Never Give Up
Hi all! Time for some VMware stuff now! I was planing to do patchning this weekend, and I always try on test servers first. But this time it failed. I want to get out the word how I fixed that issue. If you will do this you will loose the baseline that you created. Versions... Continue Reading →
Hi! Today I want to say a few words about a course I finished yesterday night! This review could have been a one liner: Take this course, if you don’t you are missing something really cool! Big shout out for making this possible. Really great work! https://www.apisecuniversity.com/ Corey J. Ball https://www.linkedin.com/in/coreyjball/ https://twitter.com/hAPI_hacker Dan Barahona https://www.linkedin.com/in/rdbarahona/ https://twitter.com/danbarahona But I want... Continue Reading →
Hi! I made it! Intro Lets face it the IT industry has changed a lot the past almost 30 years that I have been in this amazing bubble. If you are in the same shoes as med and want to learn something new like I did 2018 then this is for you. (at least I... Continue Reading →
I ran into som very strange problem on an SQL server this fall that I need to tell you about. The Error A read of the file 'D:\SQL PATH\Data.mdf' at offset 0x0000001ad60000 succeeded after failing 1 time(s) with error: incorrect pageid (expected 1:214336; actual 14854:3166640). Even if we see these error SQL was able to... Continue Reading →
I my post before I explained how to fix a corrupt VCLs. When I did this in the lab I misspelled the setting. When I pasted the cluster number in the advanced setting I copy and paste the hole url for some stupid reason. When you do that it is not possible to add the... Continue Reading →
Hi! I upgraded some vmware cluster and stumble up on VCLS machine on high cpu usages. That is strange, because these are small machines and should not take any cpu normally. And you can not do anything about it. You can shut the machine down, but it will start up again. In my case the... Continue Reading →
Hi! First of I don't heckle any knowledge or any company, this is my view of my world! And because I failed this one I can not do a comparison between the certification that I have and this one. I hope it is coming in 2023 🙂 I will have a meeting with @offsectraining, and... Continue Reading →
The goal of this action was to upgrade a cluster with nvidia graphics card from 6.7 to 7.0.3. Before the upgrade everything worked fine. You where able to live vmotion vm:s with vgpu to another host. Problem: Everything worked from vm side, but was not able to vmotion live vm:s between hosts. Steps: Upgrade esxi... Continue Reading →
I must start saying that this exam was great. I started doing practical exam during my Novell eDirectory 991 course back in the days. And I loved them. This is another exam that I must say goes to my heart. I love the practical stuff. One other thing to say about this exam is that... Continue Reading →
Hi! I do this one more time then I need to go back to the original schedule read here : https://blog.invid.eu/2022/01/06/my-ocsp-and-pnpt-journey-from-the-beginning-during-and-i-hope-the-end-tcmsecurity-thecybermentor-offsectraining-pnpt-oscp-joplinapp-reconmap-bhinfosecurity-strandjs-hacking-pentesting/ I did find this course very helpful so I need to say a few words. This course was amazing. One thing stands out from any other web course. After you finish the course you... Continue Reading →
Hi It is not often I do a post a review of web courses except in my journey post https://blog.invid.eu/2022/01/06/my-ocsp-and-pnpt-journey-from-the-beginning-during-and-i-hope-the-end-tcmsecurity-thecybermentor-offsectraining-pnpt-oscp-joplinapp-reconmap-bhinfosecurity-strandjs-hacking-pentesting/ But I did find this course so dam good that I need to shout it out. This course was amazing. I learned alot, new stuff for me. Matt Kiely @HuskyHacksMK who was the teacher is amazing,... Continue Reading →
Hi! Today I received my first certification from Offensive-Security (not counting PEN-100). If someone else is in progress of taking this course or thinking about it here are my tips and tricks. Here are some links from offensive security that you shall read if you will attend an exam from Offensive-Security. Verification https://www.credential.net/bac14e8c-24e1-43c5-a2c7-8d0751543caa Links https://help.offensive-security.com/hc/en-us/articles/360046904731 https://proctoring.offensive-security.com/student/login https://help.offensive-security.com/hc/en-us/sections/360008126631 https://help.offensive-security.com/hc/en-us/articles/360050299352 https://www.offensive-security.com/legal-docs https://help.offensive-security.com/hc/en-us/articles/360046293832 ... Continue Reading →
Time to do some wireless hacking. If you read my other posts you know that I am on a mission get OSCP. But sometimes you need to do something else. This is my attempt to do something else 🙂 Todo what I do in this post you need some hardware. At least a network card... Continue Reading →
Hi! I am preparing for the OSCP exam, and there is alot of information out there. I needed to know what I am suppose to know before I take the exam. If you are about to do this exam please read the links, I know there is a lot text, but it is important. My... Continue Reading →
Hi! Between Offensive Security and TCM Academy courses I was able to do the online course from AWS. The nice thing about the online ones is that you can ask questions during the course. But these course are also availble for free on AWS traning site. I can highly recommend these if you are new... Continue Reading →
I did take a small break today from Offensive Security today and found a realy nice course, not so practical but still very important. If some of below words is picking your brain this course is for youA Cybersecurity Primer, Compliance and Audit Work, Security Awareness Work, Cybersecurity Risk Work, Information Security Governance Work, Getting... Continue Reading →
How do you keep you updated on what is happening out there, I have some tools and workflow that will keep you busy. One thing you need to think about, not everything on the internet is the truth.The hard thing here is that there is endless information out there, but yo do not need to... Continue Reading →
Hi all! Time to do a quick post that ran into this evening. As always I update my lab to be on the latest version all the time. But this one time I missed a machine. 🙂 We begin with EOL version of Ubuntu 20.10 The below picture says that we have a new version... Continue Reading →
Hi! As I am not writing alot of other stuff other than my goal to PNTP and OSCP right now ( https://blog.invid.eu/2022/01/06/my-ocsp-and-pnpt-journey-from-the-beginning-during-and-i-hope-the-end-tcmsecurity-thecybermentor-offsectraining-pnpt-oscp-joplinapp-reconmap-bhinfosecurity-strandjs-hacking-pentesting/ ). But in this case I have to. I was looking for a simple way to document a new customers Active Directory. How shall I do that in a easy way? I had... Continue Reading →
