What is OpenStack?
I recently discovered the existence of OpenStack and want to learn more about what it is
Admin
Blog
The important thing is not to stop questioning. Curiosity has its own reason for existing.
Self-Hosted PaaS and IaaS
It's always a good exercise to re-evaluate what's out there every so often, could a new self-hosted platform make my life easier?
Admin
What is Octopus Deploy
I'm in search of a better way to handle On Premises, Octopus Deploy claims to help!
Admin
Proxmox 6 to 8 Upgrade
I ran into some minor issues while performing this upgrade, so I figured I'd document how I solved them here
Admin
What is Replicated
I'm in search of a better way to handle On Premises Deployments, Replicated claims to help. This is my evaluation.
Admin
Clonezilla Disk Image Stored Directly to AWS S3
A good solution for emergency imaging a machine if you have no other local alternatives.
Admin
CVE-2023-23752 PoC Exploit
CVE-2023-23752 is a vulnerability in Joomla CMS that allows unauthorized access to webservice endpoints.
Admin
CVE-2023-29017 PoC Exploit
CVE-2023-29017 is a critical security vulnerability that affects the VM2 library, a Node.js module that provides a sandboxed environment for running untrusted code.
Admin
CVE-2023-29923 PoC Exploit
The CVE-2023-29923 vulnerability is a security flaw in PowerJob V4.3.1 that allows unauthorized access to assets via the list job interface.
Admin
CVE-2023-33617 - The Parks FiberLink 210 router PWNED
The Parks FiberLink 210 router, commonly used in various networks, has recently been found to have a critical vulnerability, known as CVE-2023-33617. This vulnerability allows an authenticated user to execute arbitrary commands on the affected router. This poses a significant security risk and requires immediate attention from router owners and administrators.
Admin
Critical SQL Injection Vulnerability Discovered in codepeople cp-polls Plugin 1.0.1
We have recently become aware of a critical security vulnerability that has been identified in the `codepeople cp-polls Plugin` version 1.0.1. This vulnerability, classified as CVE-2023-125091 (VDB-222268), poses a significant risk to websites utilizing this plugin. Immediate action is strongly advised to ensure the security and integrity of your website.
Admin
Constraint programming with CP-SAT by example
Understanding CP-SAT with explained python example.
Admin
Home Lab 10 - Minimalist Container host with Autoscale and Gitops - GitOps Mechanism
Autoscale, Gitops and lightweight setup for your homelab container needs.
Admin
Home Lab 9 - Minimalist Container host with Autoscale and Gitops - Service Installation
Autoscale, Gitops and lightweight setup for your homelab container needs.
Admin
Home Lab 8 - Minimalist Container host with autoscale and gitops
Autoscale, Gitops and lightweight setup for your homelab container needs.
Admin
Home Lab 7 - RancherOS on Proxmox (for nothing)
It all seemed like a good idea until I started to get serious.
Admin
Hardening Ubuntu 22.04 Desktop With ChatGPT
An exploration of usage of ChatGPT for helping with a task I had to do.
Admin
Home Lab 6 - Security onion and network segmentation
Segmenting my network further, adding security onion and properly configuring my firewall!
Admin
Proxmox PCIe Passthrough for pfSense NIC
PCIe passthrough for pfsense from Proxmox for better network security.
Admin
pfSense Route Single Interface Traffic Through VPN
For one reason or another, you want to route a single network interface through an off-site VPN connection without impacting other interfaces in pfSense.
Admin
Proxmox Change Hostname or IP on Cluster Node
To my surprise, changing network configuration on a proxmox cluster was both difficult and apparently unsupported.
Admin
Tuning Security Onion Alert Rules
Security onion tuning in my home lab
Admin
I may have been PWNED
Security onion threat hunting in my home lab
Admin
Hack The Box - Red Panda Walk Through
A look back at the heavily improved hack the box!
Admin
Try Hack Me - Neighbour
I wanted to try my new post exploitation tricks, but this was just too easy.
