Infosec Rabbit Holes

Infosec Rabbit Holes

Sign in Subscribe

GCP Cloud Function Abuse

Cloud Security Featured

GCP Cloud Function Abuse

Article discussing GCP Cloud Function Abuse covering Local File Inclusion (LFI), Server-Side Request Forgery (SSRF), and Command Injection vulnerabilities. Explains how these vulnerabilities can be exploited to get access to authorization tokens and other sensitive information.

Azure Function App Abuse

Cloud Security Featured

Azure Function App Abuse

Azure Function Apps: discover and exploit vulnerabilities like LFI and SSRF to gain access to source code and environment variables. Tutorial and demo in Python.

Enter The Matrix v1.3.0

Enter The Matrix v1.3.0

Enter The Matrix (ETM) introduces a full CRUD API with granular permissions to integrate ETM into workflows and produce metrics about organizations.

Multiple CVEs: Brocade Fabric OS

Multiple CVEs: Brocade Fabric OS

Multiple CVEs discovered in Brocade Fabric OS including hardcoded credentials and authenticated directory traversal and file read vulnerabilities. Attackers can read any file on the system and gain access to a restricted shell environment.

Offensive-Azure

Offensive-Azure

Offensive-Azure is a platform-agnostic toolkit created to assist red teams and penetration testers. It includes two tools, device-code-easy-mode.py and token-juggle.py, with plans to add more. The tools were inspired by AADInternals and TokenTactics, and are open and loosely defined.

HackTheBox — Cap

HackTheBox — Cap

In this writeup we're looking at the Cap box from HackTheBox. This box goes into PCAP analysis and linux capability sets.

HackTheBox — Knife

HackTheBox — Knife

Covers network service scanning (T1046), software discovery (T1518), supply chain compromise (T1195.001) within the open source PHP project, remote code execution (T1210), compromising a user’s authorized_keys and id_rsa files (T1021.004), and abusing sudo (T1548.003) to gain root privileges.

HackTheBox — Ophiuchi

HackTheBox — Ophiuchi

The recently retired HTB machine Ophiuchi was assigned a “Medium” difficulty and featured a pretty interesting set of vulnerabilities leading to initial compromise and root access. This write up will give a step by step analysis of the machine and hopefully help those who struggled to complete it.

HackTheBox — Spectra

HackTheBox — Spectra

Spectra is a retired HackTheBox machine that was ranked as “Easy”. It covered multiple simple vulnerabilities including directory listings, information leakage, clear-text credential leakage, remote code execution via WordPress plugin, and over-privileged sudo abilities.

Multiple CVEs: Cisco Unified IP Conference Station 7937G

Multiple CVEs: Cisco Unified IP Conference Station 7937G

Cisco: CVE-2020-16139, CVE-2020-16138, CVE-2020-16137: Unified IP Conference Station 7937G

CVE 2020-26801: Tripp Lite Stored XSS

CVE 2020-26801: Tripp Lite Stored XSS

CVE 2020-26801: A stored XSS vulnerability was discovered on the Tripp Lite SU2200RTXL2UA UPS device

Rabbot goes to school to learn how to be hacker

Penetration Testing

CRTP Reflections

My hope is to provide those who are interested in the bootcamp, the lab environment, or in the CRTP certification some insight into what skills are provided and the overall structure of the offerings. There are a large number of options out there and choosing the right one for you is important.

Enter The Matrix

Enter The Matrix

Enter The Matrix (ETM) is a Tool to Aid Operators During Risk Assessment in Creating Threat Matrices and Directed Threat Graphs