GXPN Review – SANS660 (Advanced Penetration Testing, Exploit Writing, and Ethical Hacking)
Although I passed it last month, I’m just now getting to my GXPN review after a long on-site engagement!
Month: March 2018
sshuttle – Poor Man’s VPN via SSH (Great for Pivoting!)
I’ve recently been using sshuttle again, and I wanted to share how easy it is.
pfSense DNSBL Whitelisting to Unblock Specific Sites
While I was away, someone asked me about pfSense DNSBL whitelisting, so I wanted to share a tutorial for it.
XSS Attack Chain – Reflected XSS -> CSRF -> Stored XSS
I used a great XSS attack chain in an engagement recently, and I wanted to share it.
Nmap Alarm – For When the Target Won’t Stay Online
While not the most useful tool, I wanted to share the Nmap alarm that I used on a recent engagement.