Blog Archive 2015 pfSense without Internets Feb 17 2015 2015 ShmooCon Hiring Jan 13 2015 Powershell Popups + Capture Jan 12 2015 2014 Full Disclosure - SingleClick Connect Sep 15 2014 OSX Persistence via PHP Webshell Sep 09 2014 Milkman: Creating processes as any currently logged in user Aug 14 2014 The Internets Own Boy Jul 10 2014 Why good leaders make you feel safe May 27 2014 Go home InfoSec, you’re drunk May 26 2014 Effective NTLM / SMB Relaying May 21 2014 Installing PyCrypto on OSX Mavericks May 21 2014 CCDC Red Teamer’s Creed May 20 2014 Dumping NTDS.dit domain hashes using Samba May 14 2014 Executing code via SMB / DCOM without PSEXEC Apr 19 2014 Iterative DNS Brute Forcing Feb 19 2014 Hostname bruteforcing on the cheap Jan 29 2014 Attacker Ghost Stories - ShmooCon 2014 Jan 18 2014 Application Whitelist Bypass using IEexec.exe Jan 16 2014 Installing Metasploit Community Edition on Windows 8 Jan 13 2014 ExtAPI Pranks Jan 10 2014 Alive Again Jan 09 2014 Metasploit Minute - Mondays with Mubix - Episode 1 Jan 06 2014 2013 Dumping a domain worth of passwords with mimikatz Oct 06 2013 AD Zone Transfers as a user Oct 05 2013 Stealing passwords every time they change Sep 11 2013 Changing proxychains hardcoded DNS server Sep 10 2013 Unkillable Processes Aug 10 2013 Problems with blogging software Aug 10 2013 Volume Shadow Copy NTDS.DIT Domain Hashes Remotely - Part 2 Jun 11 2013 Volume Shadow Copy NTDS.dit Domain Hashes Remotely - Part 1 Jun 10 2013 Using Mimikatz Alpha or Getting Clear Text Passwords with a Microsoft Tool Jun 07 2013 Query all windows services config from the command line May 29 2013 Sessiondump Meterpreter Extension Apr 08 2013 Metasploit Mastery @BlackHatEvents USA 2013 Mar 19 2013 Length Sorting Wordlists Mar 18 2013 Mounting NFS shares through Meterpreter with NfSpy Mar 04 2013 Suggestions on what to do when a service you use gets compromised Mar 02 2013 Blocking Java Exploits, Malicious Signed Applets, and 0days Feb 27 2013 Compile NFSShell on Ubuntu Feb 22 2013 ShmooCon 2013 Streaming Feb 14 2013 Metasploit Mastery meets CanSecWest Jan 25 2013 Intro to White Chapel Jan 18 2013 Cyber Pickpocketing Jan 05 2013 2012 Delete TrustedInstaller-only Files and Folders Dec 24 2012 EXE::Custom in Metasploit’s Java Exploits Nov 19 2012 Smash and Grab: Windows Dir Lists Nov 13 2012 Finding Admin Access Oct 30 2012 BypassUAC got a facelift Oct 30 2012 lm2ntlm with John the Ripper Oct 24 2012 AXFR for DNSSEC: DNSSEC Walker Oct 21 2012 Setting SYSTEM’s proxy settings with Metasploit Oct 21 2012 Mounting SMB shares over Meterpreter Oct 17 2012 UAC AlwaysNotify Bypass-ish Oct 15 2012 Pass the Hash without Metasploit - Part 2 Oct 15 2012 Compiling and Release of Ditto Oct 08 2012 Compiling and Release of Netview Oct 07 2012 Lab Setup - Windows Proxy and Egress Filtering Oct 05 2012 Meet “q” – Free Metasploit Exploit Pack Oct 04 2012 Dirty Little Secrets They Didn’t Teach You In Pentest Class - Part 2 (Video) Oct 01 2012 Completely In-memory Mimikatz with Metasploit Sep 05 2012 Old School On-target NBNS Spoofing - Part 2 Sep 02 2012 