OK. So it has been a LONG time since my last blog entry. This entry is more so that I remember where this cool infographic is from.On the http://www.v3im.com/2014/03/use-public-wifi-better-check-out-cloak/ page I found the infographic below describing the dangers and protections for using free/public wifi.
DNS Host Enumeration Tool Bake-Off
[UPDATED - 10/2013 with blacksheepwall content]The ScenarioIn my line-o-work, we need to not only discover hosts on the network to assess but also the domain names of the websites hosted on those servers. See, there are these things called "Virtual Hosts" (http://httpd.apache.org/docs/2.2/vhosts/) where a server administrator, to save time/money/effort, can configure a single IP address... Continue Reading →
Making a module for recon-ng.
I'll be the first to say it, I'm no programmer. Sure I can hack a few lines together and craft some adequate regular expressions to get 'er done but I'm no formal coder. So it was with awesome joy that I found the Recon-ng framework. Tim Tomes (@LaNMaSteR53) created/is creating an easy python-based framework that... Continue Reading →
My first post and shameless self-promotion.
First posts are hard. There is so much riding on them. I'm just going to set an easy tone for this blog and make it short and sweet.I'm mentoring my first SANS SEC542 (http://www.sans.org/course/web-app-penetration-testing-ethical-hacking) course in August. I'm really looking forward to it!Details are below:Location: Rockville, MDSchedule: 2 hours each Tuesday and Thursday for 5 weeks Link: http://www.sans.org/mentor/class/sec542-rockville-20aug2013-micah-hoffman