Mattia Campagnano

Mattia Campagnano

Saturday, April 30, 2016

Privilege escalation with Windows 7 SP1 64 bit

This post follows up from where we had left off with the Social Engineer Toolkit. I'm going to perform a privilege escalation on Windows 7 SP1 64 bit.

With SET, I could successfully exploit the system, but I couldn't become system administrator, which limited my chances of a successful exploitation.

I couldn't get a privilege escalation through getsystem.

Solution (for a clearer understanding of these steps, please refer to the embedded video tutorial)



Thursday, April 28, 2016

How to hack Windows 7 SP1 64-bit with Social Engineer Toolkit (SET)

This post is a follow up to my previous one Don't click that file! How to hack Windows XP SP3 with an msfvenom payload, where I successfully hacked Windows XP SP 3 by using a custom exploit.

This time, we're going to hack Windows 7 64 bit SP1. For this purpose, I used a Kali Linux v.2 64 bit virtual machine (attacker machine) and a Windows 7 SP 1 64-bit virtual machine (victim machine).

We're gonna build an exploit by using the Social Engineer Toolkit, developed by my boss, Dave Kennedy, who founded the company I'm currently working with (cheers, man, hope to see you soon).
Steps

Wednesday, April 20, 2016

Create an OS X El Capitan USB installer without third-party tools


Like I've previously explained, Macs don't come with a bundled Install DVD anymore.
This can cause problems if you have to re-install OS X, as Internet Recovery is very slow, or, at times, doesn't work over Wi-Fi for older Macs.

However, you can create an USB installer through Terminal, without installing any third-party software.

Steps:
  1. Format a USB drive, at least 8 GB large, choosing the OS X Journaled file system.
  2. Call it MyVolume (you can also name it differently, but if so you'll have to change the following command accordingly):
  3. That done, launch the following command from Terminal:   
sudo /Applications/Install\ OS\ X\ El\ Capitan.app/Contents/Resources/createinstallmedia --volume /Volumes/MyVolume --nointeraction --applicationpath /Applications/Install\ OS\ X\ El\ Capitan.app

All the system files will be copied to the drive and this will require a while.

The command will hang until the operation is completed, so grab a tall coffee mug, or go for a walk until it's done.

That's what it looks like when the installer is ready to go.

At this point, you can boot from your installer and re-install OS X.

Be advised your USB installer might occasionally not show up in Startup Disk.

However, it'll surely be shown when pressing ALT at boot-up.

Wednesday, April 6, 2016

A checklist to prevent data scraping from your server

Scenario

If your server isn't properly secured, an attacker can target it with automated scrips in order to scrape data from it.

Your business could face loss of confidential information and potential lawsuits.

Luckily, you can implement technical solutions for you to eliminate, or at least mitigate, this problem.


Solutions

Tuesday, April 5, 2016

How to keep ransomware out of your network

Scenario 

In my previous post Bye-bye Ransomware! ACYA later! , I had analyzed the ransomware problem by mostly focusing on home users.

However, ransomware has started becoming a severe threat in corporate environments, too.

A hospital has been recently attacked by ransomware, but its administration refused to pay the ransom, because they had an efficient backup policy in place and were able to shut down the infected system and keep their primary systems going.

Possible scenarios start being scary and the latest incident made it clear (should there be any doubts) these scumbags would do anything to achieve their goals.


Monday, April 4, 2016

How to rename a (local) user account in Windows 10

Before Windows 10, it was possible to rename a user account by right-clicking its folder under C:\Users.

Windows 10 has made this process much more elaborate.

Sunday, April 3, 2016

Windows 10 to include Bash. Should you care? I don’t.

Microsoft has announced on March 30, 2016 at its annual Build Developer Conference that Windows 10, with the coming updates, will support bash  commands.

For all it seems, Microsoft will support a Linux subsystem – not a virtual machine – based on Ubuntu 14:04 LTS.

Many people started wondering what the impact of this news will be.


Related Posts Plugin for WordPress, Blogger...

Contact Form

Name

Email *

Message *