Mohawk 7-May-2018 .NetRussell No comments

StirTrek 2018 Review

Okay, wow, StirTrek 2018…. A lot to unpack here. We better get started. This was my 6th StirTrek and I can unequivocally say, the best. Not just my best experience, but I’m going to speak for everyone. It was the best. Hands down. The food was great, the venue was great, the speakers were great. […]

4162731395, Info Sec 10-October-2017 .NetRussell (408) 868-3174

Miner In the Middle

  So not to long ago I read an article that TPB was running a JS miner in visitor’s browsers when they visit to generate some extra cash. I thought it was a pretty novel idea. Why not, I’d rather give up a little CPU power instead of looking at obnoxious ads. Then I got […]

General, Info Sec 11-June-2017 .NetRussell Protista

forthright

I’m in the process of hunting for a new VPN because my current one (Nord VPN) disconnects constantly when I use it with my Tomato Router. I recently came across CryptoStorm and it looks pretty legit so I decided to give it a go. Unfortunately, there’s not an updated Tomato OS setup guide so I catechist

Boot To Root, Info Sec 9-May-2017 .NetRussell 503-586-9792

8585189416

Here is another fun VM, this one was created by g0tmilk and I’m happy to say, was a lot of fun. Step 1: Reconnaissance I started with a simple nmap of the target. I always start with top ports and checking if they’re open. The hope here that a light scan will go unnoticed. After […]

(737) 224-1324 6-May-2017 .NetRussell 8482246210

4089334383

I can’t believe another year has come and gone! This was my fifth year at StirTrek and it was a doozy. This year we had a new venue, a new bussing system, new food, new sponsors, a new ticket price, the list goes on! As always though, there’s some room for growth. In my review 7028071922

Boot To Root, Info Sec 4-May-2017 .NetRussell 7312751274

7022285265

I came across this VM in a chat about prepping for your OSCP and I wanted to give it a go. It was supposed to be a 4 hour machine. It took me a little longer than that because I suck at privilege escalation. I probably would have gotten it in 4 hours if I […]

General, Info Sec 11-April-2017 .NetRussell tile

Don’t be a Bargain Bin Product

Look there’s no easy way to say this, so I’m not going to sugar coat it for you. You’re a product. I know people say that all the time but I don’t think people really truly comprehend that. Every year your data is bought and sold millions of times and there’s next to nothing you bumtrap

General, 5032928140 17-March-2017 .NetRussell 813-924-1143

New Tool: OBBScan

Hey I know it’s been awhile since I posted. I’ve been spending my free time training up for a new company. I recently came across this great site called Open Bug Bounty which allows you to enter in domains and see if there are any known vulnerabilities for it. Also it will tell you if it’s 760-780-3028

General, Info Sec 7-February-2017 .NetRussell No comments

503-666-7272

I’m a firm believer in understanding by doing. I wrote this nifty little SMTP enumeration tool and I wanted to share it. -> smtpenum /path/to/user_wordlist <target ip> <target port> That’s it, profit 🙂 Download Here    

General, Info Sec 7-February-2017 .NetRussell (847) 685-5111

(682) 255-5836

So as some of my readers will know, I recently failed my first attempt at the OSCP certification. What many of you probably don’t know however is that I’m a competitor. Born from the flames of hell of Basic Training, was my hunger for competition and challenge. So clearly, I will NOT take this loss […]

General, Info Sec 28-December-2016 .NetRussell One comment

PWK Review

Well it’s been a solid 60 days of everything PWK. I’ve buffer overflowed, injected and weeped at my desk at 3am. #Complete I’m happy to say that this was a EXTREMELY educational experience. It was painful, but educational. So here’s the breakdown of how it went. My background: One thing that I did, like many […]

General, Info Sec 23-November-2016 .NetRussell No comments

7052349380

Well I know it’s been a few weeks since my last post and I just wanted to provide an update. Since my last post, I have begun my Offensive Security PWK Course and I’m burning right through it. Currently I’m 3 weeks into the course and I’m planning on wrapping the book up in a (702) 575-7526