Old School On-target NBNS Spoofing Sep 01 2012 Free Shells with Plink and Pageant Aug 28 2012 Post Exploitation Command Lists - Request to Edit Aug 24 2012 LetMeOutOfYour.NET – Server Build Aug 10 2012 LetMeOutOfYour.NET – Intro Aug 09 2012 Free Ticket Contest - Metasploit Mastery at DerbyCon Aug 07 2012 Raising Zombies in Windows: Part 1 - Passwords Jul 31 2012 Cross-Protocol Chained Pass the Hash for Metasploit Jul 10 2012 Bypassing Trend Micro’s Service Protection Jul 04 2012 Presence, Persistence, and Pivoting Jun 29 2012 Netstat Post Module for Meterpreter Jun 28 2012 Evidence of Compromise - Metasploit’s PSEXEC Jun 25 2012 Companies that give back with free tools Jun 20 2012 Integration of Mimikatz into Metasploit Stage1 Jun 15 2012 SUDOERS Commented Includes used for Evil May 26 2012 Post Exploitation with PhantomJS May 25 2012 Sticky Keys and Utilman against NLA May 24 2012 DerbyCon Training (Sep 27-28 2012) May 22 2012 phDays in Moscow Apr 26 2012 How to Win CCDC - Slides Mar 19 2012 Who is on your dream team red team? Mar 04 2012 Developing the LNK Metasploit post module with Mona Feb 19 2012 MS08_068 + MS10_046 = FUN UNTIL 2018 Feb 11 2012 A @textfiles approach at gathering the world’s DNS - Slides Feb 03 2012 (UAC) User Assisted Compromise Jan 03 2012 2011 Hak5 Segment Sneak Peak Dec 26 2011 Shared Links Dec 22 2011 Hash Types for John the Ripper Dec 12 2011 First day of a No Starch Christmas - Winner Dec 01 2011 12 Days of No Starch Press Nov 27 2011 Run POST Modules On All Sessions Nov 01 2011 MSFConsole Prompt Fiddling Oct 09 2011 The Dirty Little Secrets They Didn’t Teach You In Pentesting Class Oct 06 2011 Create a 64bit Process From a x86/32bit One Sep 28 2011 #DerbyCon Approaches… Sep 17 2011 Who Is Logged In? A Quick Way To Pick Your Targets Sep 16 2011 Disconnect Stalled SSH Session Sep 15 2011 Multiple Dictionaries or Wordlists Using John the Ripper Sep 12 2011 Post Exploitation Command Lists Sep 06 2011 Wim Remes (@wimremes) for (ISC)2 Board of Directors Aug 30 2011 IIS Search Verb Directory Listing Aug 26 2011 Populating Your Virtual Victim Domain Aug 20 2011 IP Resolution Using Meterpreter’s Railgun Aug 19 2011 Railgun Error Checking Aug 18 2011 Minimum Password Length of 15 or more via GPO Jul 25 2011 Metasploit Payloads Explained - Part 1b Jul 17 2011 GPU Cracking Complaints Jul 13 2011 NoVA Hackers - 3 years old and still going strong Jul 07 2011 fxsst.dll persistence: the evil fax machine Jun 27 2011 Metasploit Payloads Explained - Part 1a Jun 26 2011 Metasploit Payloads Explained - Part 1 Jun 26 2011 Remotely Suspend All Threads with Meterpreter May 30 2011 Remote DLL Injection with Meterpreter May 30 2011 Dumping Hashes on Win2k8 R2 x64 with Metasploit May 15 2011 Exploitable Mobile App Challenge Apr 12 2011 IPv6 Attacks Apr 06 2011 RSA Dun-got hacked! APT etc.. Mar 21 2011 Metasploit VNC Password Extraction Mar 20 2011 Psychological Warfare with NirCMD Mar 05 2011 PHP Web Shell Mar 04 2011 Issue a Linux command without it going into history Mar 03 2011 Destructive DOSKEY aliases Mar 02 2011 Creating