Intro Hi all! My plan is that under 2022 to take OSCP and PNPT exam. To get the full picture we start from the beginning. Why do I post this? Share knowledge is the simple answer, and I am getting old so I need to document everything I do. I think this is a good... Continue Reading →
Here are podcasts that I like to listen to when I can. It is not best to worst list it is only a list!Some of them has not been updated for some time, but still check them out. https://darknetdiaries.com/https://twitter.com/DarknetDiaries https://danielmiessler.com/podcast/https://twitter.com/DanielMiessler https://inteltechniques.com/podcast.htmlhttps://twitter.com/IntelTechniques https://breachsense.io/https://twitter.com/breachsense https://thehacks.libsyn.com/websitehttps://twitter.com/thehackscast https://nakedsecurity.sophos.com/https://twitter.com/NakedSecurity https://thehackerish.com/https://twitter.com/thehackerish https://7ms.us/https://twitter.com/7MinSec https://www.netspi.com/agentofinfluence/https://twitter.com/NetSPI https://www.blackhillsinfosec.com/https://twitter.com/BHinfoSecurity https://risky.biz/https://twitter.com/riskybusiness https://www.trustedsec.com/podcasts/https://twitter.com/TrustedSec https://www.infosecinstitute.com/podcast/https://twitter.com/infosecedu https://coalcast.libsyn.com/website/category/Coalfirehttps://twitter.com/coalfirelabs https://pentester.land/https://twitter.com/pentesterland https://www.mcafee.com/en-us/consumer-support/podcast.htmlhttps://twitter.com/McAfee https://coinsecpodcast.com/https://twitter.com/CoinSecPodcast... Continue Reading →
If you are interested in any just send me an email if you want information about them. This is mostly a reference page to other bloggposts. BHIS Webcast: Things NOT to Do in Pentest Reports: Tips, Tricks 2023-02-03 Future Red Team Rants: A breakdown in three parts 2023-01-26 All About Ansible - A Suite of... Continue Reading →
Hi again! Time to look at reconmap. We in this line of work love abbreviation, so I call this OVAPMP (Vulnerability Assessment and Pentesting Management Platform). I was looking for a tool/system documenting my work regarding vulnerability scans, pentest and bug bounty work. I have tried different kind of solutions, I think I have found the... Continue Reading →
Hi! It is time to go dark. In this post we are gonna take a look at different tools that is out there for the not so light web. This post is not for you to learn how to go dark, it is for people to learn how things works. Do not go and do... Continue Reading →
Hi all out there. It is time to take a look at sn1per. A tool that automate opensource stuff for us. As always we start with the steps Install some os in my kase running kaliGet the docker fileBuildRun sn1per installation wget https://raw.githubusercontent.com/1N3/Sn1per/master/Dockerfile docker build -t sn1per . Below is gonna take some time to... Continue Reading →
First thanx to all mention in this post! The hard thing about security is the wide range of stuff you have to learn if you wanna be the best. That is the goal you should have, I want to be the best. But the downside of this is that how do I learn everything, I... Continue Reading →
Hi, this will be a short one. But I must put down in words what my thoughts are about the C2 tests that I have been doing for some time now. Not so hard to set up and get it running. If you want to play around there are some really good blog post out... Continue Reading →
Now we are gonna look at SILENTTRINITY from @byt3bl33d3r I think this will be the last test of Command and Controll application. I have other stuff to do. But I hope you all had a good read and set some things in motions for you. Here is the link that you can read and download... Continue Reading →
It is time for part 4 in this series to set up a Command and Control, and this time I am trying out C2 server Covenant. You can go and read about Covenant here https://github.com/cobbr/Covenant. A picture says more than 1000 words so lets start with that! Covenant Short list install kaliapt-get updateapt full-upgradesystemctl enable... Continue Reading →
It is time for part 3 in this series to set up a Command and Control, and this time I am trying out C2 server Merlin. You can go and read about Merlin here https://github.com/Ne0nd0g/merlin. A picture says more than 1000 words so lets start with that! Merlin The short step by step list install... Continue Reading →
It is time for part 2 in this series to set up a Command and Control, and this time I am using ssh for creating reversed ssh tunnel to my C2-1 server. So I can run ssh from a client machine and take over this machine from my C2-1 server. A picture says more than... Continue Reading →
Hi, I know that is been a while since the last post, but life got in the way. But it is time now. My goal in these coming post is to setup different Command and Control systems and try them out. Information about different C2 can be found on this fantastic site https://www.thec2matrix.com/ So as... Continue Reading →
After firmware upgrade of DELL server we got issue regarding SD Card mirror. Here is how we sloved this. DELL Support is informed and they are working on it. Fix would be in the next release I was told. But first Do not use SD card to boot serverEsxi will drop the support laterThere are... Continue Reading →
Hi! Not everyone are using distributed switches in there vmware enviroment or the licence for host profiles. Some uses ordinary vswitches, like me. And every time I do a reinstall or add new hosts I have alot of vlans to add. You can do it from GUI, but it takes time. You can use api:s,... Continue Reading →
Hi all! The latest posts has been about how to get the most of our hardware in a virtual machines. But sometimes you need to revert stuff you do. Or as me, try everything that can go wrong. When I revert from paravirtulized driver on my Windows 10 vm to NVMe controller everything went fine.... Continue Reading →
Hi all! There is a new version of Hashcat out for you to try! Here you can download it https://hashcat.net/hashcat/ 312 different algorithms to use. The different attack modes are: Straight, Combination, Brute-force, Hybrid dict + mask, Hybrid mask + dict and Association Fixes There is 26 bugfixes in this release. New attack mode: Association... Continue Reading →
Last post I was looking at vCPU configuration on a vm to get best performance on a vm. Now it is time to take a look at performance on the disk side. To test performance I used CrystalDiskMark. Finally I was able to add a file in WordPress, the link to the file is at... Continue Reading →
We start with what our goals are We have a vm that want to take as much cpu power as possible from the host. But how shall we configure the VM to make the most of it. You have read about numa nodes and what that means? right? If not look, at the bottom of... Continue Reading →
Hi all! This must be one of the first time that this happens, something about Windows in this blogg. But i felt like this must be shared. I was doing in place upgrade from Windows 2016 to 2019. And some some servers went well and some got this message. The upgrade went to about 52%... Continue Reading →