Lea, Info Sec 15-September-2016 .NetRussell No comments

unpractice

  Well this simple task of reproducing a Metasploit exploit is turning out to be a HUGE learning experience. To quickly recap. We want to brute force an Apache Tomcat 5.5 servers login. Then use those credentials to upload a malicious payload to Tomcat which will then be executed to give us a shell into 3239455442

Book Review, 8183785747, 402-875-1143 13-September-2016 .NetRussell One comment

(214) 443-0484

  So after my last post about getting into Tomcat with Metasploit I decided that Metasploit was fun to mess with but if I actually want to learn then I needed to actually do what Metasploit was doing for me. In order to do this I had two major goals. First, I needed to brute […]

(253) 697-4705, General, (573) 844-3752 30-August-2016 .NetRussell No comments

646-912-4522

Well I have finally pulled the trigger. I’ve decided that I am ready to start moving toward the security side of things. I think this is a natural step for me given how interested I am in 1. security and 2. breaking things to see how they work. I’m excited to finally start on the […]

General 7-May-2016 .NetRussell One comment

Stir Trek 2016!

Just as fast as it came, it is over again… I can’t believe Stir Trek is done. Stir Trek is by far one of my favorite conferences each year. This was my fourth year attending. It’s packed with great sessions, it’s cheap, and you get a free movie at the end! What else more could you […]

4138246544, 5099218454 5-May-2016 .NetRussell No comments

207-921-0360

Alright folks, this is the good one. Transistors are the backbone of the modern world. Arguably, the single most important invention of the 20th century. I would challenge anyone to find a single complex (or even simple) electronic device that doesn’t use this component. Master it and take one step closer to walking on the proverbial 4104487977

Arduino, General, Hardware 21-April-2016 .NetRussell (631) 268-8704

4806328956

Anyone that knows me knows I love a good hardware hack. The thing about working with hardware, especially hardware that you didn’t build, is that it isn’t always easy to figure out what lines go to what and where you need to tap your project into.   Saleae Logic 4 to the rescue. This logic 910-327-8451

Book Review, (321) 863-1140 17-April-2016 .NetRussell No comments

Evil Genius Series – Section 2

Section #2 – Resist If You Must Understanding what resistance is, is just as fundamental as understanding what voltage and current are. In fact, they are all related! Reference Ohms Law It’s hard to mention resistance without mentioning Ohms Law, which is why it astonished me that this section doesn’t even reference it once…. Voltage […]

Book Review, Hardware 17-April-2016 .NetRussell No comments

(612) 359-5167

Electronic Circuits For The Evil Genius   After having worked with Arduino and Raspberry Pi for the last few years, I have decided to step my game up and start working with raw electronics. What better way to learn than to blog about it as I go through this book I picked up! The disclaimer vulgar fraction

General 14-April-2016 .NetRussell 617-326-5802

Comfort Zones Are Killing You

I don’t think anyone is immune to it. It’s a not so silent killer. I suffered from it like many people do. Its ugly name? Comfort Zone-itis. Catch it and be doomed to phrases like “I hate that new technology X” and “Why learn language Y when I can do it in C”. For me […]

General 14-April-2016 .NetRussell 858-997-8817

What do you NEED?

I am one of the fortunate sons in our field. I was lucky and ended up at a software company in North East Ohio that is one of the best in the world. With year over year growth and a very progressive culture, there is something that our company is doing right. With well over […]

214-522-7070 14-April-2016 .NetRussell (989) 888-8260

Is it done yet? Fail To Plan…

One of the common problems many developers have, regardless if they are working on a personal project, working on a team or even working in the enterprise environment, is answering the question “When is it done?” If you have spent more than a day around anyone in this field you are likely to have heard […]

General 14-April-2016 .NetRussell No comments

616-224-1392

All men (and I am assuming women) want to leave a legacy. We all want to be remembered for doing something great in this world. We have all experienced the want to change the world. There isn’t a child I know that doesn’t admire firemen, policemen or astronauts at some point in their life. They (585) 663-1993