Vulnerabilities: NFS Exports Mar 01 2011 Metasploit on Wintel Systems Feb 16 2011 Interesting DNS Stuff - SRV Records Feb 16 2011 Cachedump for Meterpreter in action Feb 14 2011 Updated: Password and Word lists Feb 11 2011 Patch Adams Feb 11 2011 Insider Threat Testing Jan 27 2011 2010 Delicious Webapp Hacking Dec 25 2010 Wayback Webapp Hacking Dec 24 2010 Project Honeypot HTTP Blocklist module Dec 23 2010 Offensive and Defensive SSH Patching at NoVA Hackers Dec 05 2010 Silently uninstall SEP Nov 16 2010 Acceptable Questions Checklist Oct 01 2010 Revenge of the Bind Shell Sep 24 2010 Memory Forensics for Pentesters: Part 1 Sep 13 2010 Am I an Admin? Railgun Script Sep 13 2010 Rapid fire PSEXEC for Metasploit Sep 12 2010 Metasploit turns 10,000 Aug 13 2010 Jailbreak SSH horrors strike back Aug 04 2010 AV Tracker Aug 03 2010 Resources for railgun development Aug 03 2010 Intro to RailGun: WIN API for Meterpreter Jul 07 2010 Set Wallpaper Meterpreter Script Jun 28 2010 Get off my lawn! iPhone Geo Blocking Jun 25 2010 AV bypass made stupid Jun 02 2010 A very important link… May 31 2010 0Exploit Privilege Escalation May 07 2010 Vuln Disclosure Summarized Apr 28 2010 Metasploit Cyberwarfare Apr 01 2010 Practical Exploitation Feb 23 2010 @RSnake ’s RFI List in Burp Suite Jan 30 2010 Security (CAN BE) an ART not a SCIENCE Jan 26 2010 grmn00bs podcast Jan 08 2010 2009 Linked in to Twitter Dec 22 2009 Meterpreter tunneling and VNC revamped Dec 15 2009 Metasploit with Ruby 1.9.1 Dec 09 2009 2009 Geek Christmas List Dec 03 2009 SHODAN The Computer Search Nov 24 2009 Brute-Forcing Compatibility Nov 19 2009 Stop blaming the admins! Nov 18 2009 A Simplified Astaro UTM now FREE to businesses Nov 18 2009 Why Room362? Nov 11 2009 Metasploit Blends in: New MSFPayload/ENcode Nov 02 2009 Getting your n00b fill of security Oct 26 2009 NoVA Hackers Oct 20 2009 Hacking Crazy Taxi Oct 17 2009 APPLE: A Modern Day Willy Wonka Story Oct 12 2009 Back on Twitter Oct 11 2009 Burp Tip of the Day - Nikto db import Oct 10 2009 Packet Captures with Meterpreter - 7zip - WinDump - and Nmap-ish Oct 02 2009 SquareSpace, New Design and Call for Contributors Oct 01 2009 Password / Word lists Sep 18 2009 GPU Hash / Password Cracking Sep 17 2009 Corrections and Questions about Nessus on Securabit Sep 16 2009 Pass the Hash Metasploit Demo Aug 26 2009 Simplicity is Security Aug 13 2009 Applied Network Security Density Aug 12 2009 Lies Aug 12 2009 Sexism and the religion of hackers Jul 13 2009 Local Security - DC-NoVA-MD Jun 29 2009 Metasploit Framework as a Payload Jun 26 2009 Security Tools I’m Looking For Part I Jun 17 2009 Getting your fill of Reverse Engineering and Malware Analysis Jun 12 2009 Rant Back – ValSmith Jun 10 2009 PassiveX fun with Metasploit Jun 10 2009 Getting your fill of Security May 29 2009 Couch to Career - Follow up May 23 2009 Workshop at ToorCamp with Dark0perator May 05 2009 Offensive Security Live Courses for 2009 Apr 29 2009 RSA Photos Apr 19 2009 Couch to Career in 80 hours or less Apr 17 2009 Kindle 2 Review: Putting The Fire Out Apr 08 2009 Manager Training