If you attending John strand in this epic course and want to run the lab vm in Vmware ESXi please read this. If not, go and do something with your girlfriend,boyfriend or children or take a beer and relax! Hi, I am looking at a new way to work so I was not able to... Continue Reading →
Hi all! If you are like me attending the Threat Hunting Training Course named Cyber Threat Hunting Level 1 w/ Chris Brenton | 4-Hours on Thursday and want to run the virtual machine in qemu/kvm native do it like this. Download and read the below link! https://www.activecountermeasures.com/cyber-threat-hunting-training-course/ As always start with the short version! Convert... Continue Reading →
Hi! Goal for today is to get a list of what countries is trying to much to connect to my server using fail2ban. I know this is not a good thing to have port 22 open on internet, but sometimes you need that to prove a point. Install fail2banInstall geoip-binOpen port 22 on your server... Continue Reading →
Goal for today is to connect to work machine, in this case a Windows 10 and have all the functions that I have when I am physical at work. So I had some requirements on my list. Client at home can be anything (Linux in my case)Must support camera and microphoneFastNo lagSimple to useSecure First... Continue Reading →
I am gonna try to explain how my dedicated my life to work and what it takes for me to get this far. This is gonna be about the penetrations exams that I took, but I would not have passed these if I did not took the Novell Netware Networking course back in the days.... Continue Reading →
Got the eCPPTv2 Certification today. Nice way to start the year with. 7 days of penetration testing and 7 days of report writing. Total of 14 days. This is the schedule that you get. The penetration test is in form of black box. You can use what tool you want. Why invent the wheel again?... Continue Reading →
This blog will be relatively short, but I thought the webinar I listened to was so interesting that I have to write about it. Webinar from Red Siege yesterday evening (21.00 Swedish time) regarding hacking webapi. Link: https://www.redsiege.com/api/. This was presented by @bsdbandit. I was blown away, this is really cool stuff. I was the... Continue Reading →
First this is not advanced BufferOverflow, more for me to write down and document what I did at tryhackme to get BufferOverflow Prep working. We start of what you need. Windows 7 box with ImmunityDebugger and mona installed. Access to the application ocsp.exe. You can do this online with tryhackme or download the application your... Continue Reading →
In this post I will try to explain why it is important to use masks when you crack password from hashes with hashcat. The machine that I run hashcat on has 2 Tesla M60 card and running Linux. Why do I not use longer password in this test, I do not want to wait 7... Continue Reading →
Hi! I wanted to dump hashes on a Windows 10 box without any external tools. This is how I did it. We start at first with the short version Export SAM with reg.exeConvert SAM with impacket-secretsdump to get to the hashesUse hashcat to crack the hashes We start first with exporting the sam database with... Continue Reading →
Hi! I am have been running VirtualBox for my VMs on a Linux host for some time now. But when kernel 5.10 was installed there was some issue with compiling the drivers for VirtualBox. I think there is a workaround out there, but I needed to fix this asap. So I decided to migrate to... Continue Reading →
I was thinking about a nice and easy way to save a penetration test and come up with this.Use a MindMap application.There is a alot of MindMap application out there. I am running Linux on my machine so I ended up with VYM. (http://www.insilmaril.de/vym/)The nice thing about VYM is that it is free and comes... Continue Reading →
My colleague @Schillman told me that you can get better autocompletion in powershell for linux. I thought that was interesting thing to try. Soon Sebastian will see the light in the tunnel and convert to a real operating system like linux and we will get more interesting things from him. This is what you can... Continue Reading →
Really nice article about serverless computing and security problems that needs to get addressed NOW. Found the article at mwhite page but this article was written by Gilad David Maayan, guest writer for the site. But do not forget to look at other posts from Michael White, good stuff! Link to the article from Notes... Continue Reading →
Hi, a hole different topic today. On the table is federation. In this case we want a third party solution to handle authenticate to Office365. Then we can control all the login function in our own product. Federation talks a specific language that is called SAML ( Security Assertion Markup Language ).More information regarding SAML... Continue Reading →
Hi I want t run PowerShell on my Ubuntu machine and also add support for Azure. Because soon I will try to set up some federation in Azure. Below is from Microsofthttps://docs.microsoft.com/en-us/microsoft-365/enterprise/connect-to-microsoft-365-powershell?view=o365-worldwideIt is in Swedish but It says that Ubuntu 20.04 is not supported. I will be supported in the 7.1 release. The screenshot is... Continue Reading →
I was reading on Daniel Miessler website and got really excited about his article about replacement to fail2ban. https://danielmiessler.com/study/crowdsec/?mc_cid=970356fcef&mc_eid=fa6207cba8 ). Please subscribe to his newsletter, really nice reading. Daniel explains this application in detail and I want to show how I did the installation on my machines. Some difference are there. I wont say it... Continue Reading →
Hi again! Today we are gonna take a look at Salt from Saltstack. On Sunday I was walking the dog and was listening to the podcast thehacks. I got very inspired by the podcast and wanted to really try this. I have never seen this product before. I have done some other tests in my... Continue Reading →
Finally (can I say that?) it is edge time on Linux. Really straight forward to get Edge on you Ubuntu 20.04. But I will put this out anyway! This is a dev version so there will be functions that will not work yet. Download package from Microsoft: https://packages.microsoft.com/repos/edge/pool/main/m/microsoft-edge-dev/ Install from cli sudo apt-get install ./microsoft-edge-dev_88.0.673.0-1_amd64.deb... Continue Reading →
It is time to test LogonTracer from @jpcert_en you can get your copy from https://github.com/JPCERTCC/LogonTracer From the website:LogonTracer is a tool to investigate malicious logon by visualizing and analyzing Windows active directory event logs. We start with a new installation of ubuntu. The servername for this is Logon. The installation is not in this post.... Continue Reading →
We have now come so far that we want to add things in my installation of SecurityOnion. And we will start with how to add Linux and Windows boxes to Kolide Fleet. I do not know if this is the right way but after a couple of hours I was able to see the vm:s... Continue Reading →
