• Home
Subscribe

The Better Ettercap... Bettercap!

The Better Ettercap... Bettercap!

Ryan Villarreal / July 20, 2019

Ettercap has not advanced enough to stay relevant with some of the newer protocols. Therefore, it would be nice to have a "better" Ettercap, and thus spawned the project Bettercap by @evilsocket.…

Read More

Tags: 802.1x802.11BettercapCommand LineHashcatPineappleWifiwirelessWPA
PlexTrac for Faster Report Writing!

PlexTrac for Faster Report Writing!

Ryan Villarreal / July 15, 2019

PlexTrac is the next generation platform for cybersecurity professionals. Workflow integrations and automated reporting make PlexTrac the last cybersecurity tool you will ever need.…

Read More

Tags: CloudCybersecurityJuiceShopOWASPPentestpenetration testReportingVulnerability Scanning
Koadic

Koadic

Ryan Smith / July 08, 2019

Koadic is a COM Command & Control tool used for Windows post-exploitation.…

Read More

Tags: C2Command and ControlJavaScriptLateral MovementPentestRed TeamingScans
ATT&CK

ATT&CK

Ryan Smith / July 02, 2019

An overview of MITRE's ATT&CK framework.…

Read More

Tags: Red TeamingBlue Team
Linux File Hierarchy Standard

Linux File Hierarchy Standard

Ryan Smith / June 11, 2019

A look at the various directories and subdirectories found on Linux.…

Read More

Tags: Linux
Bypassing Anti-CSRF with Burp Suite Session Handling

Bypassing Anti-CSRF with Burp Suite Session Handling

Ryan Villarreal / May 25, 2019

Using Burp Suite to bypass anti-CSRF protections with the built-in Session Handling and Macro recorder.…

Read More

Tags: burpsuiteweb appWeb TokenBypassCybersecurityDVWAKali ToolsOWASPPentestCSRFAnti-CSRF
Adding Burp Suite CA Certificate to Kali Linux Certificate Store

Adding Burp Suite CA Certificate to Kali Linux Certificate Store

Ryan Villarreal / May 25, 2019

Quick blog post to offer instructions on how to add a Burp Suite CA certificate to the Kali Linux CA Store.…

Read More

Tags: burpsuiteKali LinuxCACertificatesCommand Line
eLearnSecurity's Web Application Penetration Tester Review

eLearnSecurity's Web Application Penetration Tester Review

Ryan Smith / May 16, 2019

My thoughts on eLearnSecurity's Web App Penetration Testing course.…

Read More

Tags: web appRevieweLearnSecurityburpsuitepenetration testPentestTrainingeWPT
Newer Posts Page 2 of 9 Older Posts

About

Two cybersecurity professionals trying to get better at all things security.

Help support server costs!

Banner Ad

Latest Posts

  • Actually Using Covenant C2 and Not Just Installing It!
    February 19, 2020
  • Pwntools For Maximum Pwnage
    January 23, 2020
  • Building a Better WiFi Pineapple with Open Source Tools
    November 28, 2019

Authors

  • Ryan Villarreal
  • Ryan Smith
  • Bestest RedTeam

Tags

802.11802.11ax802.1xActive DirectoryAnti-CSRFAssemblyAutomateAutomationAWSBetaBettercapBGPBinaryBitcoinBloodhoundBlue TeamburpsuiteBypassbyt3bl33d3rC ProgrammingC2CACapture The FlagCertificatesCloudClusterCMECobalt StrikeCodingCommand and ControlCommand LineContainerCORSCrackMapExecCSRFCTFCybersecurityDebugDebuggerDetectionDockerDomain AdminDomain ControllerDVWAeLearnSecurityELFelkelkstackEnumerationeWPTExecutionPolicyExploitDevFreeRADIUSGDBghostGNUGNU RadioGoogle CloudGoPhishGraph TheoryHackingHackRFHashcatHijackingHTTPHTTP/2ImpacketInformation GatheringInternal NetworkInternet of ThingsJavaScriptJuiceShopJWTKali LinuxKali ToolsKerberosLateral MovementLinuxMerlinMicrosoftMicrosoft OfficeMiningNe0nd0gNeo4jNetworkingNULL SessionOffensive SecurityOffSecopen redirectOSCEOSWPOWASPpassword crackingpenetration testPentestPhishingPHPPineapplePixel TrackingPortainerPost ExploitationPowershellProtocolsPwntoolsPythonRadio FrequencyReconRed TeamingRed-BaronRedteamingReportingReviewRFRFCROPRopemporiumRTL-SDRS3SambaScansScapyScriptingService Principal NameServicesShodanSMBSMBClientSocial EngineeringSoftware Defined RadioSPNSwarmsysadminTerraformTerraformFunTrainingUUIDVulnerability Scanningwardrivingweb appWeb ApplicationWeb TokenWebAppWifiWiFuWiglewindowswirelessWPAXSS
Twitter GitHub
Opinions expressed are solely our own and do not express the views or opinions of our employers.