Kategorie Security

Reset Root-Password using GRUB

Imagin you forgot your root password after a long vacation at work or you are new to a company and need to get care of old systems with no known credentials or documentation of the system. So what do you…

THM: Git Happens walkthru

You can find the room here. First of all we run nmap and scan for open ports and services. I also tried a directory scan with gobuster but it cant get a connection to the side, with fuzz all worked…

THM: Wonderland walkthru

It says follow the white rabbit, so lets go. Looking around the website while checking the sourcecode we found the directory for the pictures. Lets move to this and check if there is something usefull to find. Just some pictures,…

THM: Startup walkthru

After the mashine is deployed we check the source-code of the website but here is nothing interesting to find. So let’s move forward with our basic procedere run nmap and gobuster to check for open ports and directorys on the…

THM: Bounty Hacker walkthru

First of all, we run our basic scans to check for open ports and directories on our target. While this scans run we have a look at the web-page, but there is nothing interesting to find. Nmap found some open…

THM: Skynet-Room walkthru

This room has took me some time and I noticed that my solution is a little bit different to the other writeups about this room, so feel free to check my solution. First of all we have to check the…

Quickstart with Nessus on Kali Linux      

What is Nessus? Nessus is a vulnerability scanner like OpenVAS. Nessus scans your target for open ports, wrong file permissions, known vulnerabilities, etc. Everythinig is presented in a good-looking and clear GUI with nice additional features like report exporting, different…

Install OpenVAS on Red Hat Linux

A few weeks ago I worte an article for the it-sec blog ceos3c.com. This guide is a step by step manual to install OpenVAS on Red Hat Linux distributions. Many manuals on the internet are not up to date and…