Tag: Python

• Password Spraying with a Twist

  I have read some good posts on password spraying over the past few years, along with reviewing and using a few tools to perform this type of attack. For reference, Black Hills has a few good posts here, here, and here, and MDSec posted a cool article on Lync along with a tool here. I’ve…

  Josh Berry

  April 19, 2017

  Penetration Testing, PowerShell, Python

  Penetration Testing, PowerShell, Python

• SideStep: Another AV Evasion Tool

  A few years ago I was working on a basic penetration test and came across a remote code execution vulnerability. I tried using Metasploit to deliver a payload but it became evident that the host’s antivirus software was removing the executable. See this article as a reference. This was shortly after the initial release of…

  Josh Berry

  June 24, 2015

  Metasploit, Penetration Testing, Python, Windows

  AV Evasion, CryptoPP, Hyperion, Metasploit, Meterpreter, msfvenom, peCloak, Penetration Testing, Python, Shellcodeexec, Veil, Visual, Windows

• SQLiPy: A SQLMap Plugin for Burp

  I perform quite a few web app assessments throughout the year. Two of the primary tools in my handbag for a web app assessment are Burp Suite Pro and SQLMap. Burp Suite is a great general purpose web app assessment tool, but if you perform web app assessments you probably already know because you are…

  Josh Berry

  September 22, 2014

  Burp, Linux, Penetration Testing, Python, Unix, Windows

  Burp Suite Pro, Java, Jython, Linux, Python, sqlmap, Web App Pentesting, Windows

• Java Fat Client Penetration Testing and JNLP Auto-Downloads

  I was recently asked to perform an application penetration test of a Java based fat client. The application used JNLP and communicated with a backend web service. The steps for this are documented elsewhere, but as a brief guide they require: Loading the JDSer-NG plugin for Burp Configuring Java to proxy through Burp Downloading all…

  Josh Berry

  August 13, 2014

  Burp, Penetration Testing, Python

  Burp Suite Pro, Java, Python

• Gophishing Update – Enhanced Clickthrough and More

  I’ve released a new version of Gophish.py. The update includes: Fixed a bug in rewriting the method attribute in phished forms Fixed a bug with GET based forms Fixed a bug in the autofill option, fixed the demo/sample file accordingly Fixed a bug where links were rewritten when using ‘javascript:…’ Fixed some bugs regarding correctly…

  Josh Berry

  February 26, 2014

  Penetration Testing, Phishing, Python, Social Engineering

  Penetration Testing, Phishing, Python, Social Engineering

• GoPhishing Update – Clickthrough and Redirection Support

  I’ve released a new version of Gophish.py. The update includes: Added comments explaining my ugly code. cleaned up some code with a function, removing some redundancy. Some bug fixes. The main fix is for an issue I found in certain cases when running it on Linux. Sometimes BeautifulSoup would change the order of the HTML…

  Josh Berry

  January 10, 2014

  Penetration Testing, Phishing, Python, Social Engineering

  Penetration Testing, Phishing, Python, Social Engineering

• Directory Traversal to Root

  I’ve had some success in the past when finding directory traversal vulnerabilities on Linux/Unix hosts and thought I would share a little post on what I’ve found. The vulnerabilities are often found in the unauthenticated portions (convenient) of management applications such as Webmin or ColdFusion and are frequently running with elevated privileges. The first step…

  Josh Berry

  December 28, 2013

  Linux, Metasploit, Penetration Testing, Python, Unix

  DotDotPwn, Linux, Metasploit, Panoptic, Python, Unix

• Follow Up on SYSTEM to Domain Admin Post

  I learned a few new things and made a few updates to my script after the last post that I thought I would share. First things first, someone commented on the article on another site and mentioned that the Metasploit module auxiliary/scanner/smb/smb_enumusers_domain provides the same functionality over SMB by calling the Windows NetWkstaUserEnum function. Example…

  Josh Berry

  December 21, 2013

  Metasploit, Penetration Testing, Python, Windows

  Metasploit, Meterpreter, Python, Veil

• GoPhishing Update – Autocomplete and More

  I’ve updated the gophish script discussed here and here. This update includes the following features and fixes: Fixed an issue where redirections would occur immediately upon access Added option to pass in your own log file as an argument Smart(er) redirects Autocomplete Support The original script did not expect the link being accessed by the…

  Josh Berry

  October 26, 2013

  Penetration Testing, Phishing, Python, Social Engineering

  Penetration Testing, Phishing, Python, Social Engineering

• Adventures in Penetration Testing: Let’s Go Phishing – Update

  Please see the original article for more information about this phishing script. This is just a minor update to some functionality that I added over the weekend. I haven’t hooked BeEF in yet, but I have added Metasploit, which can be nice. The updated version, which can be found here, can be tied into Metasploit’s…

  Josh Berry

  October 19, 2013

  Metasploit, Penetration Testing, Phishing, Python, Social Engineering

  Metasploit, Penetration Testing, Python, SET, Social Engineering