I must thank @BHinfoSecurity to get my interest in this. There webinars is great, especially 30 minutes before the real webinar begins.Now lets get started. As you have seen I did installation of 16.04 version before. My mistake, to tired! No I have to do this again with the new version. Like 16.04 version this... Continue Reading →
Hi, now after some other installations in my "lab" it is time to look at logging. I got really inspired by webinars from BlackHills, so a big shout out to them. They are doing great work to spread there knowledge to others!And soon I WILL get my backdoor and breaches card game! I do not... Continue Reading →
I have my vm:s up and running now, but I like my rig to be patched and updated, even if I only have 7 machines I want to centralize update procedure. I have chosen to do this with Ansible. As this is a demo site that I am setting up. Security of some configuration is... Continue Reading →
I am running hashcat in a VM (ubuntu 20.04) with a PCI passthru NVIDIA TeslaM60 card. This is my first rig with a graphics card so I have no referense to the numbers below. But here is my benchmark test so you can compare. Running Cuda so I can access all memory on the card.... Continue Reading →
This is follow up of the previous post regarding my rig. How do I access this where ever I am? I use SSH tunneling for that. If I loose connection for some reason I always use tmux on the target so I can reconnect to the same session as before. We start with a picture,... Continue Reading →
My goal with this project was to create a hacking rig that I can use when doing hackthebox, tryhackme and other ctf:s. I was lucky to get my hands on a server with Tesla M60 card. My other goal was also to have a server that I can use in phishing tests, and show others... Continue Reading →
We had a failure on a core switch and following we got strange issue with our ESXi host that were running HP / Intel nic cards with driver ixgben. The state of the nic was Admin Down on ESXi side. On the switch it was up. FYI we were running IP Hash on the vswitch.... Continue Reading →
Hi!Welcome to the first of many (I hope) knowledge updates from me. My goal is so gather information in one post instead of many posts.Most of this information are from third party and I do not have the time to source review everything. But still I like of sharing my thoughts to you.This first knowledge... Continue Reading →
I wanted to use proxychain with IPv6, ended up with this configuration. If you have not install proxychain4 do that now! Tor configuration file add below /etc/tor/torrc SocksPort [::1]:9050 SocksPort 127.0.0.1:9050 ClientUseIPv6 1 ClientPreferIPv6ORPort 1 ClientPreferIPv6DirPort 1 Proxychain4 configuration file. Add the information below in the file under [ProxyList] /etc/proxychain.conf socks5 :: 9050 socks4 127.0.0.1... Continue Reading →
I am running Kali and VirtualBox. When running Virtualbox there are some issues. If the machine that you are running AMD this perhaps works. I am running INTEL so that sucks. INTEL + VirtualBox + Wsl v2 = Do Not Work For Me. There is a problem running wsl v2 in VirtualBox with Windows 10.Not... Continue Reading →
When you running systemd-resolved you have entry in /etc/resolv.conf that points to nameserver 127.0.0.53. When you troubleshoot sometimes you do not want this. This is how I did it: Disable systemd-resolved sudo systemctl disable systemd-resolved.service sudo systemctl stop systemd-resolved 2. Edit network-manager settings files /etc/NetworkManager/NetworkManager.conf and dns=default roger@xps13:~$ cat /etc/NetworkManager/NetworkManager.conf [main] plugins=ifupdown,keyfile dns=default [ifupdown] managed=false... Continue Reading →
Uninstall PowerCLI from VMware (we add it later from PSGallery) Start Powershell Set tls security to 1.2 [Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12 Set http proxy [Environment]::SetEnvironmentVariable("HTTP_PROXY", "proxy.invid.se:3128", [EnvironmentVariableTarget]::Machine) Set https proxy [Environment]::SetEnvironmentVariable("HTTPS_PROXY", "proxy.invid.se:3128", [EnvironmentVariableTarget]::Machine) Now that we have internet connection you can try in powershell, just for confirmation. wget https://invid.se Now it is time to register PSgallery... Continue Reading →
This is a simple way to test if your email security is ok. Open a web browser and access https://mail-tester.com and copy the destination email on the page. Then send a email to that address that you got from the page Then go back to the web page and press Then check your score. (wait... Continue Reading →
I am not a programmer from the beginning so I struggle a lot with buffer overflow part of the PTP course. I can not turn back time 25 years and start study programming so how do a old dog learn buffer overflow? This is what I do. Watch Videos, I learn faster if someone tells... Continue Reading →
Update 2022-08-25 Seems that this is not gonna be free anymore 🙂 https://blog.heroku.com/next-chapter I was watching a YouTube video from https://twitter.com/thecybermentor and wanted to spread the word to my 2 followers. This is a great way to get started with web application hacking. You will set up your own environment in seconds. After the deployment... Continue Reading →
I was unable to switch my bluetooth headset between different audio profiles. Did read alot of blogs and edit blutooth and pulsaudio files to get this to work. Did not get sound in the headset when I went into settings and test my sound. It says that I test my headphone but the sound went... Continue Reading →
I installed Pop!_OS, clean install. After that I installed some application that uses system tray. But some icons do not show up. I am running latest version and DELL XPS 13 9370. I does not matter what extension I enable. Fix that works Install gnome-tweaks sudo apt-get install gnome.tweaks 2. Now install system tray extension... Continue Reading →
We start to collect possible hostnames from websites with Cewl cewl http://10.10.10.1 -w cewl.txt You can also use some other switches like -d = deph to look on the website for words -m = minimum wordlengh -w = outputfiel So that the final command can look like this: cewl http://10.10.10.1 -d 5 -w cewl.txt When... Continue Reading →
This simple powershell scripts copy vlans from one server to another. With this script I needed to manually create the vmotion network after. But all other vlans was ccreated. Start Powershell In this case I was running linux. pwsh Set-PowerCLIConfiguration -InvalidCertificateAction Ignore -Confirm:$false Connect-VIServer cmdlet Connect-VIServer at command pipeline position 1 Supply values for the... Continue Reading →
My goal was to start Terminator, that's the terminal program I use and the reattach to tmux sessions in the three windows that I have. If I close terminator and started it again I wanted the tmux sessions to reattach to the old ones. And I i close tmux I wanted the same tmux windows... Continue Reading →
I did get this on 2 different upgrade I did I tried two methods both worked for me. Reboot VirtualCenter server and do the upgrade again Or ssh into the VirtualCenter box and type: rm /var/run/vmware/applmgmt/update_microservice.pid Upgrade again!
