tankmek 
Disclaimer: A Root CA trusted by Active Directory should not be trivialized. Make sure you know what you are doing when working with PKI. Take the time to study the technology before implementing it in production environments. There hasn’t been any extensive testing of this setup, so your mileage may vary. I have a pfSense Security Gateway … Read more
Crafting your own shellcode requires getting muddy with low level programming. One does not simply write machine code from memory. This blog post is my attempt at providing a template and tutorial of the shellcode creation process for a 32-bit Linux machine. The first step we will take is to write the task we want … Read more
Before we begin let us enable Services for NFS and both Sub Features. The typical way you will see an NFS share mounted in Windows involves mounting the remote file system using the anonymous (anon) user: mount -o anon \\192.168.28.155\mnt\NAS0\media G: This will give you read only access based on the configured permissions of the … Read more
If you manage servers with OpenSSH access, you have no doubt been subject to the barrage of ssh brute-force attempts that occurs across the internet. Some administrators deal with this by either changing the default port (security by obscurity), utilizing public keys, threshold blocking, or white-listing source IP addresses among other things. AWS has security … Read more
Setting up a Pi to be a centralized log store is amazingly simple. If you are using Raspbian it comes with rsyslog installed by default, so all that’s left is to setup the config and tailor log rotation. First, you should create a directory under /var/log for all the remote logs. sudo mkdir /var/log/central Then edit the … Read more
Let us take a tour through a disassembly dump of an ELF binary and see if we can reverse engineer it. The following output is a result of: mech@dev:$ gcc -o distut distut.c mech@dev:$ objdump -d distut|grep main The reader is assumed to be familiar with the above output. I have removed the memory addresses … Read more
Flashing a raid card to a different firmware takes about five minutes, however if you have never done it before, the research process can be an order of magnitude higher. I spent about a day parsing all the blogs, forum posts, and subreddits that discuss flashing the LSI9211 HBA firmware to IT mode on compatible … Read more
If you are involved with crypto currency you are bound to be exposed to a scam or two at some point, much like the Nigerian scams that prey on fiat money. I was looking at my twitter feed and noticed the Binance weekly report. The interesting thing I noticed in the reply section was an apparent … Read more
I have been running my own Domain Name Server for several years. Some people argue the merits of doing such a thing when you can just put it in the “cloud”, but I enjoy managing DNS with all the flexibility and enrichment it brings. I run Bind version 9 in a FreeBSD Jail and it … Read more
So I figured it was about time I started my foray into the blog-o-sphere. Hold your beer while I get organized and squeeze content out to the masses.