Socat Reverse Shell Relay

by Vince
in Blog
Hits: 372

From the man pages:  "Socat is a command line based utility that establishes two bidirectional byte streams and transfers data between them."  Think of Socat as another tool like Netcat, Chisel, or anything else that can do port forwarding and such.  Where Socat comes in handy is when we've pivoted into an environment and we want to funnel traffic back out.  For this post, let's say we want to catch a reverse shell but we're one or two segments deep.

Read more

Exploiting MacOS

by Vince
in Blog
Hits: 373

I have a friend that is a huge Mac nerd and about a year ago, he was talking about Mac OS being secure.  Full disclosure, I have a MacBook Pro and a Mac Mini -- I like the platform.  But I took his comments as a challenge, jumped on Ebay, and I bought a Mac Mini for exploitation. 

Under the hood, a Mac is a Linux operating system and like most Linux flavors, there are variations between them.  Let's be honest, at some point, a Mac Remote Code Execution (RCE) vulnerability will materialize and having Tactics, Techniques, and Procedures, for the Mac platform will not hurt me.  And that's basically what this is all about.

Read more

Cracking Hashes with Colabcat

by Vince
in Blog
Hits: 204

Necessity is the mother of invention Googling.  I had an issue with Hashcat.  Technically, according to Hashcat, I had an issue with my graphics card.  Whatever the issue, I was unable to crack a Kerberos hash and while I was hunting for a solution, I discovered Colabcat.  According to the description:  "Run Hashcat on Google Colab with session restore capabilities with Google Drive."

Read more