I do not say anything about security issue regarding this, but I needed a way to sync my Companies OneDrive and my private stuff to Google Drive. I tried a lot of different cli application, but those did not work for me. I have now found an application that works, and I only need one... Continue Reading →
You get this error when you apt-get update The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 1A1C1C101311121 How to import missing gpg key from all the repository in a oneliner. Thanx to https://www.linuxuprising.com/2019/06/fix-missing-gpg-key-apt-repository.html sudo apt update 2>&1 1>/dev/null | sed -ne 's/.*NO_PUBKEY //p' | while read key; do if... Continue Reading →
I got an email regarding a free Virtual Conference 2020! Could be something real nice! https://www.engagez.net/coreit1#lct=entrance Agenda here: https://coreit.s3.amazonaws.com/CORE-IT_Agenda-v1f.pdf https://coreit.s3.amazonaws.com/CORE-IT_Agenda-v1f.pdf https://coreit.s3.amazonaws.com/CORE-IT_Agenda-v1f.pdf https://coreit.s3.amazonaws.com/CORE-IT_Agenda-v1f.pdf https://coreit.s3.amazonaws.com/CORE-IT_Agenda-v1f.pdf
I was troubleshooting a ESXi host with esxtop, but the terminal was screwed up. The thing to set is this: TERM=xterm Then run esxtop again and it all locked nice.
Remove cached kerberos ticket klist -lh 0 -li 0x3e7 purge Update gpupdate /force Logout / Login
This is just for demo, I used root as user, you should perhaps consider other user to do this. Installation of Kali Download Kali Image https://www.offensive-security.com/kali-linux-arm-images/ Flash the SDCARD with etcher on you Kali box or any other burning program. Put the sdcard in the PI and boot OpenVPN Autostart Download opvpn conf file from... Continue Reading →
When you start Virtualbox in darkmode theme, you do not see anything in the gui. Start VirtualBox with a style... Available styles: cleanlooks, gtk2, cde, motif, plastique, Windows, Fusion virtualbox -style Windows %U Without Style With Style
This was done from Kali box. Of course the Sharphound was ran on a compromised computer. Used application Bloodhound and Sharphound ( https://github.com/BloodHoundAD/SharpHound ) aclpwn ( https://github.com/fox-it/aclpwn.py ) Steps to do it Get output with sharphound and put that on our kali box use -all when run the Sharphound. Start neo4j and bloodhound import the... Continue Reading →
Integrated Windows Authentication (IWA) has also been tested by VMware Engineering and verified to be compatible with these changes. IWA uses different protocols and mechanisms to interact with Active Directory and is not affected by changes to the Active Directory LDAP servers. Where did I find this information: Microsoft https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV190023 Vmware https://blogs.vmware.com/vsphere/2020/01/microsoft-ldap-vsphere-channel-binding-signing-adv190023.html https://kb.vmware.com/s/article/2149697
Some application start in full screen and I do not want that. I want them minimized when I login. In this case I am running Kali 2020.1. You need to install a program. sudo apt-get install wmctrl The I did create a app directory in home, In this directory I created app.sh file with the... Continue Reading →
Sometimes there are issues with speed, performance, lost of connection to access points. This can be helpful in some configurations. Before: iwconfig wlan0 wlan0 IEEE 802.11 ESSID: Mode:Managed Frequency:5.26 GHz Bit Rate=6 Mb/s Tx-Power=20 dBm Retry short limit:7 RTS thr:off Fragment thr:off Power Management:on Link Quality=56/70 Signal level=-54 dBm Rx invalid nwid:0 Rx invalid crypt:0... Continue Reading →
I just installed Kali weekly release (2020.1) with KDE and XFCE and all things seems to work very fine. But one thing with XFCE is that when I try to start things fron XFCE that use root permission it wont work. Strange errors or the applications just do nothing. gksu is no longer availble pkexec... Continue Reading →
I needed to compile an exploit in ParrotOS. Did not have a Windows machine at the moment. In this case it was MS03-26 for 32 bit. Before we begin we need to install some applications in ParrotOS sudo apt install mingw-w64 searchsploit ms03-026 searchsploit -m exploits/windows/remote/100.c x86_64-w64-mingw32-gcc 100.c -o shell.exe -lws2_32
How to completely remove and start from scratch regardning Nimble Plugin in Vcenter. W had the plugin that was in running mode 1 - Unregister the array from VC in Nimble 2- Clean the VC cache SSH to vcenter server shell service-control --stop vsphere-client service-control --stop vsphere-ui cd /etc/vmware/vsphere-client/vc-packages/vsphere-client-serenity rm -rf com.nimblestorage.* cd /etc/vmware/vsphere-ui/vc-packages/vsphere-client-serenity rm... Continue Reading →
If you have for example a github directory in our home directory and want to update all the applications at the same time, instead of going in to every subdirectory and git pull from there. You can do every subdirectory at the same time for i in */.git; do ( echo $i; cd $i/..; git... Continue Reading →
My journey began 2018-07-09 at Readynez ( Örenäs Slott) a rely warm summer week for Sweden anyway, almost 30 degrees Celsius. Here is what I think about about the journey that I choose to take. CEH Course There is a lot talk about this course on social media. But for a beginner like me this... Continue Reading →
Thanx to Dave Parker http://computersalad.blogspot.com/2018/09/using-vmware-remote-console-on-debian.html sudo su cd /usr/lib/vmware/bin mv vmrc vmrc.old Create a new vmrc file in /usr/lib/vmware/bin with this content #!/bin/bash LIBDIR="/usr/lib/vmware/lib" BINDIR="/usr/lib/vmware/bin" LD_LIBRARY_PATH="" for dir in $(find ${LIBDIR} -type d) ; do LD_LIBRARY_PATH="${dir}:${LD_LIBRARY_PATH}" done export LD_LIBRARY_PATH ln -s ${BINDIR}/appLoader /tmp/vmrc /tmp/vmrc $* rm -f /tmp/vmrc exit 0
