Comments for security.crudtastic.com http://security.crudtastic.com Security with added cheese Thu, 17 May 2012 19:02:30 +0000 hourly 1 http://wordpress.org/?v=3.3.2 Comment on Ash’s mental thoughts going into the OSCP exam by Dudley http://security.crudtastic.com/?p=213&cpage=1#comment-25528 Dudley Thu, 17 May 2012 19:02:30 +0000 http://security.crudtastic.com/?p=213#comment-25528 Where should I send my scan results to? Where should I send my scan results to?

]]> Comment on Ash’s mental thoughts going into the OSCP exam by Dudley http://security.crudtastic.com/?p=213&cpage=1#comment-25524 Dudley Thu, 17 May 2012 10:10:15 +0000 http://security.crudtastic.com/?p=213#comment-25524 That would be great if you don't mind giving me a second opinion. I'm sure I must have missed something. That would be great if you don’t mind giving me a second opinion. I’m sure I must have missed something.

]]> Comment on Ash’s mental thoughts going into the OSCP exam by ash http://security.crudtastic.com/?p=213&cpage=1#comment-25522 ash Wed, 16 May 2012 20:46:10 +0000 http://security.crudtastic.com/?p=213#comment-25522 Did you scan for both TCP and UDP, did you do some SNMP scans .. did you try throttling your nmap scans a bit? Did you version the services on the ports you found? You only need to scan the servers that they have provided you .. theres no other systems to go for. Did you want to email me your scans so I can see what you have and maybe give you some help? Did you scan for both TCP and UDP, did you do some SNMP scans .. did you try throttling your nmap scans a bit? Did you version the services on the ports you found?

You only need to scan the servers that they have provided you .. theres no other systems to go for.

Did you want to email me your scans so I can see what you have and maybe give you some help?

]]> Comment on Ash’s mental thoughts going into the OSCP exam by Dudley http://security.crudtastic.com/?p=213&cpage=1#comment-25519 Dudley Wed, 16 May 2012 10:12:34 +0000 http://security.crudtastic.com/?p=213#comment-25519 Yeah I did the course and thing I found was on exam that nmap scan yielded very few open ports. I'm sure the boxes had firewalls. I got one with a buffer overflow and nadda after that one :-( Should I have scanned for other hosts that weren't being scored possibly? Yeah I did the course and thing I found was on exam that nmap scan yielded very few open ports. I’m sure the boxes had firewalls. I got one with a buffer overflow and nadda after that one :-( Should I have scanned for other hosts that weren’t being scored possibly?

]]> Comment on Ash’s mental thoughts going into the OSCP exam by ash http://security.crudtastic.com/?p=213&cpage=1#comment-25518 ash Tue, 15 May 2012 20:59:34 +0000 http://security.crudtastic.com/?p=213#comment-25518 Have you done the actual course? There's practice boxes in the lab for you to attack which are very similar to the machines for the final exam. You need to scan all of your hosts, enumerate services, and then look at what vulnerabilities you can exploit. You may not be able to exploit a root vulnerability straight away, you may need to just get shell on the box and then do a local privilege exploit or something. Go back to your manual and have a look at the process outlined in there for the best way to crack these boxes. Just because you see something obvious, it doesnt mean that its the answer .. you may find yourself going down a path that wont produce any results. Have you done the actual course? There’s practice boxes in the lab for you to attack which are very similar to the machines for the final exam.

You need to scan all of your hosts, enumerate services, and then look at what vulnerabilities you can exploit. You may not be able to exploit a root vulnerability straight away, you may need to just get shell on the box and then do a local privilege exploit or something.

Go back to your manual and have a look at the process outlined in there for the best way to crack these boxes. Just because you see something obvious, it doesnt mean that its the answer .. you may find yourself going down a path that wont produce any results.

