Various Tools

DBeaver - Client that supports SQL, MySQL, PostgreSQL, MariaDB, SQLite, Oracle, DB2, SQL Server, Sybase, MS Access, Teradata, Firebird, Derby, etc. Reaver - Wireless WPS attack tool PixieWPS - Wireless WPS offline cracker (exploits weak entropy)  

Wireless hacking

WEP - Brute-force key recovery [crayon-5ada79f5402d2916398631/] Keep aireplay-ng running in the background while we start to [crayon-5ada79f5402dc980420796/] With aireplay-ng running, start cracking the WEP key using: [crayon-5ada79f5402df089846274/] WPA2 - Crack using a wordlist [crayon-5ada79f5402e2166406195/] With airodump-ng running in another terminal [crayon-5ada79f5402e4343027403/] Keep replaying until you have captured the handshake [..]

Windows - Useful Commands

Use winexe to execute a command on Windows remotely [crayon-5ada79f54076a902311230/]  

Create customized wordlist

Create a wordlist containing words from length 1 to 6 with characters 0-9 and A-F: [crayon-5ada79f540938468036196/] Create a wordlist containing words with length of 4 with characters mixed alpha-numerical [crayon-5ada79f54093e473237528/] Say you want to create a wordlist with a length of 8, with the following characteristics: [Capital Letter] [2 [..]

tcpdump examples

Capture packets with host and port 110 and write to file: [crayon-5ada79f540ab5737771574/] Capture ICMP ping requests [crayon-5ada79f540aba096514882/] Capture ICMP ping replies [crayon-5ada79f540abd227252454/] Capture packets with DSCP tags [crayon-5ada79f540abf921874418/] Dump HTTP traffic in ASCII and HEX format [crayon-5ada79f540ac1021150903/] Grab the user agent from the http header on port 9999 [..]

Linux - Useful Commands

Create a file on Linux: [crayon-5ada79f540d19878324045/] Delete the contents of a file on Linux: [crayon-5ada79f540d1e409022083/] Spawn an interactive PTY from a shell through python [crayon-5ada79f540d21137037954/] Base64-encode a string [crayon-5ada79f540d23700795418/] Base64-decode a string [crayon-5ada79f540d25473930308/] Find text in files recursively [crayon-5ada79f540d28022956115/] Simple Bash loop example [crayon-5ada79f540d2a541757172/] Search and replace text in [..]

Transfer Files - Linux

Replace with Kali attacker Replace with Linux target

Transfer Files - Windows

Replace with Kali attacker Replace with Linux target

OSEE - AWEstralia 2018 preparations

Living in Australia, the total cost of attending the AWE training in Vegas, including flights and hotel would exceed AUD 10,000$. So instead I decided to ask the Offensive Security trainers if they wanted to come and deliver the AWE training in my home town of Brisbane, Australia. I [..]