This is how you create autostart links with OneGate. If you are runing the lates version and https only, change http to https. Tunnel http://onegate.invid.se.se/mg-local/autostart?resource=mg-local&uri=/mg-local/jretestifneeded?path=https:/rdp-server01.onegate.invid.se/parameters?resource=rdp-server&port=33891&cpopup=no&client=/mg-local/terminalserver/terminalserver-wrapper.html&p1=TRUE&p2=TRUE&p3=TRUE&p4=FALSE&p5=TRUE&p6=1280&p7=1024&p8=TRUE&p9=TRUE&p10=&description=asdfvbm9taXNlcasdfasdfasdfw=&logintype=webtoken HTML http://onegate.invid.se/mg-local/autostart?resource=rdp-server&uri=/mgdev-gw&logintype=webtoken Webresurs http://onegate.invid.se/mg-local/autostart?resource=www-server&uri=/page&formfill=false&logintype=webtoken
Special thanks to my better looking colleague @ http://blogg.schillman.se/ He is a powershell guru! I did this on Linux so I do not have the power to store username and password. But I know that you can do this if you are running Windows! If the vmware modules are not installed: Start powershell Set-PowerCLIConfiguration -InvalidCertificateAction:Ignore... Continue Reading →
You need to login with root account on the switch. SAN-SWITCH1:root> /fabos/libexec/webdconfigure http attributes (yes, y, no, n): [no] y HTTP Restart (yes, y, no, n): [no] y HTTP enabled (yes, y, no, n): [yes] y ErrorLog Enabled (yes, y, no, n): [no] AccessLog Enabled (yes, y, no, n): [no] SSLLog Enabled (yes, y, no,... Continue Reading →
(We are using old version of VCenter Server 6.5 Update 1e), Yes, we are about to upgrade! When you clone a machine in HTML5 it failes to powered on the cloned machine, this works when you are using Flash client. In HTML5 the cloned machine still points to the original vmdk files. In Flash it... Continue Reading →
Thanks to Author: Tim Carman Twitter: @tpcarman Github: tpcarman https://www.timcarman.net/2017/10/27/add-remove-virtual-machines-based-datastore-location-powercli/ Functions: Add-DrsVMtoDrsVMGroup Remove-DrsVMFromDrsVMGroup install Powershell Get PowerShell to work with ubuntu 19.10 Budgie Create Powershell Profile Run it! sudo snap install powershell --classic export DOTNET_SYSTEM_GLOBALIZATION_INVARIANT=1 vi /home/USERNAME/config/powershell/Microsoft.PowerShell_profile.ps1 Paste the following in the file: $Hour = (Get-Date).Hour If ($Hour -lt 12) {"Morning Master"} ElseIf ($Hour -gt... Continue Reading →
You get error like this: Process terminated. Couldn't find a valid ICU package installed on the system. Set the configuration flag System.Globalization.Invariant to true if you want to run with no globalization support. Did not work with powershell preview sudo snap install powershell --classic export DOTNET_SYSTEM_GLOBALIZATION_INVARIANT=1 pwsh
Standard is to use 2 finger and click to get right mouse click. You can switch to "standard" Right click on mouse pad: gsettings set org.gnome.desktop.peripherals.touchpad click-method areas To get back to two fingers click: gsettings set org.gnome.desktop.peripherals.touchpad click-method fingers
If you want to monitor your enviroment using snmp you can. I will recommend going to SNMPv3 not v2 like this....but I just wanted to try esxi: esxcli system snmp set --communities secret esxcli system snmp set --port 161 esxcli system snmp set --syslocation SERVERROOM esxcli system snmp set --enable true Virtual appliance: snmp.set --port... Continue Reading →
We received a new disk from HP because we had proactive failure on disk. If you ssh to 3par, we can not see any alarms,logs or anything that indicates that a disk have proactive failure. In short words: 1.servicemag start 0 1 Failing the drive... Continue Reading →
I am trying out Librenms under Ubuntu 18.04. I did dumb thing and sized the disk to small. So today my disks was used 100%. I expand the disk (lvm) and resize the partitions. But the mariaDB did not start. What I did was, I removed this file /var/lib/mysql/tc.log rm /var/lib/mysql/tc.log systemctl start maridb.services And... Continue Reading →
Start PowerShell as Administrator Install-Module -Name VMware.PowerCLI -Scope CurrentUser Install-Module ImportExcel -scope CurrentUser Install-Module vDocumentation -Scope CurrentUser Set-ExecutionPolicy Unrestricted Set-PowerCLIConfiguration -InvalidCertificateAction Ignore -Confirm:$false Connect-VIServer Then you are up and runnig Great work from Ariel Sanchez Mora https://github.com/arielsanchezmora/vDocumentation Get-Module vDocumentation -ListAvailable | Format-List Get-ESXInventory Document host hardware inventory and host configuration Get-ESXIODevice Document information from HBAs,... Continue Reading →
sudo dmidecode | grep "Serial Number" You get something like this: Serial Number: 21XHTN1
You get an error when editing advanced option on ESXi host (syslog) But when you do this from CLI it work and the option is ok in the GUI also. esxcli system syslog config set --logdir=/vmfs/volumes/DATASTORE01/esx01/
Create Key file openssl genrsa -des3 -out mg.key 2048 Create CSR with above keyfile openssl req -new -sha256 -key ./cert.key -out ./cert.csr Fill in the questions regarding the csr Send the CSR to the company that issue certificates When you get the certificate back from the cert company you do this Create a all.crt file... Continue Reading →
Started the upgrade 08:10 and the upgrade was finished 9:37. I have only about 10 host in OME. I takes long time just wait. Do not forget to delete the snapshot after the upgrade is finnished. The CPU was like this during the time. The screen that was there for a long time was this:... Continue Reading →
1 physical server to virtual with VMware Converter 6.2 failed after 3% with error. FAILED: An error occurred during the conversion: 'BlockLevelVolumeCloneMgr::CloneVolume: Detected a write error during the cloning of volume \WindowsBitmapDriverVolumeId=[60-2A-FF-68-00-00-10-00-00-00-00-00]. Error: 37409 (type: 1, code: 2338)' Source machine had Teaming configured and I just pulled out the cabels and put new one in... Continue Reading →
