Last year a new attack on WPA2 was announced by the creators of hashcat - one that didn't require capturing the 4-way handshake, any client interaction or any kind of client even connected. With a vulnerable access point, you can try to associate with the access point, capture a PMKID
This was a pretty fun and straightforward little box and would be great practice for anyone studying for the OSCP. Nmap shows a few things running: > PORT STATE SERVICE REASON VERSION 22/tcp open ssh syn-ack ttl 63 OpenSSH 6.7p1 Debian 5+deb8u4 (protocol 2.0) 80/tcp open
Last year I was out of the country and wanted to check some things on my home network. I connected to the guest-only wifi network provided in the hotel lobby and was thoroughly annoyed to find that I could not connect to my OpenVPN server. I did a bit of
This was an awesome multi-layered machine that taught me a lot so I loved it! I'm sure there are easier, better and more efficient ways to complete this box but this is how I did it. Nmap scan to start: > 22/tcp open ssh OpenSSH 7.2p2 Ubuntu 4ubuntu2.4
If you've ever looked at firewall logs on a public facing machine, you know that anything on the internet is constantly being probed and attacked - seeing hard evidence of this is enough to make one quite paranoid. When it comes to a ssh server, one of the things you