Feb 28, 2025
In today’s episode I talk about what I’m working on this week, including:
- Playing with Sliver C2 and pairing it with ShellcodePack
- Talking about Netexecer, my upcoming tool that helps automate some of the early/boring stuff in an internal pentest
- A gotcha to watch out for if utilizing netexec’s MSSQL...
Feb 21, 2025
Today we live-hack an SCCM server via GOAD SCCM using some attack guidance from Misconfiguration Manager! Attacks include:
- Unauthenticated PXE attack
- PXE (with password) attack
- Relaying the machine account of the MECM box over to the SQL server to get local...
Feb 14, 2025
Hi friends, today we're talking about pentesting potatoes (not really, but this episode is sort of a homage to episode 333 where I went to Boise to do a controls assessment and ended up doing an impromptu physical pentest and social engineer exercise). I talk about what a blast I'm having hunting APTs in XINTRA LABS,...
Feb 8, 2025
Today we continue our journey from last week where we spun up a Hetzner cloud server and Ludus.cloud SCCM pentesting range! Topics include:
- Building a Proxmox Backup Server (this YouTube video was super helpful)
- Bridging a second WAN IP to the Hetzner/Ludus server
- Wrestling with the Hetzner (10-rule limit!)...
Feb 1, 2025
I had an absolute ball this week spinning up my first Hetzner server, though it was not without some drama (firewall config frustrations and failing hard drives). Once I got past that, though, I got my first taste of the amazing world of Ludus.cloud, where I spun up a vulnerable Microsoft SCCM lab and have started to...