1 physical server with AD,DNS,DHCP and file services. I want to convert the physical server to a virtual machine with Vmware Converter 6.2 Went to 1% and then failed with error: vmware converter FAILED: A file I/O error occurred while accessing ''. The only thing I did was add below entry in the host file,... Continue Reading →
After I upgraded a host to 6.7U2 from 6.5 I got som strange performance chart, Realtime, 1 day for latency view.Looked like this: The answer it will be fixed in U3, at the moment I do not have the information when this will be released! 2019-06-20T11:04:00.034Z info hostd[2099465] [Originator@6876 sub=Libs opID=53a6b81e] NetstackInstanceImpl: congestion control algorithm:... Continue Reading →
You need ip connectivity from the temp VC to the ESXi host that the upgraded VC is hosted. We want to upgrade VC-CUST (192.168.1.1), in this case migrate to 6.7 from 6.5. This CirtualCenter resides in hosted VirtualCenter VC-Provider. VC-Provider has NO ip connectivity to customer. VC-CUST has no IP connectivity to ESXI host (172.16.1.2)... Continue Reading →
Please follow this great guide from Cody! https://www.codyhosterman.com/2018/10/configuring-pure1-vm-analytics-detailed-guide/ When you come to the point when you shall install or update something stop! Now it is time for proxy stuff. Apt proxy settings sudo vi /etc/apt/apt.conf.d/proxy.conf Acquire { HTTP::proxy "http://proxy.invid.se:8080"; HTTPS::proxy "http://proxy.invid.se:8080"; } Linux For other Linux stuff you want to add this in root users... Continue Reading →
This oneliner update every git cloned application in the the directory /home/user/github/"applications" cd /home/user/github Command: for d in *; do pushd $d && git pull && popd; done
When you change the product key you get this: Open CMD as Administrator and do this by CLI c:\windows\system32\slmgr.vbs /ipk xxxx-xxxxx-xxxxxx-xxxxx-xxxxx
Install java webstart sudo apt-get install icedtea-netx Run the jnlp file: -verbose and -nosecurity is not mandatory javaws -verbose -nosecurity http://10.1.1.1/switchExplorer_installed.html
Show switchshow - Indicators like no light or In_sync will be displayed portshow <port> - Provides report on errors on a port porterrshow - provides gist of port errors, look for delta of counters portstatsshow <port> - Provides details of port errors portstats64show - Extension of portstatsshow when 32 bit counters do not suffice, look... Continue Reading →
Windows 10 1809 with KB4489899 Windows 10 1709 with KB4489886 Uninstall the above patch, then it works again.
CEH Practical - LPT (Master) - CTF Notes I have gather these notes from internet and cources that I have attended . Special thanks to: JENS GILGES https://www.linkedin.com/in/jens-gilges-1aa719151/ I used this site as notepad to remember things, not to get you an answer. So if you don’t like it, don’t read it.... Continue Reading →
Microphone seems not to work in any application, audio out is working in 3,5mm or in usb headset but not any mic. Update Virtual Box in my case I am running 6.04 Install Guestadditions Control panel Go to privacy Choose Microphone Choose to use the mic in apps Then my mic was working!
Getting some error when try to run ./vmware-install.pl vcli Path::Class 0.33 or newer Socket6 0.28 or newer IO::Socket::INET6 2.72 or newer Net::INET6Glue 0.603 or newer How I did: sudo apt install -y perl-doc libmodule-build-perl libssl-dev libxml-libxml-perl libsoap-lite-perl libuuid-perl sudo apt-get install libcrypt-ssleay-perl libcrypt-openssl-rsa-perl sudo cpan Devel::StackTrace Class::Data::Inheritable Convert::ASN1 Crypt::OpenSSL::RSA Crypt::X509 Exception::Class UUID::Random Archive::Zip Path::Class Try::Tiny... Continue Reading →
If you want to see the ssl handshake in the CLI, this is the comman to use! openssl s_client -connect ipadress:443
Unable to ssh to old versions of sshd Unable to negotiate with ipadress port 22 no matching key exchange method found. Their offer: diffie-hellman-group1-sha1 Use this at our own risk, this is not secure... ssh -oKexAlgorithms=+diffie-hellman-group1-sha1 username@ip(or name)
I have read many things about that CEH is not that good, but I think otherwise. I think everyone in IT schould attend a cource like this. You learn alot, some basic some advanced stuff. You need to start from somewhere, and this is a good starting point. You need to learn how to walk... Continue Reading →
I wanted to drop all ICMP traffic, tried to create the rules in the gui, but no progress. I did miss the direct rules, should work in the gui also. So I did it with the cmd command: firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT 0 -p icmp -j DROP firewall-cmd --permanent --direct --add-rule ipv6... Continue Reading →
ping.exe -t 127.0.0.1 |Foreach{"{0} - {1}" -f (Get-Date),$_} >> ping.txt
To fix this Browse to VirtualCenter Down at the right bottom on page press Download trusted root CA Unpack the zip file Open Certmgr.msc Go to Trusted Root Certification Authorities Rightclick on Certificates and All Taska/ Import Import the certificates that you unzipped before Restart Browser Done!
Unable to reset sensors, unable to delete log from Vsphere Client/Web You get these messages: System Management Software 1 SEL Fullness Status of other hardware objects Solution for me was: This is NO downtime, but it will disconnect from VirtualCenter for a short period of time. But it will reconnect. ssh to esxi host localcli... Continue Reading →
When you have upgraded to 6.5 and did not notice that you had a 5.0.0. server in the Virtual Center. You can upgrade the 5.0.0 host from CLI with some simple commands. Download the offline Bundle for 5.5 zip file Download the zip file to ESXi host with your tool. (Vsphere client, Winscp or scp)... Continue Reading →
Unable to send alarms from Virtual Center, or you get strange smtp errors on smtp server. Connect to the Virtual Center with ssh cd /etc/mail edit vi submit.cf Find this: Smart relay host (may be null) DS Change the DS to: DS smtp.server.fullname.se (FQDN) Restart the Appliance Works!
