Posts

Evilginx: An Appropriately Named AiTM Tool

Image
This is me finally finishing a blog post that I started the first time I was experimenting with Evilginx back in January of 2024. As you can tell, this post is just a bit overdue... What is Evilginx? Evilginx is a tool developed by Kuba Gretzky that can be very useful to someone wanting to create their own customized phishing test for users at their workplace, or for someone conducting a red team engagement or penetration test who wants to get some easy wins by sending phishing emails to users. As always with cybersecurity and hacking, these tools and methods are only meant to be used against people and devices you've got explicit permission to attack. With the above description, you're probably curious about how Evilginx works. At a basic level (which is realistically as deep as I could get into the actual inner workings of this), Evilginx works by taking a domain you control and using it as a proxy to funnel legitimate login attempts through your server—where Evilginx is in...
Post a Comment
Read more

It's Been a While...Again.

 In what feels like a now familiar post, it's been what might be generously describes as a "short eternity" since I've updated. My goal is to get better at updating this thing, and I feel I was probably a bit over-ambitious in the past, aiming for bigger blog posts that take a lot of time and effort to cobble together, which doesn't always pair well with my ADHD between work and life going on in the background. That said, I've been diving more into the studying lately, and I felt like it would be a great time to actually try and get some more updates out there. At work, I've been fortunate to move more into the Vulnerability Management side of things, while still having my work with the Incident Response team about half the time. One thing I realized pretty quickly when I started working with the web application scans and vulnerability assessments was just how much more knowledge and skills were needed to do this at even a competent level. I'd taken th...
Post a Comment
Read more

My Poor Mistreated Blog

Greetings, all. As it's probably plainly evident, my success in keeping this thing up to date has been pretty awful. It's not entirely because of laziness, but that's certainly been a factor.  Just as a life update and partial explanation, I recently moved again . At the same time, I was working on another work certification and managed to pass my GIAC GWAPT (The GIAC Web Application Penetration Tester) certification exam, though it took two tries. I thought about writing a little guide on how I passed it, but figured it was just too close to the original one I posted for the GSEC exam a while ago to be worth it, as most everything from that still applies. One thing I have been meaning to get a blog post written up about, and will probably start on tonight, is creating a little "how to" for setting up Evilginx.  For a little backstory, we were running into a lot of AiTM attacks at work where we couldn't figure out how the attackers were compromising the users ...
2 comments
Read more

Small Life Update!

 So the move was a success. It was a grueling few days of entirely too much driving, too much running around and way too many boxes, but it went off pretty smoothly, and compared to my last few moves where the temperatures were in the high 90's, moving in the low 80's felt like a dream by comparison. I've finally managed to get all of my home network back up and running, managing to get my VM server successfully shoved into a closet corner and connected to the wifi without too much trouble. Since we're in a smaller apartment now, I genuinely wasn't sure if I was going to be able to find a place to set it up where it could run. Having had it sitting out in my office previously, it's not the ideal noise and heat generator you want constantly running in the place you work and play games. I'm still planning to get back to the Windows lab soon. Everything right now is a bit up in the air, as my workload at work may be changing, thought it's ultimately for the...
Post a Comment
Read more

Hacking Active Directory: Redux - Back to the Start.

Image
This was an idea that if you're reading this blog and have looked at previous posts, you will see isn't new. It's a rehash of the thing I wanted to do when I started this blog. My goal here has been to post about things that I've had success with as a means to helping others, but also to force me to really understand and examine the concepts I'm posting about. The goal for these posts was to have a "real life" small scale pentest to show how you can enumerate and attack Windows hosts in an Active Directory network. When I first started in on this idea, I quickly realized the problem with my idea...I was trying to blog about something I was still learning, which makes for a very slow and tedious process. Now that I've completed the wonderful  TCM Security Practical Ethical Hacking course , along with the other Windows and Linux Privilege Escalation courses, I'm in the stage of going back and re-examining my knowledge and notes before taking the PNPT...
Post a Comment
Read more

Cyber Security Studying or: How I Learned to Stop Hand-Writing and Love the Digital Docs

Image
In life, learning to study is a critical skill to have...something that I discovered sadly late in life. Throughout my life, I struggled with sorting out my ADHD and finding ways to learn that worked for me. Taking notes in class was rough, because taking my mind and eyes off of the board and teacher meant I would quickly lose my place in the lesson trying to keep notes on what was important. Sadly, when I was a kid, smart phones and computers weren't in the classrooms, so the ability to easily record things and take notes wasn't there for me. Fortunately, I don't have any such restrictions anymore, and I don't have to suffer to keep up anymore. But the difficulties of paying attention in Algebra have now been replaced with learning in the Infosec world, which at times feels like trying to use a waterfall to fill a Solo cup. And that's coming from someone who was absolutely awful in math class. For me, there have always been a few problems taking notes. I need some...
Post a Comment
Read more

Status Update: Still Alive

In what seems to be a common refrain in my life, my dreams and aspirations for this blog may have been a bit loftier than I was capable of executing. That said, I do definitely still want to revisit this idea of the "Windows Pen Test" that was part of my learning experience. I think what I realized as I was studying was that my desire to work through the material and keep learning eventually getting to the point of sitting for a test was overwhelming my want to sit on the Windows topic for weeks to make the in-depth blog that I envisioned making. So what have I been up to since the summer where I last updated? I've been working at grinding away at my study resources since then, and hopefully  there will soon be a payoff for the work. As usual, there's a fair share of headaches in between. When I kicked this blog off, I had been plugging away at the  Practical Ethical Hacking  course from TCM. The course was great, as all of them have been so far, and I was really enjo...
Post a Comment
Read more