Tag: Penetration Testing

• PRTG < 18.2.39 Command Injection Vulnerability

  This post is as much about the penetration testing process and mindset as it is about the vulnerability I discovered in a network monitoring program called PRTG Network Monitor. This vulnerability was discovered and reported to Paessler AG, the company that develops the application. I agreed to wait at least 90 days to disclose the…

  Josh Berry

  June 25, 2018

  Penetration Testing

  CVE-2018-9276, Penetration Testing, PRTG

• Burp with Android Studio Nougat AVD

  I needed to setup some new systems for mobile application penetration tests at the start of January and part of this process includes importing Burp’s certificate for traffic interception. I have set this up in the past but it seems to change fairly regularly with newer versions of Android emulators. I installed the latest version…

  Josh Berry

  January 23, 2018

  Android, Burp, Windows

  Android, Android Studio, Burp Suite Pro, Mobile App Pentesting, Nougat, Penetration Testing

• Password Spraying with a Twist

  I have read some good posts on password spraying over the past few years, along with reviewing and using a few tools to perform this type of attack. For reference, Black Hills has a few good posts here, here, and here, and MDSec posted a cool article on Lync along with a tool here. I’ve…

  Josh Berry

  April 19, 2017

  Penetration Testing, PowerShell, Python

  Penetration Testing, PowerShell, Python

• Domain Fronting with Empire 1.6: Two Ways

  This is just a quick post to demonstrate how to use Domain Fronting (excellent info on this technique here, here, and here) with the current (non-beta) version of PowerShell Empire (Empire). This post is specific to Empire 1.6. Empire version 2.0 is beta, and has added native support for Domain Fronting. More information can be…

  Josh Berry

  March 23, 2017

  Penetration Testing, Phishing, Social Engineering

  Cloudfront, Domain Fronting, Empire, Google App Engine, Penetration Testing

• SideStep: Another AV Evasion Tool

  A few years ago I was working on a basic penetration test and came across a remote code execution vulnerability. I tried using Metasploit to deliver a payload but it became evident that the host’s antivirus software was removing the executable. See this article as a reference. This was shortly after the initial release of…

  Josh Berry

  June 24, 2015

  Metasploit, Penetration Testing, Python, Windows

  AV Evasion, CryptoPP, Hyperion, Metasploit, Meterpreter, msfvenom, peCloak, Penetration Testing, Python, Shellcodeexec, Veil, Visual, Windows

• Gophishing Update – Enhanced Clickthrough and More

  I’ve released a new version of Gophish.py. The update includes: Fixed a bug in rewriting the method attribute in phished forms Fixed a bug with GET based forms Fixed a bug in the autofill option, fixed the demo/sample file accordingly Fixed a bug where links were rewritten when using ‘javascript:…’ Fixed some bugs regarding correctly…

  Josh Berry

  February 26, 2014

  Penetration Testing, Phishing, Python, Social Engineering

  Penetration Testing, Phishing, Python, Social Engineering

• GoPhishing Update – Clickthrough and Redirection Support

  I’ve released a new version of Gophish.py. The update includes: Added comments explaining my ugly code. cleaned up some code with a function, removing some redundancy. Some bug fixes. The main fix is for an issue I found in certain cases when running it on Linux. Sometimes BeautifulSoup would change the order of the HTML…

  Josh Berry

  January 10, 2014

  Penetration Testing, Phishing, Python, Social Engineering

  Penetration Testing, Phishing, Python, Social Engineering

• Follow Up on DEP and AV Bypass

  This is a continuation of research based on my adventures on a penetration testing engagement described here. There were a few key features that I really wanted to add to enhance my DEP/AV bypass tool: Bypass a majority of AV systems Remove the dependency on the msvcr100d.dll file Combine the Metasploit payload in the shellcodeexec…

  Josh Berry

  November 5, 2013

  Metasploit, Penetration Testing, Windows

  CodeBlocks, CryptoPP, Hyperion, Metasploit, Meterpreter, msfencode, msfpayload, Penetration Testing, PyInjector, Shellcodeexec, Veil, VirusTotal, Visual Studio, Windows

• GoPhishing Update – Autocomplete and More

  I’ve updated the gophish script discussed here and here. This update includes the following features and fixes: Fixed an issue where redirections would occur immediately upon access Added option to pass in your own log file as an argument Smart(er) redirects Autocomplete Support The original script did not expect the link being accessed by the…

  Josh Berry

  October 26, 2013

  Penetration Testing, Phishing, Python, Social Engineering

  Penetration Testing, Phishing, Python, Social Engineering

• Adventures in Penetration Testing: Let’s Go Phishing – Update

  Please see the original article for more information about this phishing script. This is just a minor update to some functionality that I added over the weekend. I haven’t hooked BeEF in yet, but I have added Metasploit, which can be nice. The updated version, which can be found here, can be tied into Metasploit’s…

  Josh Berry

  October 19, 2013

  Metasploit, Penetration Testing, Phishing, Python, Social Engineering

  Metasploit, Penetration Testing, Python, SET, Social Engineering