In the spirit of giving back to the community, I'm sharing some simple bash scripts I wrote that make life easier and save time whether you are in the OSCP labs, HackTheBox or playing around with CTFs. TL:DR; STFU gimme scripts [https://github.com/t3chnocat/oscp-ctf] Explanations for the
Last year a new attack on WPA2 was announced by the creators of hashcat - one that didn't require capturing the 4-way handshake, any client interaction or any kind of client even connected. With a vulnerable access point, you can try to associate with the access point, capture a PMKID
The PWK Course [https://www.offensive-security.com/information-security-training/penetration-testing-training-kali-linux/] was something that had been on my radar for years and I'd been wanting to take it for quite a while. Having heard of its ass-whupping potential, I wanted to make sure I could devote the time and energy to the
I attended BSidesSF 2019 and skipped this presentation based on the title because I assumed it was going to be some cheesy IronMan thing. I could not have been more wrong. While Burp Suite is widely considered to be the gold standard when it comes to web app pentesting, it