How to find hardware issues with SQL errors in an vmware environment. A read of the file at offset succeeded after failing 1 time(s) with error: incorrect pageid #vExpert @VMwarevSphere #esxi #database #sql #sqlserver #microsoft

I ran into som very strange problem on an SQL server this fall that I need to tell you about. The Error A read of the file 'D:\SQL PATH\Data.mdf' at offset 0x0000001ad60000 succeeded after failing 1 time(s) with error: incorrect pageid (expected 1:214336; actual 14854:3166640). Even if we see these error SQL was able to... Continue Reading →

27 December, 2022 0

Eat, Drink, Sleep and Shit security. How in a “easy” way keep you updated on what is happening out there. @BHinfoSecurity @ActiveCmeasures @WWHackinFest @intigriti #security #knowledge

How do you keep you updated on what is happening out there, I have some tools and workflow that will keep you busy. One thing you need to think about, not everything on the internet is the truth.The hard thing here is that there is endless information out there, but yo do not need to... Continue Reading →

14 March, 2022 0

How to document ActiveDirectory free and with #powerhsell export to excel and word #ActiveDirectory #documentation @evotecpl

Hi! As I am not writing alot of other stuff other than my goal to PNTP and OSCP right now ( https://blog.invid.eu/2022/01/06/my-ocsp-and-pnpt-journey-from-the-beginning-during-and-i-hope-the-end-tcmsecurity-thecybermentor-offsectraining-pnpt-oscp-joplinapp-reconmap-bhinfosecurity-strandjs-hacking-pentesting/ ). But in this case I have to. I was looking for a simple way to document a new customers Active Directory. How shall I do that in a easy way? I had... Continue Reading →

10 February, 2022 0

Courses and Certifications that I have taking over the years. Knowledge is the key.

If you are interested in any just send me an email if you want information about them. This is mostly a reference page to other bloggposts. BHIS Webcast: Things NOT to Do in Pentest Reports: Tips, Tricks 2023-02-03 Future Red Team Rants: A breakdown in three parts 2023-01-26 All About Ansible - A Suite of... Continue Reading →

6 January, 2022 1

How to revert from NVMe controller to paravirtulized scsi controller. Blue screen inaccessible boot device when I do that. How to fix it with 2 commands #windows10 @PURESTORAGE @VMWARE #VEXPERT #ESXI #PERFORMANCE

Hi all! The latest posts has been about how to get the most of our hardware in a virtual machines. But sometimes you need to revert stuff you do. Or as me, try everything that can go wrong. When I revert from paravirtulized driver on my Windows 10 vm to NVMe controller everything went fine.... Continue Reading →

20 May, 2021 1

Test vCPU configuration to get best performance out of a VM. What configuration shall I use. #vCPU @vExpert @VMware #virtualmachine @FrankDenneman #numa @mwVme

We start with what our goals are We have a vm that want to take as much cpu power as possible from the host. But how shall we configure the VM to make the most of it. You have read about numa nodes and what that means? right? If not look, at the bottom of... Continue Reading →

30 March, 2021 3

In place upgrade to Windows 2019 from Windows 2016. Error 0xC1900101 – 0x30018 The installation failed in FIRST_BOOT phase with an error during SYSPREP operation. #windows2019 @MicrosoftHelps @Microsoft

Hi all! This must be one of the first time that this happens, something about Windows in this blogg. But i felt like this must be shared. I was doing in place upgrade from Windows 2016 to 2019. And some some servers went well and some got this message. The upgrade went to about 52%... Continue Reading →

18 March, 2021 2

Attending Active Defense & Cyber Deception with @strandjs and want to run the WINADHD vm in ESXi, please read this. @WWHackinFest @BHinfoSecurity @ACTIVECMEASURES #ACTIVECOUNTERMEASURES #THREATHUNTING #BEACONS #WINADHD

If you attending John strand in this epic course and want to run the lab vm in Vmware ESXi please read this. If not, go and do something with your girlfriend,boyfriend or children or take a beer and relax! Hi, I am looking at a new way to work so I was not able to... Continue Reading →

16 March, 2021 0

How to do remote work smooth with any device and still use camera, microphone in any application. Using my work PC as remote nod and Ubuntu as a client home. @vmware @vmwarehorizon @vExpert @ubuntu @vExpert #remote #WorkFromHome #linux

Goal for today is to connect to work machine, in this case a Windows 10 and have all the functions that I have when I am physical at work. So I had some requirements on my list. Client at home can be anything (Linux in my case)Must support camera and microphoneFastNo lagSimple to useSecure First... Continue Reading →

5 February, 2021 0

How to export/crack SAM database with internal Windows tools if you do not have access to mimikatz / hashdump / metasploit. As a bonus we also look at cached domain hashes. #LINUX4HACKERS #HASHCAT #LINUX #INFOSEC #HACKING #PENTEST #PENTESTING #REDTEAM #NVIDA #TESLAM60

Hi! I wanted to dump hashes on a Windows 10 box without any external tools. This is how I did it. We start at first with the short version Export SAM with reg.exeConvert SAM with impacket-secretsdump to get to the hashesUse hashcat to crack the hashes We start first with exporting the sam database with... Continue Reading →

