Skip to main content

Posts

Showing posts from 2010

Welcome to Mark Baggett - In Depth Defense

I am the course Author of SANS SEC573 Automating Information Security with Python. Check back frequently for updated tools and articles related to course material.




Pauldotcom posts for 2010

Here is an archive of links to my 2010 Pauldotcom posts. Tshark/Wireshark SSL Decryption - Lessons Learned Windows 7 symbolic links and hidden files Real time Google Hacking Web Application Penetration Testing - Part 4 Web Application Penetration Testing Script - Part 3 Web Penetration Testing Scripts - Part 2 Web Penetration Testing Scripts - Part 1 Creating per user customized dictionaries with USERPASS Using Metasploit to control netcat and third party exploits Exploring the Facebook API Capturing SSH V1 & V2 Credentials with a MitM ssh honeypot Resilient SSH Tunneled Meterpreter Session Nessus Scanning through a Metasploit Meterpreter Session SSH gymnastics with proxychains Meterpreter script to unlock the screensaver Killing the Monkey in the Middle Running a command on every machine in your AD domain from the command line Bypassing AV with msfencode -x Smashing the General Ledger for fun and Profit (AKA Accounting 101 for Penetration Testers) NOT A CON!!!! (it's a b

Some new posts

I've gotten a couple emails asking where I went. For those that do not know I've been posting on Pauldotcom.com. In the future I will post my entries here also, but really... You should follow pauldotcom.com!!!! :) See you there. Wireless Access Points Defcon 2004 style GINA Authentication Bypass Shmoocon tickets. See you there! All your Active Directory Computer objects - Gone in 60 seconds