BLOG
Credentials not working
When doing Credential Theft feature using the UserID information. From Uadebug files we see a lot of denied access.The following needed doing : dsmgmt.exelocal rolesadd MYDOMAIN\my_serv_user administratorsOriginal article
Firewall initial staging
admin / adminconfigureset deviceconfig system ip-address 10.1.1.1 netmask 255.255.255.0 default-gateway 10.1.1.2 dns-setting servers primary 4.2.2.2commitexit show interface managementShow stats for interfaces :...
Defend against Responder
LLMLR : Disable WPAD can be changed in Group Policy via the Services setting under ComputerConfiguration > Policies > Windows Settings > Security Settings > System Services and by disabling the WinHTTP WebProxy Auto-Discover Service. GPO : Configuration...
Run Apache as non-Root
On Linux, the issue is that if you want a process to listen to a lower port (<1024), then it needs to be run as root. You can circumvent this by running on http as a high port and redirect this high port to port 80. Example in config file : Listen 8080And...
Show stored wifi pwd in Windows
netsh wlan show profilenetsh wlan show profile name="mywifi" key=clearor to get the whole list exported to a file powershell.exe netsh wlan show profiles|Select-String -Pattern " User Profile"|ForEach-Object{echo $_.Line.split(':')[1].trim()}|ForEach-Object{netsh wlan...
Hall-of-fame
Nobody yet 😉