Offensive Security PEN-300 Evasion Techniques and Breaching Defenses - Course and Exam Review

You know, OffSec describes the OSEP as: “Evasion Techniques and Breaching Defenses (PEN-300) is an advanced penetration testing course”. I don’t know how advanced it is, if I can pass, lol. I gener...

Feb 17, 2022 blog, certifications, cybersecurity, hacking, infosec, offensive security, offsec, security

Update: Hacking MotionEye - CVE-2021-44255

I was given CVE-2021-44255 for this - authenticated RCE via a malicious tasks (python pickle) file. So that’s fun. Even though it is authenticated, the default username is admin and the default pas...

Jan 31, 2022 CVE

Sharpshooter, Python2.7, and Pip2 Installation

Newer versions of Linux may not come with any sort of Python 2 installed. I recently wanted to run Sharpshooter, which is a “payload creation framework for the retrieval and execution of arbitrary ...

Dec 22, 2021 certifications, coding, cybersecurity, hacking, infosec, linux, offensive security, offsec

Client Side Template Injection, huh?

I ran into this maybe two years ago and I didn’t even know it was a thing. I was actually trying to order some food (🍕) online and I noticed I could see the braces of a template being used. I’m no...

Dec 14, 2021

Learning Go By Writing a POC for Gitlab CVE-2021-22205

I’ve been wanting to learn Go, and I learn by doing, so I decided to write a POC for CVE-2021-22205, which is fairly straightforward RCE in Gitlab that dropped a few weeks ago. My process in develo...

Nov 25, 2021 blog, coding, CVE, cybersecurity, golang, hacking

Tesla Solar, Powerwalls, Docker, Python, and Crypto Mining

I had Tesla solar panels and Powerwalls installed several weeks ago. I currently don’t have permission to operate (PTO) from my electricity provider, which means I can’t ship any of my surplus powe...

Nov 9, 2021 blog, coding, docker, linux, powerwall, python, solar, tesla

Hacking MotionEye/MotionEyeOS

Getting Started with MotionEye MotionEye is an open source, web-based GUI for the popular Motion CLI application found on Linux. I’ve known of the Motion command line app for years, but I didn’t ...

Oct 9, 2021 blog, coding, cybersecurity, security, self hosting

Docker Compose - Plex with Plex Pass, Jackett, Sonarr, Radarr, Lidarr, qBittorrent, and PIA

Update: Now with prowlarr, too. This docker-compose-yml file will run all of these services. This post assumes that you have a little technical knowledge already and that you have Docker and Docke...

Sep 19, 2021 blog, linux, self hosting, torrents

Free Bitcoin - Simple 'Malware' Analysis

I received a very enticing email promising free bitcoin from Ronald Green. No body. Just an attachment – “Free Bitcoin - 5385c.html”. My first thoughts, before actually looking closely at the name...

Sep 16, 2021

Quick and Easy (and not the best) way to use HTTPS with qBittorrent and Firefox

Wanna use HTTPS with your qBittorrent WebUI, but don’t know how? First off, you probably shouldn’t expose the qBittorrent WebUI to the internet. Use Wireguard to tunnel into your home network, and ...

Aug 18, 2021 security, self hosting, torrents