SANS Penetration Testing

SANS Penetration Testing: Command Line Kung-Fu - Desktop Wallpapers

SANS Pen Test: Command Line Kung-Fu Desktop Wallpapers So... we madeour new SANS Pen Test Poster: "White Board of Awesome Command Line Kung-Fu" and posted it on Twitter for some initial feedback and someone asked us if we could turn it into a desktop wallpaper and we thought, "that's a really cool idea!" But, we … Continue reading SANS Penetration Testing: Command Line Kung-Fu - Desktop Wallpapers


Pen Test Poster: "White Board" - Bash - What's My Public IP Address?

By Matthew Toussain, Geoff Pamerleau Introduction After hours of digging, you finally reach your goal and exclaim, "I GOT SHELL!" You brush the dirt off your shoulders and suddenly wonder, "Now what?" Fortunately, if it's a Unix system, we can leverage the rich functionality that comes with Bash in order to move our pentest … Continue reading Pen Test Poster: "White Board" - Bash - What's My Public IP Address?


Pen Test Poster: "White Board" - Bash - Bash's Built-In Netcat Client

By Matthew Toussain, Geoff Pamerleau Introduction Sifting through client external and internal websites is a vital step in any pentest. A tester can uncover all sorts of juicy information such as the identities of important individuals, email addresses, corporate jargon, trusted relationships, and more just hanging out there in the open. But sometimes you really … Continue reading Pen Test Poster: "White Board" - Bash - Bash's Built-In Netcat Client


Pen Test Poster: "White Board" - Bash - Useful IPv6 Pivot

By Matthew Toussain, Grant Curell Introduction As a guy coming from network engineering, it is really exciting to see IPv6 adoption finally starting to pick up. According to Akamai, Belgium is leading the charge at a whopping 50.3% adoption rate, but the US is picking up steam at a respectable 24.3% at the end … Continue reading Pen Test Poster: "White Board" - Bash - Useful IPv6 Pivot


Pen Test Poster: "White Board" - Bash - Encrypted Exfil Channel!

By Matthew Toussain, Geoff Pamerleau Introduction Sometimes, when looking through files for useful information after exploiting a box, you might run into a small file system or particularly interesting disk partition. Due to time constraints and the need for specialized analysis tools it might be helpful or even necessary to exfiltrate the entire partition. … Continue reading Pen Test Poster: "White Board" - Bash - Encrypted Exfil Channel!