Camp - Bootcamp Style Mar 14 2009 AnonymASS - Hiding Behind The Tubes Mar 13 2009 The Ethics of Teaching Hacking Mar 11 2009 OzymanDNS - Tunneling SSH over DNS Mar 10 2009 Metasploit <3s Microsoft Mar 09 2009 2 Kindle or Not(ebook) 2 Kindle Mar 05 2009 Twitter API Problem Mar 04 2009 Metasploit heart’s Microsoft Mar 02 2009 The Cowtown Computer Congress Opens Their Underground Lab Feb 26 2009 My iPhone runs Windows Feb 23 2009 Winning Hacker Competitions as Defenders Feb 20 2009 Bribing the Security Community Feb 16 2009 The History of the Internet - VIDEO Feb 13 2009 ShmooCon Tools Feb 12 2009 The Middler gets released at ShmooCon! Feb 07 2009 Metasploit Across the Net Feb 04 2009 Ear Trumpet Feb 03 2009 Bob Stories - Airport Boredom Feb 02 2009 Offensive Security Certified Professional Feb 01 2009 Retractions - Web App and SAMBA Jan 31 2009 Full Disclosure gets dusted off Jan 30 2009 TiVo for the Economically Unstimulated Jan 22 2009 Podcasters Meetup at ShmooCon Jan 21 2009 Podcaster’s Meetup @ ShmooCon Update 1 Jan 20 2009 Maltego 2 and beyond - Part 3 Jan 13 2009 Random Thoughts - Web App Hacking Jan 07 2009 Speaking 102 - The Audience Perspective Jan 06 2009 2008 Speaking Evolved Dec 26 2008 Using SAMBA to crack Unix passwords Dec 25 2008 BSODomizer - Cube Warfare and Beyond Dec 24 2008 Enterprise Security - Moving a Giant Dec 19 2008 Burp Suite v1.2 Released Dec 14 2008 Gmail Tasks Dec 14 2008 Ask and you shall receive - SumoLinux Dec 10 2008 Jasager: On the Defensive Dec 06 2008 Security Guards without guns Dec 06 2008 Maltego 2.01 Released Dec 05 2008 Ego Surfing or Caring? Dec 05 2008 GoPC links with ThinLinX Dec 05 2008 Gmail Snooze Button Nov 29 2008 SBN move to Lijit Nov 23 2008 Today in Dilbert Nov 21 2008 ShmooCon Room Sharing Nov 14 2008 Hack or Halo 5 at ShmooCon 2009 Nov 09 2008 McGoodies from operat0r Nov 07 2008 The Academy is giving away money! Nov 07 2008 A new look and feel Nov 06 2008 SC World Congress 2008 Nov 06 2008 Free Pass to CSI 2008 Oct 31 2008 Maltego Keygen Crack Torrent and Offensive Security Torrent Oct 24 2008 Hacker Media Oct 23 2008 USB Goodies 2008 Oct 15 2008 The Root of All Evil-(grade) Oct 11 2008 Social Engineering Challenges Back Oct 09 2008 Jasager - Past - Present and Future Oct 09 2008 Social Engineering Challenge #1 Answer Oct 09 2008 Social Engineering Challenge #1 Oct 07 2008 Mubix’s Links Sep 29 2008 Maltego 2 and beyond - Part 2 Sep 26 2008 Love what you do Sep 23 2008 Confusion and Delay Sep 17 2008 Runtime Packers - hold the cheese Sep 10 2008 Maltego 2 and beyond - Part 1 Sep 08 2008 Google Docs Bug Sep 08 2008 Notepad is a virus Sep 07 2008 Chrome all polished up Sep 07 2008 LinkedIn Unavailable Sep 07 2008 Crazed Bovine Traversal in RL Sep 03 2008 Brass Tax on Chrome Sep 03 2008 Multi-Boot Security LiveCD DVD Aug 26 2008 DEFCON 16: The Tools not the Toools Aug 24 2008 Defcon presents come early! Aug 06 2008 Where do people find the time? Aug 06 2008 @MissRFTC makes twitter history Jul 31 2008 ATT partially patched. Yay! Jul 29 2008 Podcaster’s Meetup @ DEFCON 16 Update 2 Jul 