/explore

Click through on any links that interest you or select the planets on the right to continue exploring the Outer Web.
You are here

cornerpirate.com
| | byt3bl33d3r.github.io
2.5 parsecs away

Travel
| | byt3bl33d3r, /dev/random > blog.py
| | shenaniganslabs.io
2.8 parsecs away

Travel
| | By default, domain joined Windows workstations allow access to the network selection UI from the lock screen. An attacker with physical access to a locked device with WiFi capabilities (such as a laptop or a workstation) can abuse this functionality to force the laptop to authenticate against a rogue access point and capture a MSCHAPv2 challenge response hash for the domain computer account. This challenge response hash can then be submitted to crack.sh to recover the NTLM hash of the computer account in less than 24 hours. Once recovered, this NTLM hash combined with the domain SID can be used to forge Kerberos silver tickets to impersonate a privileged user and compromise the host. An example of this is to create a silver ticket for the CIFS service of the...
| | blog.xpnsec.com
2.8 parsecs away

Travel
| | In this post we will be exploring another "roasting" method which involves exploiting a weak account configuration setting in Active Directory.. AS-REP Roasting.
| | blog.chand1012.dev
21.6 parsecs away

Travel
| In this tutorial, we will be setting up a Flask server using Gunicorn and NGINX on Ubuntu 18.04 LTS. Requirements Any system running Ubuntu 18.04 LTS with SSH enabled. An SSH client. Installing After connecting via SSH to your server as root, run the following commands to install the required programs: apt update apt upgrade -y apt install nginx python3 python3-pip python3-venv This will install Python, NGINX, and the virtual environment needed to run the app.