Haroon Rehman

OffensivePentesting.ctd Game Zone Game Zone Learn to hack into this machine. Understand how to use SQLMap , crack some passwords , reveal services using a reverse SSH tunnel and escalate your privileges to root! Recon Recon nmap -sV -sC -T4 -Pn 10.10.25.213   Starting Nmap 7.92 ( https://nmap.org ) at 2022-03-29 19:27 PKT Nmap scan report for 10.10.25.213 Host is up (4.0s latency). Not shown: 998 closed tcp ports (reset) PORT   STATE SERVICE VERSION 22/tcp open  ssh     OpenSSH 7.2p2 Ubuntu 4ubuntu2.7 (Ubuntu Linux; protocol 2.0) | ssh-hostkey:   |   2048 61:ea:89:f1:d4:a7:dc:a5:50:f7:6d:89:c3:af:0b:03 (RSA) |   256 b3:7d:72:46:1e:d3:41:b6:6a:91:15:16:c9:4a:a5:fa (ECDSA) |_  256 53:67:09:dc:ff:fb:3a:3e:fb:fe:cf:d8:6d:41:27:ab (ED25519) 80/tcp open  http    Apache httpd 2.4.18 ((Ubuntu)) |_http-server-header: Apache/2.4.18 (Ubuntu) |_http-title: Game Zone | http-cookie-flags:   |   /:   |     PHPSESSID:   |_      httponly flag not set Service Info: OS: L...

OffensivePentesting.ctd Vulnversity Vulnversity Learh about active recon, web app attacks and privilege escalation Reconnaissance Reconnaissance nmap -T4   -sV 10.10.231.79    Starting Nmap 7.92 ( https://nmap.org ) at 2022-03-22 14:57 PKT Nmap scan report for 10.10.231.79 Host is up (0.26s latency). Not shown: 994 closed tcp ports (reset) PORT     STATE SERVICE     VERSION 21/tcp   open  ftp         vsftpd 3.0.3 22/tcp   open  ssh         OpenSSH 7.2p2 Ubuntu 4ubuntu2.7 (Ubuntu Linux; protocol 2.0) 139/tcp  open  netbios-ssn Samba smbd 3.X - 4.X (workgroup: WORKGROUP) 445/tcp  open  netbios-ssn Samba smbd 3.X - 4.X (workgroup: WORKGROUP) 3128/tcp open  http-proxy  Squid http proxy 3.5.12 3333/tcp open  http        Apache httpd 2.4.18 ((Ubuntu)) Service Info: Host: VULNUNIVERSITY; OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) sca...

Principles of Security Principles of Security Introduction It outlines some Fundamentals of InfoSec. The measuers, frameworks and protocols that we will discuss, all play small part in “Defence in Depth” Defence in Depth is the use of multiple varied layers of security to protect Organisation's system. The CIA Traid InfoSec model used in the making of Security Policies. This model has an old background dating from 1998/ Reason for its old background is InfoSec is not just about CyberSecurity, it also applies to scenarios like filing record storage etc. It consist upon three sections, C onfidentiality,  I ntegrity and  A vailability ( CIA ), it is Industry Standard model right now, it helps to understand the value of data it applies to and the attention that the data need from the bussiness Unlike traditional models where you have individual sections, It is continous cycle. Confidentiality This element is the protection of data from unauthorized access and misuse. ...

Pentesting Fundamentals Pentesting Fundamentals What is PenTesting Ans: Finding the Vulnerability in the system and using the right mitigations is known as PenTest. A Pentester will use the same waepons and tactics just like an Black hat hacker use. According to Security Magazine , a cybersecurity industry magazine, there are over 2,200 cyber attacks every day - 1 attack every 39 seconds. https://www.securitymagazine.com/articles/87787-hackers-attack-every-39-seconds Penetration Testing Ethics Hat Category Description Example White Hat These hackers are considered the "good people". They remain within the law and use their skills to benefit others. For example, a penetration tester performing an authorised engagement on a company. Grey Hat These people use their skills to benefit others often; however, they do not respect/follow the...