28 2008 Comcast Cares? Jul 22 2008 iPhone + ATT + DNS = Bad Juju Jul 22 2008 iPhone Apps vs iPhone Web Apps Jul 20 2008 Comcast: The start of a new series Jul 16 2008 Podcasters Meetup @ DEFCON 16 Jul 08 2008 CBT Response Jun 29 2008 Hacker steals Quake Jun 29 2008 Interactive Mode SUDO Jun 27 2008 Network Security Projects Using Hacked Wireless Routers Jun 24 2008 Maltego Goes Communal Jun 23 2008 Distributed Honeypot Project Jun 23 2008 Crazed Bovine Traversal Jun 17 2008 Vonage and Ekiga on SUSE Linux Jun 14 2008 Talking to Mud Jun 11 2008 I am Jack’s unpropitious excitement Jun 11 2008 Microsoft making secret power plays? Jun 08 2008 Creators of New Jun 05 2008 ShmooCon 2008 Videos Hit the Shelves May 31 2008 Oregon Offers Tuition Waiver May 06 2008 Facebook chat - All that and a bag of cheesy poofs Apr 23 2008 The truth about hot air baloons Apr 20 2008 Phrack is back! Again. Apr 16 2008 Help Hak.5 buy some ramen! Apr 15 2008 Muppets roll 80s Apr 14 2008 Red Skelton’s Pledge of Allegiance Apr 13 2008 NOT an April Fools joke Apr 01 2008 The 101 most useful websites Mar 30 2008 No Tech Hacking - Tip of the Hat Mar 16 2008 KVM MITM Feb 06 2008 Too busy to breath Jan 23 2008 2007 Easter Island’s SECRET REVEALED Dec 14 2007 BackTrack 3 Beta is out! Dec 14 2007 This is only a Test Nov 15 2007 Podcasters Meetup Nov 09 2007 They let me in. Muhaha Oct 30 2007 Time to shape up. Oct 29 2007 History is MAD Oct 29 2007 Oh Lord! Oct 24 2007 because I learned linux Oct 10 2007 George Carlin does Religion Oct 09 2007 Jericho thanks the people Oct 09 2007 Pen and Teller bust bottled water. Oct 09 2007 Automatix automated. Oct 08 2007 Logmein.com Oct 08 2007 Questions that need answering. Oct 08 2007 Judge Judy gains my respect Oct 07 2007 Youtube Prophecies Oct 04 2007 Cut your electricity bill in Half Oct 04 2007 HTC Kaiser gets US release date Sep 26 2007 (PIC) global Halo 3 usage map - live (as in right now) data Sep 26 2007 Official Microsoft Hackers Blog Sep 03 2007 Google Earth SKY Easteregg Aug 23 2007 How to beat carnival games! Aug 22 2007 SuprNova: The Legend Returns Today Aug 21 2007 Steve Jobs dead at 52 Aug 20 2007 Coupon Hacker Faces DMCA Lawsuit Aug 20 2007 It’s time to Evolve Aug 17 2007 Skype wont let me log in! Aug 17 2007 Warning! A Linux Commercial. Aug 14 2007 Beginners Guide To Lock Picking [w /pics] Aug 14 2007 Nmap 127.0.0.1: Flash style Aug 13 2007 How to avoid tethered data charges on your Mobile device. Aug 11 2007 NBC Dateline Reporter flees Defcon 15 Aug 10 2007 DEFCON and an interview with Dark Tangent Aug 02 2007 Are you secure: Secunia to the rescue Aug 01 2007 Transformers Jul 31 2007 USB Sauces and the making of Apps Jul 12 2007 Wine Doors Jul 10 2007 USB Tools Torrent and more! Jul 07 2007 Linksys WRT54G Ultimate Hacking Jun 27 2007 Fonera Fun Jun 24 2007 USB Torrent Jun 11 2007 Multicast and some random thoughts Jun 01 2007 Michael Noah Fuller a.k.a. Mubix 2.1 May 13 2007 Hak.5 2x10 - USB Goodies with Encryption May 08 2007 Save Internet Radio, Save the World Apr 25 2007 Amazon Prices Increase! Apr 25 2007 