mattandreko.com
Burp Icon in OSX - MattAndreko.com
https://www.mattandreko.com/2014/08/01/burp-icon-in-osx
Hostess is a code-slaying dragon found deep within the core of the earth, unearthing magma and vulnerabilities single handedly while using the other hand to pet his cat". Burp Icon in OSX. Recently, I on a Google Hangout with a coworker and saw him using the Burp Suite. And this post should document the process I found that worked for me. So first, to describe my configuration, I keep the Burp Suite. Jar files in my ‘ /Downloads/burp/’ folder, as shown here:. IRC channel, and a little Googling. Automator...
mattandreko.com
Compiling SSLScan With SSLv2 Support on OSX - MattAndreko.com
https://www.mattandreko.com/2014/12/17/compiling-sslscan-with-sslv2-support-on-osx
Hostess is a code-slaying dragon found deep within the core of the earth, unearthing magma and vulnerabilities single handedly while using the other hand to pet his cat". Compiling SSLScan With SSLv2 Support on OSX. This guide will outline how to compile the newer versions of SSLScan with color highlighting, on OSX while retaining SSLv2 capabilities. It has so far only been tested against OSX Yosemite. Downloading the source code. Then download the SSLScan code using ‘git’. To build these applications, y...
c4an-dl.blogspot.com
c4an dll: August 2010
http://c4an-dl.blogspot.com/2010_08_01_archive.html
Sunday, August 22, 2010. Cold Fusion article.cfm SQL injection. Just look in google using the following query:. I will sugest that you also try not to touch .com sites and start with sites that are in other remote countries. Also try to test this on sites that use ssl so in case the site is monitored by an IDS or IPS it won't detect you. The next thing that you have to do is identify all sites that are using something like this:. Id=1 UNION select 1,1,1,1,1,1,name from systables;-. Have fun ;).
c4an-dl.blogspot.com
c4an dll: November 2010
http://c4an-dl.blogspot.com/2010_11_01_archive.html
Monday, November 15, 2010. VXworks - Open can of worms. However, I would like to add, people if you have not tested or use these modules on your pentests I will just say: DO IT! Well, I just wanted to throw this out there and since all the info is already posted out I will not waste your time anymore. SAP application server default passwords. This is something that I want to share here just because sometimes I forget the links that I see out there. So just for the sake of it this a link. Pages I like .
mattandreko.com
Brainpan2 - MattAndreko.com
https://www.mattandreko.com/2013/11/20/brainpan2
Hostess is a code-slaying dragon found deep within the core of the earth, unearthing magma and vulnerabilities single handedly while using the other hand to pet his cat". Over on #vulnhub, there has been quite a chatter about Brainpan2. A “sequel” to Brainpan, by superkojiman. They’re even offering a 50 GBP award to whoever submits the best write-up! The trolling, it begins early…. I imported the VM into VMWare Fusion, and started finding the host. Nmap -sP 192.168.188.0/24. Not shown: 998 closed ports.
mattandreko.com
Backdoor Modules for Netgear, Linksys, and Other Routers - MattAndreko.com
https://www.mattandreko.com/2014/01/13/backdoor-modules-for-netgear-linksys-and-other-routers
Hostess is a code-slaying dragon found deep within the core of the earth, unearthing magma and vulnerabilities single handedly while using the other hand to pet his cat". Backdoor Modules for Netgear, Linksys, and Other Routers. A week or so ago, I read the news of a new backdoor on several devices, including those made by Belkin. And several others. A list of what seems to be affected devices can be found here. Who posted his findings on GitHub. So the first module I wrote, with the help of juan-. Did I...
c4an-dl.blogspot.com
c4an dll: Raven Airlink default password scanner
http://c4an-dl.blogspot.com/2012/11/raven-airlink-default-password-scanner.html
Tuesday, November 27, 2012. Raven Airlink default password scanner. This is a short post that I have been wanting to do for a long time but I haven't have time. I know, excuses. I hope this helps someone. This file is part of the Metasploit Framework and may be subject to. Redistribution and commercial restrictions. Please see the Metasploit. Web site for more information on licensing and terms of use. Class Metasploit3 Msf: Auxiliary. Include Msf: Exploit: Remote: HttpClient. License' = MSF LICENSE.
c4an-dl.blogspot.com
c4an dll: March 2011
http://c4an-dl.blogspot.com/2011_03_01_archive.html
Friday, March 25, 2011. Nessus reports to csv. Even though it seems a stupid thing there have been times when I have to upload Nessus reports to an excel spreadsheet to play with the data and report a executive summary of all the vulns. I putting this post as a personal reference with the hope that sometimes it will help someone. 1 Export the Nessus report to a .nesssus (v1) file. 2 Convert the nessus report to a nbe file with the following command. Opt/nessus/bin/nessus - dot-nessus NESSUS REPORT.