is "brown teaming" just itsec people doing compliance work?

In conclusion, there's a lot of stuff in this that arn't in most challenges. Loved it

Show thread

This course also stressed note-taking, and writing a proper pentest report, but left that as homework.

Show thread

Unlike MOST windows challenges, this one has anti-virus, so you also have a simple example of av evasion.

Show thread

Finally, you get to pivot off the second box to attack the third and final. For this one, you get the source code and do a (guided) code analysis, and engineer an exploit.

Show thread

They present you with a small module for each but leave the choice in how to use those tools to pivot to the next box. After you compromise the second box, they introduce C2 (Command & Control) frameworks

Show thread

Then that difference came in: the Pivot. This room has a lot of tasks around several different pivoting tools- from SSH port redirection, socat, chisel, sshuttle, plink, etc.

Show thread

At first, I could only see one system (firewall), so target selection wasn't hard, and the hack was a publicly known CVE, which was pretty easy

Show thread

One of the differences between this and other rooms, or vulnhub images, is this is a whole network, multiple VMs to hack. As it is a walkthrough, the hacks were not too hard.

Show thread

First, let me say it is a walkthrough, so if you stick with the script, it will hold your hands the whole way. I tried to stay a bit in front of the script, and I did for the first two.

Show thread

Another security flaw- a DOS this time. One small loud user can deny other users sleep.

there's a security flaw with the mounting of this lamp where a careful and determined attacker can exploit the cabling to put lamp in mouth.

I generally like systemd, but I hate systemd-resolve with a passion.

We're at the "How did this code ever work?" part of debugging.

Hi everyone... My name is Peri, and I'm a browser tab addict.

* LACK enclosure with lighting and grommets, need to order the doors.
* feed pulley (2" above the the qr code)
* bearings the spool is on

Show thread
Show older
Velvet and Lace Mastodon

This is an instance for the Velvet and Lace IRC/Discord community. NO NAZIES