Rememberance of Virginia Tech Apr 20 2007 NAC in use Apr 18 2007 Missed Shmoo? Now you can experience in the comfort of your home. Apr 10 2007 Think you can hack it in my world? Prove it. Apr 03 2007 ShmooCon infected with podcasters Mar 27 2007 Windows Vista Compatibility Feb 22 2007 On a RANT Feb 21 2007 Microsoft. What are you doing?! Feb 12 2007 BitLocker Feb 05 2007 Hak.5 Live Feb 05 2007 2006 Christmas, New Years and a Keychain Dec 28 2006 Killer Coding Ninja Monkey University Sep 25 2006 Hak.5 Radio goes legit Sep 13 2006 techPhile is Back Aug 07 2006 StarCraft 2 Jul 26 2006 Birthday Wishes Jul 17 2006 Solid Potato Salad Jul 09 2006 An Interesting Flight Jun 26 2006 100+ Photos Posted! Jun 20 2006 Connected in Japan Jun 17 2006 Technical Difficulties May 27 2006 Game Commentator’s Association May 27 2006 Happy Mother’s Day May 14 2006 Time, Fedora, and other things 42 related. May 08 2006 Hak.5 Episode 9 Apr 06 2006 In other news Mar 28 2006 IE Users Anonymous Mar 18 2006 Internet Relay Abuse Mar 16 2006 Images from Leaked LOST episode Mar 05 2006 Alexander the Great. It’s a boy! Mar 04 2006 Homage to Don Knotts Feb 26 2006 Happy Valentines Day! Feb 14 2006 Microsoft ignores another 0 day ‘feature’ Feb 13 2006 SploitCast, a Feburary baby, ShmooCon and Tax season Jan 28 2006 SploitCast hits the shelves! Jan 10 2006 Happy New Year Jan 07 2006 2005 Another Baby! Dec 18 2005 TechTV Holiday Meetup Dec 14 2005 VPN Hacking Game Dec 14 2005 New IPTV Links Dec 06 2005 Hak.5 and techPhile merge for a day. Dec 04 2005 What happened!? Nov 29 2005 Brandon’s Birthday Nov 14 2005 Promotion to Sergeant. Nov 02 2005 It’s a Girl! Oct 13 2005 The Slashdot effect migrates to Digg.com Oct 11 2005 ShmooCon 2006 Oct 10 2005 Whitedust.net Oct 09 2005 Hackers are STUCK! Oct 07 2005 Windows Vista: Piracy protection Oct 05 2005 It’s a boy! Oct 01 2005 America’s Army: Kicking KDE to the Kurb Sep 20 2005 Reinvention of 007 + Back to the future = Really dumb idea Sep 19 2005 616 Hits. No comments Sep 18 2005 TechTV back from the dead? Sep 17 2005 12 Hour Shifts Sep 17 2005 Finally.. yes finally! Sep 15 2005 Welcome to the new site! Sep 10 2005 R362 Approved Sep 06 2005 Transporter 2 Sep 05 2005 WindowsPMS.com goes GLOBAL Sep 04 2005 Badfoo.net Sep 03 2005 Eric ruined Reading Festival 2005 Sep 02 2005 ASHEE has moved - Updated Aug 31 2005 Technology meets Rednecks! Aug 30 2005 Angry Reader? And the response… Aug 29 2005 Angry Reader? Could this get better? Aug 27 2005 Angry Reader? Keep it going? Aug 26 2005 Angry Reader? The Saga Continues Aug 25 2005 Angry Reader? Aug 25 2005 Microsoft’s New Keyboard Aug 23 2005 America’s Army Aug 22 2005 CIA / Slient_Bob Case update. Aug 22 2005 New “Advanced” Error system for Windows Vista Aug 16 2005 Gentoo enters the 21st Century Aug 15 2005 WEP Aug 14 2005 Back to the Basics Aug 12 2005 Last Day!! Aug 10 2005 Intro to Programming (Java) Aug 07 2005 USMC: Crack down on Tats Aug 05 2005 Toilet Peril Aug 01 2005 Brute Force Spam Aug 01 2005 Defcon Resolutions Aug 01 2005 Air Force Infantry Discovered Jul 31 2005 Done Jul 31 2005