Author : Hemp

IT and security Expert with 20+ Years of Experience. _______________________________________________________ With over two decades of experience in the dynamic field of Information Technology and security, I have honed my skills to become a leading expert in safeguarding digital landscapes. My passion for technology and an unquenchable thirst for knowledge have driven me to stay at the forefront of the ever-evolving IT industry.

Setup a Hacking lab

One of main problems I found when starting to hack was finding vulnerable targets to attack and hone your skills, these targets can be anything from virtual machines to repurposed hardware. You can then take these skills you have learnt and use them in the wild with a better understanding of what your actually doing and if you break any thing its no bother, you can just quickly restore from a snapshot or just re-format the box. So go dig…

NMap 101

NMap short for Network Mapper is as the name suggests a tool used for mapping a network, but one of the great features is that it shows all the open ports, what services are running on the ports and all sorts of custom outputs. Most versions of Linux I have used already have had nmap install by default, if not then you can easly install it by using the following command straight in your terminal. sudo apt-get…

Magic Unicorn V 2.0 PowerShell Downgrade Attack

Magic Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory based on Matthew Graeber’s powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and josh Kelly at Defcon 18. Usage is simple, Just run Magic Unicorn (ensure Metasploit is installed and in the right path) and magic unicorn will automatically generate a powershell command that you need to simply cut and paste the…

Netcat 101

I hear a lot about Netcat being a Swiss army knife for TCP/IP and i wanted to find out, what you can actually do with it. I will continue to add to this page so check back often. Netcats Wikipedia page says “Netcat (often abbreviated to nc) is a computer networking service for reading from and writing to network connections using TCP or UDP. Netcat is designed to be a dependable back-end that can…

Using Microsoft Tools To Dump Password Hashes

Surprisingly Microsoft supplies you the tools that allow you to dump the lsass.exe and then you can use Mimikatz on the dump file to get a shit load of goodies. Tokens, Plaintext cached domain credentials, etc. Download Psexec and Procdump Copy both the Psexec and Procdump zip files to the computer that you want to dump the lsass from and extract the contents of the zip file. open up command prompt and move to the folder where…

Scroll to top