When doing an engagement sometimes one would need to test a payload or an attack vector before deploying it. Watching how an operating system logs different events or how security solutions detect certain payloads can be valuable information for a red teamer/penetration tester. An example that happened was gained credentials to MSSQL, and the MSSQL…
Rclone is an amazing tool that is used to manage files on cloud storage. Its fast, easy to use and command line based. You can choose from a wide range of supported providers, such as Amazon Drive, Google Drive, OneDrive, JottaCloud and many more. See the complete list here. https://rclone.org/ In this blogpost I will…
When using NGINX as a reverse proxy with wordpress and having enabled SSL, you will have to force wordpress to forward HTTP to HTTPS. First, setup your wordpress website and NGINX reverse proxy with SSL. You will notice that CSS will not load when you visit your domain, instead of localhost. Add these lins to…
Backup gives you a peace of mind! Sometimes backing up your files is enough, but other times, backing up your entire operating system is necessary. If you get a boot error and you have to reinstall your operating system, its easier to restore it from backup with all the programs and settings you had. Rather…
If you are running Plex, you’ve noticed that transcoding takes up alot of CPU power. Specially if you’re transcoding 4K videos, which you shouldnt do anyway. Plex removes tone mapping when transcoding 4K HDR, so your movies or TV shows will look bland. Now you want to offset some of that transcoding to your Nvidia…
Prerequisite Ubuntu 20.04 Ansible installed Ansible is a great tool to automate IT infrastructure. In my case I use it to manage my Linux hosts. Instead of typing one command on each host, I can send one command to multiple hosts, using something called playbook. Ansible playbook is a set of instructions that you send…
Prerequisite Ubuntu 18.04 nginx running A domain – Example.com Let’s Encrypt certificate In this blog post we will configure your website and securing it with SSL using NGINX as a reverse proxy, forwarding traffic to your backend web server. For the sake of simplicity lets that you are you are running wordpress website with IP…
Prerequisite Ubuntu 20.04 with root access Snort 3.0 up and running with community rules Open App ID Elastic Stack up and running In this guide we will visualize Snort3 logs in Kibana. I’ve setup Elastic Stack as an LXC with 300 GB disk space for storing logs. Elasticsearch consumes alot of storage when indexing data….
Follow any guide for setting up bridged network on LXC. Just google it. HOWEVER, if you’ve setup LXC on a VM with bridged network, the hypervisor will BLOCK dhcp requests if you’ve not enabled promiscouse mode on the NIC. In Hyper-V you have to enable mac-spoofing for it to work! Take note! Thank you!
First, make sure that root login is permitted on the host. Use your favorite text editor. Inside the config file, set permit root login to yes Restart SSH Service If you have not set a password for root, do it now. Now, if you have not generated an ssh key, do it now. Send this…