11 January, 2021 0

Migrate from VirtualBox to QEMU/KVM on Ubuntu 20.10 as host. And get the VMs up and running. #qemu #kvm #libvirt #virtualbox #linux #virtualbox @ubuntu

Hi! I am have been running VirtualBox for my VMs on a Linux host for some time now. But when kernel 5.10 was installed there was some issue with compiling the drivers for VirtualBox. I think there is a workaround out there, but I needed to fix this asap. So I decided to migrate to... Continue Reading →

8 January, 2021 0

Configure Office365 as a Service Provider in a federation and use Fortinet as Identity Provider. @Fortinet #fortinet #SAML @Office365 #federation @AzureSupport #cloud #cloudsecurity # #fortinet

Hi, a hole different topic today. On the table is federation. In this case we want a third party solution to handle authenticate to Office365. Then we can control all the login function in our own product. Federation talks a specific language that is called SAML ( Security Assertion Markup Language ).More information regarding SAML... Continue Reading →

26 October, 2020 1

Install PowerShell on Ubuntu 20.04 and add support for AzureAD. #powershell @ubuntu #linux @Microsoft @Azure #linux-guy-try-windows

Hi I want t run PowerShell on my Ubuntu machine and also add support for Azure. Because soon I will try to set up some federation in Azure. Below is from Microsofthttps://docs.microsoft.com/en-us/microsoft-365/enterprise/connect-to-microsoft-365-powershell?view=o365-worldwideIt is in Swedish but It says that Ubuntu 20.04 is not supported. I will be supported in the 7.1 release. The screenshot is... Continue Reading →

21 October, 2020 2

Add linux and windows machines to SecurityOnion Kolide Fleet @securityonion #opensource #qsquery #fleet @Kolide #linux @BHinfoSecurity

We have now come so far that we want to add things in my installation of SecurityOnion. And we will start with how to add Linux and Windows boxes to Kolide Fleet. I do not know if this is the right way but after a couple of hours I was able to see the vm:s... Continue Reading →

19 October, 2020 2

How to update my hacking rig (Linux and Windows) using ansible. #ansible #ubuntu #linux #infosec #windowsupdate #hacker #automation

I have my vm:s up and running now, but I like my rig to be patched and updated, even if I only have 7 machines I want to centralize update procedure. I have chosen to do this with Ansible. As this is a demo site that I am setting up. Security of some configuration is... Continue Reading →

16 October, 2020 0

Refresh computer group membership without reboot on Windows #windows #gpupdate #kerberos #pentest #hacking #redteam

Remove cached kerberos ticket klist -lh 0 -li 0x3e7 purge Update gpupdate /force Logout / Login

26 February, 2020 0

Unable to activate Windows 2019 with a new product key error 0x80070490

When you change the product key you get this: Open CMD as Administrator and do this by CLI c:\windows\system32\slmgr.vbs /ipk xxxx-xxxxx-xxxxxx-xxxxx-xxxxx

14 May, 2019 0

Unable to upload documents with Swedish characters in the document name to Sharepoint using Windows 10 and IE, working with other browsers.

Windows 10 1809 with KB4489899 Windows 10 1709 with KB4489886 Uninstall the above patch, then it works again.

20 March, 2019 0

Microphone in Windows 10 1803 or later under VirtualBox, Ubuntu 18.10 as host.

Microphone seems not to work in any application, audio out is working in 3,5mm or in usb headset but not any mic. Update Virtual Box in my case I am running 6.04 Install Guestadditions Control panel Go to privacy Choose Microphone Choose to use the mic in apps Then my mic was working!

24 February, 2019 0

Ping something and save to textfile and get date and time in powershell

ping.exe -t 127.0.0.1 |Foreach{"{0} - {1}" -f (Get-Date),$_} >> ping.txt

20 November, 2018 1

Windows 2008 R2 cleanmgr.exe how to fix without reboot.

If not have desktop expirence installed and want to clean up C: on Windows 2008R2. Then copy below files the you are able to run clenmgr whitout reboot. Yo need to overwrite, because the old files will be there. C:\Windows\winsxs\amd64_microsoft-windows-cleanmgr_31bf3856ad364e35_6.1.7600.16385_none_c9392808773cd7da\cleanmgr.exe to C:\windows\system32\ C:\Windows\winsxs\amd64_microsoft-windows-cleanmgr.resources_31bf3856ad364e35_6.1.7600.16385_en-us_b9cb6194b257cc63\cleanmgr.exe.mui to C:\windows\system32\en-us\ The you can run cleanmgr.exe

20 September, 2018 0

Install Windows 10 on a external media and run it.

UPDATE!! If you have ISO file with version 1809 it wont work. Tried several times in many ways but same issue...BSOD points to wpprecorder.sys... If you install 1803 and then upgrade to 1809 you will get the same problem. I did anyway. My setup is that I am running Ubuntu on the XPS 13... Continue Reading →

10 September, 2018 0