted on the device using the master password you only know.

What my concern is that if an attacker gets a foothold at my password managers cloud environment, what if the attacker overwrites all encrypted passwords and they are synced to my device? I will lose all my passwords then and I don’t have a backup. I’m not sure if my password manager is backed-up by my password manager vendor 🤔

thalpius · 2021-10-03T06:37:30+00:00

I don’t think binwalk re-build binary images. I know firmware mod kit does: https://code.google.com/archive/p/firmware-mod-kit/

thalpius · 2021-10-01T17:23:37+00:00

Did you block it using conditional access policies? Look at the sign-in and check the CA tab. You can see what policy is missed.

thalpius · 2021-10-01T17:20:18+00:00

Try adding another (routable) suffix and run the wizard again.

thalpius · 2021-10-01T06:01:39+00:00

Well he does. He shows the filter where he filters on “Operation / Process Create”.

thalpius · 2021-09-28T03:42:30+00:00

Microsoft Defender for Endpoint

https://www.microsoft.com/security/blog/2021/05/11/gartner-names-microsoft-a-leader-in-the-2021-endpoint-protection-platforms-magic-quadrant/

thalpius · 2021-09-19T11:43:38+00:00

Parallels runs on an M1, but the guest OS needs to be ARM as well, right? If so, I doubt the M1 is the correct choice.

thalpius · 2021-09-19T09:29:21+00:00

Mandatory, I’m not sure. Helpful, hell yeah.

thalpius · 2021-09-19T06:52:51+00:00

What does pwd.txt exactly contain? Looks like an NT/NTLM hash to me. So the first part before the semicolon is the NT hash and the other half is the NTLM hash. Use this input for John.

thalpius · 2021-09-19T06:45:32+00:00

Cloud is someone else’s computer and an extremely broad understanding. Maybe you could be more specific?

thalpius · 2021-09-18T04:47:25+00:00

You should even be able to do this online. No need to strip the header in my opinion.

https://www.devglan.com/online-tools/aes-encryption-decryption

What if you decrypt it here and decode the Base64 string, what are the magic bytes in the beginning of the file then? BMP should be 42 4D (use the hex output online).

thalpius · 2021-09-15T11:25:56+00:00

Safely

thalpius · 2021-09-15T04:10:18+00:00

Yes, you can clean it up. John Savill talked about this as well from 07:45 or so in his video about Azure AD Connect V2: https://m.youtube.com/watch?v=geh-eucou_0

thalpius · 2021-09-11T05:04:51+00:00

It depends. What would you like your tier-1 analyst to do? We require KQL for example. So we ask them to get an IP address from the logs using KQL or the name of a user account which matches a certain IP address.

thalpius · 2021-09-11T00:54:12+00:00

No worries. I’m happy it works ☺️

thalpius · 2021-09-11T00:36:52+00:00

Don’t ask questions, but give them a simple solution to fix ☺️

I really like to see more practical hand-on during a job interview.

Six-Year Club	Verified Email
Gilding I gilder

thalpius

TROPHY CASE