Basic Pentesting: 2 Walkthrough

Here’s another easy VulnHub VM.

My goal this month is to increase the speed that I pop these boxes, in preparation for the OSCP.

I had already completed the first entry in the Basic Pentesting series by this author in about 20 minutes, and wanted to see if I could crack this one in under an hour as well. The author states that it is a “a moderate step up in difficulty” from the first.

Let’s dig in!

Continue reading →


LazySysAdmin: 1 Walkthrough

LazySysAdmin is another VulnHub CTF.

The description suggests you shouldn’t overthink this. The author states that it was built out of frustration from failing the OSCP exam and that you should be looking right “in front of you” for the answers.

The description intrigued me, as my main goal this month has been to increase the speed that I solve these VMs and reduce the time wasted in rabbit holes.

Continue reading →


CompTIA PenTest+ Study Guide

Here’s my study guide for the CompTIA PenTest+ beta exam. I have yet to take the test, but have been following the random public comments shared by others.

All of these topics are from the exam objectives, but some things are mentioned more often online than others. I’m focusing my studies on what people are talking about the most.

Must Know for the CompTIA PenTest+

Or, what to study hardest…

Continue reading →


Kioptrix Level 1.1 (#2) Walkthrough

How to Get Root in Kioptrix 2

Kioptrix 2 is a Vulnhub VM. This is the first in a series of write-ups of various hands-on hacking resources I will be working through on my way to the OSCP.

First: get the IP addresses

Make note of the local IP address for Kali Linux (the attacking machine)

We will need this later for reverse shells and other fun.

ifconfig

Find the Kioptrix VM

netdiscover

Look for something in the netdiscover output with a MAC Vendor / Hostname of “VMWare.”

Found it, in my case it’s 192.168.1.114

Continue reading →



Making Orbi Great Again

The Netgear Orbi is badass.

I’ve never experienced such great range and throughput from a WiFi router. Dead spots are gone in my home.

We all have a healthy radioactive glow.

But..

Within days, we started getting major stability problems. Our Google Homes and Chromecasts were dropping connection and requiring manual reboots nearly every hour.

What good is a fast network that won’t stay connected?

The Orbi was expensive and I expected better than this. It should be a rock-solid, set-and-forget system for that price.

The firmware updates weren’t helping, but I wasn’t ready to give up on it yet.
Continue reading →


CEH Review and Study Materials

Certified Ethical Hacker

I recently passed EC-Council’s CEH v9 exam. It was my first experience taking a certification exam.

I spent 5 months or so studying off and on, but didn’t really buckle down with my efforts until the last two weeks.

CEH Study Materials

Here is what I used. I’ll provide a short breakdown of what was essential and what I wouldn’t bother with if I had to do it again.
Continue reading →