access-control

Confining Resources inside Docker Containers with AppArmor

Can docker containers be protected via AppArmor? Well yes, they can and in fact, they are already being protected by apparmor in your serves. Learn more about how docker and apparmor works and make your existing docker setup more secure

apparmor

Writing AppArmor Profile from Scratch

Get a detailed walkthrough about writing the profile for a custom binary from scratch using AppArmor utilities like aa-genprof and aa-autodep

access-control

Disallowing CAP_NET_RAW Capability for Root User using AppArmor

Is root the ultimate user in Linux? You will get the answer to this question in a post by confining the cap_net_raw for ping command using AppArmor

linux

Understanding AppArmor Kernel Enhancement

AppArmor is an old, yet powerful security feature introduced in the Linux kernel in the late '90s to control resources for running programs rather than users. It can be used to easily mitigate the damage caused by adversaries. Learn the basics of the AppArmor and its components

python

Introduction to Tensors in Pytorch #2

In this second part of the tensor with PyTorch, I will guide you through some advanced operations on the tensors and matrices from slicing to matrix multiplication or vector operations

maths

Introduction to Tensors in Pytorch #1

Tensors are the building block of neural networks and are used to represent the data in form of numbers. In this post you will learn the basics of tensors like declaring, types and shapes

csharp

Encrypted TCP Command and Control

Learn how to perform command and control under the radar using the encrypted tunnel in such a way the keys are exchanged dynamically over the network leaving no trace on the system. and also bypassing the windows defender and other anti-malware or NIPS/NIDS services like Snort.

bruteforce

Smartly Detect and Crack Password Hashes using JohnTheRipper

No doubt hashcat is a good tool but what if you want to crack the encrypted document files like pdf or archive zip and smartly detect the hash type. John the ripper at your disposal for such things. You will learn about the basics of the JohnTheRipper suite in this post.

bruteforce

Brute forcing Password with Hashcat Mask Method

Take a step further in hashcat bruteforcing and learn how to perform a mask attack on the password length when provided the minimum and maximum length and charset of the passwords

metasploit

Exploit WebDAV using Metasploit

WebDAV is an extension to the HTTP protocol that allows users to upload, move or change the documents on the server via HTTP verbs. In this post learn how to exploit WebDAV using Metasploit

csharp

Execute Unmanaged Code via C# PInvoke

An unmanaged code is one that is written outside the DotNet framework which is allowed to be executed at runtime. In this, you will learn how to use C# and DotNet to execute a shellcode crafted from Metasploit.

networking

Writing Connect Back TCP Shell in C#

Connect back shell allows attackers to bypass the firewall by making the client connect to the malicious server. Learn how to implement such a server in CSharp language to perform C&C

cryptography

Cracking Passwords using Hashcat

In the infosec, password cracking is considered as the easiest part given that the encrypted password exists in the wordlist and you are patient enough to wait. Learn basics of the hashcat password cracking tool and how to prevent from being the target of password attack

linux

Attack Defense Privilege Escalation CTF Walkthrough

Get a detailed walkthrough on the Linux privileged escalation CTF brought to you by the attackdefence platform.

containers

Container Host Breakout – Part 2

This is part 2 of container host breakout where you will learn how to interact with low-level APIs and other OCI tools like containerd to escalate to the root user.

linux

Container Host Breakout – Part 1

Understand how the docker demon running on the remote system or managed service like portainer could be a security risk that should be avoided to prevent the entire infrastructure take over

linux

Container Breakout – Part 1

Learn the advanced techniques like inter-process communication, abusing Linux capabilities and process injection to break out of an isolated docker container

linux

Container Breakout – Part 2

How about injecting the kernel modules and overwriting the files of the host from the "isolated" containers? Learn how to abuse extra capabilities provided to the container and break out of the isolation.

linux

Understanding Container Architecture

Docker containers are widely used in the deployment of moderns apps. In this post, you will learn the concept of containerizing, the security mechanism used by the docker community and how to interact with container via docker

linux

Exploiting Linux Capabilities – Part 6

Learn the basics of process injection and kernel modules. Build your own rootkits to exploit cap_sys_ptrace and cap_sys_module capabilities in the Linux kernel

linux

Exploiting Linux Capabilities – Part 5

Learn the basics of networking and how to perform privileged tasks when you have special network capabilities: cap_net_raw, cap_net_bind_service and cap_net_admin

linux

HTB Knife Walkthrough

Get a quick walkthrough of the Knife machine provided by hack the box and learn how I owned the machine in less than 10 minutes

linux

Exploiting Linux Capabilities – Part 4

Learn about Linux file capabilities like cap_fowner, cap_setfcap, cap_dac_override and cap_linux_immutable and how to exploit these in order to read privileged files or get the root user shell

linux

Exploiting Linux Capabilities – Part 3

In this post you will learn how to exploit the capabilities often provided to a sysadmin for example cap_sys_admin, cap_sys_time, cap_kill and cap_chown

linux

Exploiting Linux Capabilities – Part 2

Learn about dac_read_search and dac_override capabilities and how to exploit them in different programs to get the root user access in linux