SANS Penetration Testing: Category - Bash

Pen Test Poster: "White Board" - Bash - Find Juicy Stuff in the File System

By Matthew Toussain, Geoff Pamerleau Pilfering data is a post-exploitation phase that rarely receives enough credit. As pentesters, the way we demonstrate security risk and the way we escalate our attacks to a new level is based entirely on what we find after the compromise is realized. While manually driving the command line from directory … Continue reading Pen Test Poster: "White Board" - Bash - Find Juicy Stuff in the File System


Pen Test Poster: "White Board" - Bash - Sudo... Make Me a Sandwich

By Matthew Toussain, Geoff Pamerleau The other day, while working on setting up a new virtual machine for testing purposes, I ran the following command to get my networking configured ifconfig enp0s8 down only to be greeted with the following: GAH! Why do I need root privileges to bring up or down … Continue reading Pen Test Poster: "White Board" - Bash - Sudo... Make Me a Sandwich


Pen Test Poster: "White Board" - Bash - Make Output Easier to Read

By Matthew Toussain, Geoff Pamerleau Data! DATA!! DATA!!! So much data'' an endlessly grueling component of every information security practitioner's job description is data analysis. Often, digging through an environment for vulnerabilities or configuration flaws involves scrounging through reams of log data. It is not uncommon to find your eyes glazing over while staring at … Continue reading Pen Test Poster: "White Board" - Bash - Make Output Easier to Read


Pen Test Poster: "White Board" - Bash - Check Service Every Second

By Matthew Toussain &Geoff Pamerleau If you've had the opportunity to take SANS 560, Network Penetration Testing and Ethical Hacking, chances are you were exposed to the Pentester's Pledge. The pledge, for those who aren't familiar is: "I , do hereby pledge to use psexec to exploit Windows target machines after I have gained … Continue reading Pen Test Poster: "White Board" - Bash - Check Service Every Second


SANS Penetration Testing: Command Line Kung-Fu - Desktop Wallpapers

SANS Pen Test: Command Line Kung-Fu Desktop Wallpapers So... we madeour new SANS Pen Test Poster: "White Board of Awesome Command Line Kung-Fu" and posted it on Twitter for some initial feedback and someone asked us if we could turn it into a desktop wallpaper and we thought, "that's a really cool idea!" But, we … Continue reading SANS Penetration Testing: Command Line Kung-Fu - Desktop Wallpapers