Will add more as I stumble upon them. Network Virtualization for Dummies https://secure.vmware.com/47785_REG?touch=1&src=so_5bbb4d89277ef&cid=70134000001CYBq&src=so_5a314d05e49f5&cid=70134000001SkJn Micro‐segmentation For Dummies https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/products/vmware-micro-segmentation-for-dummies-book.pdf NVMe over Fibre Channel For Dummies Brocade Special Edition http://media.wiley.com/assets/7359/40/9781119399711.pdf Firewalls for Dummies https://doc.lagout.org/Others/Firewalls%20For%20Dummies%2C%202nd%20Edition.pdf Next Generation Firewall for Dummies https://www.csuc.cat/sites/default/files/docs/ngfw_for_dummies_ebook.pdf Cybersecurity for Dummies https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/education/cybersecurity-for-dummies.pdf Network Security in Virtualized Data Centers for Dummies http://gauss.ececs.uc.edu/Courses/c5155/pdf/netsec_virtdatacntr.pdf Virtualization for Dummies https://ssl.www8.hp.com/de/de/pdf/virtuallisation_tcm_144_1147500.pdf ... Continue Reading →
What we want: I don't think this will work with ASUS orginal firmware, I have not tested. I use Merlin (https://asuswrt.lostrealm.ca/) Check what TUN you have in the router via ssh Command: route Then you see what TUN you have on the vpn, in my case tun15 You can also use tun1+ but then... Continue Reading →
We where using hotadd function to backup on some SQL servers. From 40 min backup time to 10 hours! After applying veeam patch https://storage.veeam.com/Fix_138831_a62af14d05.zip The backup wnt down to 40 min again. Full story from veeam: https://www.veeam.com/kb2711
You need to verify by dns, that's what I read anyway. I was doing this from ubuntu 18.04 Install certbot: sudo add-apt-repository ppa:certbot/certbot sudo apt install python-certbot-apache Oneliners Certbot certonly --manual --preferred-challenges=dns --email roger.bergling@invid.se --server https://acme-v02.api.letsencrypt.org/directory --agree-tos -d *.portal.jkp.invid.se Add DNS txt vaule, you get this from above command Convert cert to p12: openssl pkcs12... Continue Reading →
One smash, two flies After upgrading from 6.5 vcsa to 6.7 without any problem, update manager is missing in the clients, both flash and html5. No errors on services, and everything looked fine. But when I from Linux client browse to virtualcenter adress I get: NET::ERR_CERT_INVALID And I am not able to proceed to the... Continue Reading →
Easy one Uninstall VCenter Server from Windows Copy/Backup and Remove C:\ProgramData\VMware\VMware VirtualCenter\SSL Reinstall same Virtual Center that was installed before. Or you can follow this great blogg from Zlatko Mitev http://vbuffer.com/vcenter-selfsigned-certificates/ Some notifcation from me: OpenSSL 0.9.8 is requried http://gnuwin32.sourceforge.net/packages/openssl.htm Deploying and using the SSL Certificate Automation Tool 5.5 http://kb.vmware.com/selfservice/microsites/search.do?cmd=displayKC&docType=kc&docTypeID=DT_KB_1_1&externalId=2057340 #When you are running openssl... Continue Reading →
If not have desktop expirence installed and want to clean up C: on Windows 2008R2. Then copy below files the you are able to run clenmgr whitout reboot. Yo need to overwrite, because the old files will be there. C:\Windows\winsxs\amd64_microsoft-windows-cleanmgr_31bf3856ad364e35_6.1.7600.16385_none_c9392808773cd7da\cleanmgr.exe to C:\windows\system32\ C:\Windows\winsxs\amd64_microsoft-windows-cleanmgr.resources_31bf3856ad364e35_6.1.7600.16385_en-us_b9cb6194b257cc63\cleanmgr.exe.mui to C:\windows\system32\en-us\ The you can run cleanmgr.exe
Create Backup.ps1 file on every datacorenode. Under C:\backup Create backup.bat file on every datacorenode. Under C:\backup Schedule a task in Datacore to run below powershell script and the backup.bat on every node. The Powershell needs only on one node. The script solves that for you. Backup.bat net use \\1.1.1.1\h$ /user:user password copy C:\Backup\* \\2.2.2.2\h$\Datacore\... Continue Reading →
How to manually upgrade Datacore. Download the Datcore Software Do you have DCSAdmin Password? If you don't, get it. If you have lost that password another blogpost is about to be done to explain howto change that. Connect to both nodes 1. Check System Health 2. Check version. Server Group DataCore Servers Version: 10.0.PSP5 Update... Continue Reading →
Datacore with Samsung NVme disk, that are seen with the same ID. This must be a bug from Samsung. If you have two NVme disks with the same ID You only se one disk at the time. For Datacore this is not good. You want to mirror thoose NVme disk in Datacore. Workaround, if you... Continue Reading →
UPDATE!! If you have ISO file with version 1809 it wont work. Tried several times in many ways but same issue...BSOD points to wpprecorder.sys... If you install 1803 and then upgrade to 1809 you will get the same problem. I did anyway. My setup is that I am running Ubuntu on the XPS 13... Continue Reading →
apt-get install smartmontools smartctl --xall /dev/nvme0n1p2 smartctl 6.6 2016-05-31 r4324 [x86_64-linux-4.18.6-041806-generic] (local build) Copyright (C) 2002-16, Bruce Allen, Christian Franke, http://www.smartmontools.org === START OF INFORMATION SECTION === Model Number: PC401 NVMe SK hynix 512GB Serial Number: ES82N134010102J61 Firmware Version: 80003E00 PCI Vendor/Subsystem ID: 0x1c5c IEEE OUI Identifier: 0xace42e Controller ID: 1 Number of Namespaces: 1... Continue Reading →
Use the first to delete directories also second only files Skip -exec and all after just to search so you dont delete the wrong stuff. find . -name NAME_TO_FIND -exec rm -rf {} \; OR find . -type f -name NAME_TO_FIND -exec rm -f {} \;
Depends on how the wifi is configured you need to have access to CA server (windows in this case) Login for the user, for creating the certificate. Policy to allow export of private key. Steps: Download CA cert from server: https://server.com/certsrv Convert CA.CER to PEM openssl x509 -inform der -in ca.cer -out ca.pem Create... Continue Reading →
Start Cups /etc/init.d/cups start Surf to http://127.0.0.1:631 Add Printer: Between domain and username %5C If you have space in the share name add %20 smb://DOMAIN%5CUSERNAME:PASSWORD@SERVER/SHARP%20Follow%20Me Name the printer: Choose driver or add a ppd file:
Tips and Tricks 