LazySysAdmin: 1 – Vulnhub Writeup


Another fun looking boot2root vulnhub VM that came out in in last months large batch release!  This one is supposedly inspired by the author failing the first OSCP attempt (maybe it will offer clues so I won’t meet a similar fate later this month?).

Let’s start off with the usual scan to confirm the target’s IP assigned on the network. Continue reading “LazySysAdmin: 1 – Vulnhub Writeup”

RickdiculouslyEasy: 1 – Vulnhub Writeup


It’s been a while since I’ve done a full writeup so figured I was due for posting another one.  Mainly I’ve been working through as many HacktheBox Windows machines as possible in preparation for the OSCP exam (I think I’m finally getting somewhat decent at Windows priv-esc).

Vulnhub just posted a bunch of new VMs, though, and I couldn’t resist doing a Ricky & Morty themed challenge.  🙂  There will be a series of flags totaling 130 worth of points…so let’s see if we can get them all!

Ooooooh yeah! Cannnnnnn doooo!

Continue reading “RickdiculouslyEasy: 1 – Vulnhub Writeup”

OSCP Study Progress – October 2017

This is meant to be a personal log of study progress toward OSCP certification.

Lab Progress: 15 days of lab time goes by very quickly!  I have two days left and am feeling pretty good about the amount of practice I’ve got from the labs so far.  There was a fair amount of overlap between them and some of the Vulnhub VMs I’ve done, but as I said in some previous notes I was definitely lacking in experience in Windows machines as well as more “real world” hacking techniques.  Things like pivoting and using captured credentials to log in to other locations within the network aren’t things you’re exposed to in the VMs either.  I’d really like to hone my ability to gain persistence on machines and also get some more experience with Windows priv-esc.  More practice with buffer overflow attacks would definitely help too…

Kioptrix: Level 1.3 (#4) – Vulnhub Writeup


4th in the series now of Kioptrix (1 to go!).  I’ll be concluding the reading/video portion of OSCP studying soon and will be doing a lot of practice in the online labs so this may be my last vulnhub VM in a while.  These have been a great learning experience and I’m looking forward to doing the next one soon!

To get this started, we’ll do the usual nmap host discovery scan.

nmap -sP

Continue reading “Kioptrix: Level 1.3 (#4) – Vulnhub Writeup”

Kioptrix: Level 1.2 (#3) – Vulnhub Writeup


The next one up in the Kioptrix series!  According to the Kioptrix 1.2 blog entry we will just need to make a quick modification to our hosts file to get the webapp working.  As far as getting this up in VirtualBox I didn’t have to do anything special except add the VMDK as a IDE hard drive.

Let’s go ahead and start with an nmap host discovery scan and then we can map the IP to “” as instructed in the post.

nmap -sP

Continue reading “Kioptrix: Level 1.2 (#3) – Vulnhub Writeup”

Kioptrix: Level 1.1 (#2) – Vulnhub Writeup


For this next vulnhub writeup in the Kioptrix series I’m going to try and stick to a couple ground rules to both keep difficulty up and to aid a little in my own person learning;

1.  No exploits used outside of a 30 day window of VM release date – in this case 11 Feb 2011

2.  Try to stick as much as possible to more manual exploit techniques.

With that let’s get started…

Start off as always with an initial host discovery scan via nmap:

nmap -sP

Continue reading “Kioptrix: Level 1.1 (#2) – Vulnhub Writeup”

Kioptrix: Level 1 – Vulnhub Writeup


I took a little break to try out (which I highly recommend!).  Unfortunately due to the member rules I won’t be posting any writeups for the vulnerable machines there.  Also ended up switching over to Arch Linux on my main lab workstation so that ended up consuming a lot of time getting setup again.

I’m planning on going through the entire series of Kioptrix Vulnhub VMs as they’re often recommended as additional practice for OSCP.  And with that…let’s get started on part 1 of the series!

Starting with the typical nmap host discovery scan to detect the IP:

nmap -sP Continue reading “Kioptrix: Level 1 – Vulnhub Writeup”

Ad-blocking in pfSense with DNSBL

I’m already a big fan of the browser extensions uBlock Origin (ad-blocking) and Ghostery (anti-tracking), but was looking to accomplish some (if not all) of what they do in a seamless way in pfSense.  This will be a work in progress but using DNSBL in pfSense I’ve begun by utilizing the following block lists:

All lists that are incorporated into pi-hole by default:

##StevenBlack’s list


Continue reading “Ad-blocking in pfSense with DNSBL”

TopHatSec: Fartknocker – Vulnhub Writeup


Today’s vulnhub challenge is Beavis and Butthead themed!  This will be another mystery VM for me…basically no knowledge of skill level or exploits required on this one.  I enjoyed another of TopHatSec’s VM challenges Freshly so am hoping this will be a good one as well.  Anyway, let’s get underway.

Continue reading “TopHatSec: Fartknocker – Vulnhub Writeup”

g0tmi1k: Stapler – Vulnhub Writeup


I came across this VM through a list of OSCP-like VMs on abatchy’s blog and decided to give it a try.  Other than that and the readme stating this is a “beginner/intermediate’-level VM, I don’t know much else about it so let’s get to it!

A quick host discovery scan to detect the victim’s IP:

nmap -sP

Continue reading “g0tmi1k: Stapler – Vulnhub Writeup”