SANS Penetration Testing: Monthly Archives: Nov 2013

Exploit Development Tips, Tricks, Tools and Resources

[Here's the second part of our series of Pen Test Tips that were featured on the Ultimate SANS Pen Test Poster. Last week, we featured some network Pen Test Tips by John Strand. This time around, Mr. Steve Sims shares some useful insights and resources on exploit development. -Ed.] By Steve Sims Methodology Tips Recon … Continue reading Exploit Development Tips, Tricks, Tools and Resources


Network Pen Testing Tips, Tricks, Tools and Resources

[Editor's Note: For this year's SANS Pen Test Poster, we asked some of the best pen testers and instructors in the industry to share their wisdom in a series of tips, tricks, tools, and useful resources for various kinds of penetration tests. We got some great input on network pen testing, web app pen testing, … Continue reading Network Pen Testing Tips, Tricks, Tools and Resources


I don't normally create new accounts on Windows systems, but when I do I use a long passphrase

[Editor's Note: Here's a nice little trick by Tim Medin on setting long Windows account passwords at the command line. Very useful stuff, especially in environments which mandate and enforce passwords longer than 14 characters. -Ed.] by Tim Medin Ever have a Meterpreter session with shell access on a Windows system and try to create … Continue reading I don't normally create new accounts on Windows systems, but when I do I use a long passphrase