Penetration Test Report Notes

These are just some notes that may be useful for anyone creating any kind of report, after performing a penetration test, Record for the duration of the test in high quality so that screenshots can be made from it later, but at a lower FPS so that it doesn’t bog down your machine. Screenshot EVERYTHING. Only format the text of the unmodified and modified exploit code nicely, and place into the report....

June 2, 2024 · 3 min · 477 words · Perfectra1n

Setting up a router / gateway as a VM in ESXi

I recently decided to completely go off the deep end and try a router OS like pfSense. This would replace my current EdgeRouter X, which I absolutely love and still adore, but I wanted to try something a little different. What would it be like to take the Ethernet cable from the modem, and plug it straight into my server? Doing some research in the r/homelab subreddit, I found out that if you do not dedicate a NIC (Network Interface Card) to the virtual machine, it will crank all the CPU threads that are allocated to it, to 100%....

June 2, 2024 · 3 min · 554 words · Perfectra1n

Setting up MetalLB in BGP mode with pfSense

BEFORE YOU BEGIN: Kubernetes evolves at a rapid pace. Please make sure you check out BOTH installation and configuration instructions if the below guide doesn’t work: https://metallb.universe.tf/installation/ Network overview Network Name Home Network Node Network MetalLB Address Pool Network Network CIDR 192.168.1.1/16 192.168.3.1/24 10.10.0.0/24 For the MetalLB Address Pool, you’ll want to use a completely unused CIDR subnet. This can be COMPLETELY different than any other networks that you have. This is why I’ve used 10....

June 2, 2024 · 4 min · 815 words · Perfectra1n

SLmail 5.5 Buffer Overflow

This post will explain and include steps on how to manually overflow the vulnerable application located here at Exploit DB. In my specific environment, my Windows VM is located at 192.168.80.128, and my Kali Linux machine is located at 192.168.80.129. I am also using Immunity Debugger located here. In some scenarios below, I am attaching the debugger to the SLmail process to view how the program is crashing, and to find any other interesting information....

June 2, 2024 · 8 min · 1639 words · Perfectra1n

Search

search

0 min · 0 words · Perfectra1n