Author Archive for: ‘James’

  • Instant Penetration Testing Setting Up a Test Lab

    Instant Penetration Testing Setting Up a Test Lab How-to [eBook] This book is a good little read I decided to read it as I wanted to get an idea for a new lab I was working on and it didn’t disappoint me. As someone who …

    Read More →
  • BsidesLondon Part 2

    BsidesLondon part Deux Another year and another bsides. This year I was lucky enough to attend bsideslondon, however this time I wanted to see bsides from a different point of view. I had already seen it from the attendee’s point of view but wanted to …

    Read More →
  • Report Writing

    As a pen tester the most important part of our job is the report. This is really what the client is paying for. This can also be the hardest part of the job, trying to explain technical stuff to non-techies is a skill on its …

    Read More →
  • Black Box Testing

    Black box testing know whats inside your networks. I recently went to a small event, which was run by my company where a few of the pen testers were giving talks. This blog entry pretty much comes from one of the talks about black box …

    Read More →
  • Basic privilege esculation for newbi

    When we first gain access to a Linux box there is a good chance that we have gotten a low level account. The next step is usually to escalate our privileges (give us access to more than we have now) up so we can view …

    Read More →
  • Web App for newbi PART 2

    XSS (Cross site Scripting) The first attack I intend to try is XSS. I look for both stored and reflected XSS. The way I like to test for XSS is using the tag I will place this into any form field and if there is …

    Read More →
  • Web Apps for newbi PART 1

    This guide is written with newbie’s in mind to show them some of the basic concepts when testing web applications and trying to bring them up to speed on testing web applications. It’s not designed to be a one stop solution but a way to …

    Read More →
  • Cracking Passwords

    Cracking Password with John We have all cracked some passwords with John before, but I just want to go over a methology I use to crack passwords. I am going to use the password dump for this demo just to show how it works. The …

    Read More →
  • Geo Tagging

    What is Geotagging? “Geotagging (also written as GeoTagging) is the process of adding geographical identification metadata to various media such as a geotagged photograph or video, websites, SMS messages, QR Codes[1] or RSS feeds and is a form of geospatial metadata. This data usually consists …

    Read More →
  • Making a name for youself

    One of the best ways to get noticed in this industry is to make a name for yourself and here are some tips on how to do this. 1) Attend conferences and network this is really easy to do depending on where you are in …

    Read More →
Page 1 of 512345»