]]> Comment on Ash’s mental thoughts going into the OSCP exam by Dudley http://security.crudtastic.com/?p=213&cpage=1#comment-25517 Dudley Tue, 15 May 2012 10:10:08 +0000 http://security.crudtastic.com/?p=213#comment-25517 I found this for hmailserver but could never get it to work maybe you could make some suggestions? My only guess is maybe I was doing something wrong when trying to do the exploit. Thanks http://www.exploit-db.com/exploits/7012/ I found this for hmailserver but could never get it to work maybe you could make some suggestions? My only guess is maybe I was doing something wrong when trying to do the exploit. Thanks

http://www.exploit-db.com/exploits/7012/

]]> Comment on Ash’s mental thoughts going into the OSCP exam by Dudley http://security.crudtastic.com/?p=213&cpage=1#comment-25516 Dudley Tue, 15 May 2012 10:07:40 +0000 http://security.crudtastic.com/?p=213#comment-25516 I was able to get app version but nmap was not able to get me an exact OS fingerprint :-( like in the case of hmailserver its running on either server 2003 or XP I suspect its server 2003. The filezilla beta are running on some version of freebsd and server 2003. Never messed with freebsd so not sure where to begin with that. I'm pretty all the test machine were running a firewall due to the limited services and ports enumerated on them. Any suggestion would be greatly appreciated. Thanks Ash. I was able to get app version but nmap was not able to get me an exact OS fingerprint :-( like in the case of hmailserver its running on either server 2003 or XP I suspect its server 2003. The filezilla beta are running on some version of freebsd and server 2003. Never messed with freebsd so not sure where to begin with that. I’m pretty all the test machine were running a firewall due to the limited services and ports enumerated on them. Any suggestion would be greatly appreciated. Thanks Ash.

]]> Comment on Ash’s mental thoughts going into the OSCP exam by ash http://security.crudtastic.com/?p=213&cpage=1#comment-25515 ash Tue, 15 May 2012 09:10:21 +0000 http://security.crudtastic.com/?p=213#comment-25515 Well, Hopefully your scans are good enough to tell you what OSes and applications are installed on the machines in the exam. You could possibly rebuild this in your own lab environment now and work out what you need to do to root them. That's where I would start my prep for a resit of the exam. I wouldn't get too disheartened .. its a hard exam. One of my friends just passed it on the weekend .. and he struggled! Well, Hopefully your scans are good enough to tell you what OSes and applications are installed on the machines in the exam. You could possibly rebuild this in your own lab environment now and work out what you need to do to root them.

That’s where I would start my prep for a resit of the exam.

I wouldn’t get too disheartened .. its a hard exam. One of my friends just passed it on the weekend .. and he struggled!

]]> Comment on Ash’s mental thoughts going into the OSCP exam by Dudley http://security.crudtastic.com/?p=213&cpage=1#comment-25512 Dudley Mon, 14 May 2012 11:57:00 +0000 http://security.crudtastic.com/?p=213#comment-25512 So took the test and it kicked my butt. I got the buffer overflow written but struggled big time with other 4 machine. Thing is I'm not sure where to start with preparing for retake. one of the server was running hmailserver which I'm sure must have been vulnerable and the other box were runnin different version of FileZilla beta software but had no luck exploiting them at all LOL. Any helpful hints for preparing for retake would be great. Thanks a bunch So took the test and it kicked my butt. I got the buffer overflow written but struggled big time with other 4 machine. Thing is I’m not sure where to start with preparing for retake. one of the server was running hmailserver which I’m sure must have been vulnerable and the other box were runnin different version of FileZilla beta software but had no luck exploiting them at all LOL. Any helpful hints for preparing for retake would be great. Thanks a bunch

]]> Comment on CISM Study Notes by Shubhra http://security.crudtastic.com/?p=80&cpage=1#comment-25508 Shubhra Sun, 13 May 2012 12:45:29 +0000 http://security.crudtastic.com/?p=80#comment-25508 Thanks a lot for sharing the notes Thanks a lot for sharing the notes

]]>