Admin
Post Exploitation Journey 2 - Automating Host Enumeration after C2 Connect
After a target connects to the C2 server, it would be nice to automate a response to quickly enumerate and get root.
Admin
Post Exploitation Journey 1 - Establishing Staged Payload Delivery
The first step of optimizing post-exploitation operations is to streamline payload delivery, and make sure we're being as stealthy as possible.
Admin
TryHackMe - VulnNet Endgame
TryHackMe VulnNet room solution walkthrough.
Admin
Bulk Convert to Modern Image Format with Image Magik Script
Automated conversion of old image formats into WEBP, let's get modern!
Admin
Unity TMP_Text Clickable Links
Create extensible interactive text elements in Unity.
Admin
Migrating Blog Infrastructure
A side quest in reducing my hosting costs.
Admin
Offline Wikipedia Sync Prep
Let's say you've lost your national internet connection, this is a method of mitigating loss of information during that event!
Admin
Create Anonymous Accounts
You're going to need to register for things and communicate, make sure you're creating properly anonymous accounts.
Admin
PGP Messaging
Verify both sides of the communication channel properly, all the time!
Admin
Anonymous Payments
Your going to have to buy something at some point, make sure your safe doing it
Admin
Disk Encryption
Your last line of OpSec defence, don't mess it up
Admin
Spoofing your hardware
Another layer of OpSEC to add, do this before connecting to any new network.
Admin
Secure your traffic
Use VPN and Tor together for lowest chance of being identified
Admin
Mitigate Author Profiling
Choose your privacy OS and install it securely
Admin
Mitigate Author Profiling
Even if your network and hardware is flawless, the content you write publicly could identify you!
Admin
Hardware Supply Chain
How to source hardware that can't be traced back to you
Admin
Clearnet Browser Configuration
How to configure your clearnet browser for maximum privacy
Admin
Linux OS Hardening - Basics
A walkthrough of the most basic steps to harden your linux system
Admin
Try Hack Me - Squidgame
An incredible learning experience for malicious document analysis and Win32 Shellcode.
Admin
Tryhackme - Overpass
Finally back to some CTF's to freshen myself up!
Admin
Home Lab 3
Kubernetes deployment with Packer and Terraform on Proxmox
Admin
Proxmox LVM Disk Resize
A quick tutorial on resizing an LVM disk after resizing from Proxmox.
Admin
Tryhackme The Great Escape
The ones that require guess-work always kill me!
Admin
Tryhackme Enterprize
Difficult indeed, new techniques have been learned!
Admin
Tryhackme Attacktive Directory
AD Exploits, basically was a tutorial.
Admin
Tryhackme Blue
My first Windows Box, a start to my adventure into learning Windows pentesting for a while.
Admin
Y0usef 1
Not sure if I cheated on this one, certainly overcomplicated some portions too.
Admin
Pwnlab 1 - Init
Learned some new stuff, from this one, as is the goal!
Admin
Skytower 1
This was more challenging than I expected, but that makes it way more fun!
Admin
Vulnix 1
This one was also a challenge, no using exploits based on outdated software!
Admin
SaaS App 1
Taking yet another distraction to build some random SaaS apps to learn a cross-platform frameworks!
Admin
Desktop Build Log 2
Parts have started arriving, and we've got some issues...
Admin
Desktop Build Log 1
I've decided to compete a childhood dream and refresh my 5-year old desktop to a full custom-loop build! In this series I'm going to document my build!
Admin
Playbooks and site improvements
A fun little walkthrough of some improvements I made to the site.
Admin
Kioptrix Level 5 Writeup
Poorly configured apache, two vulnerable PHP applications, and an outdated kernel!
Admin
Kioptrix Level 4 Writeup
More or less the same as the last, with an added sprinkle of shell escapeing
Admin
Kioptrix Level 3 Writeup
A fantastic box, really enjoying the run-up of required skills for this series.
Admin
Kioptrix Level 2 Writeup
Nothing better than some late-night SQL injection & kernel exploits!
Admin
Ringzer0team Sysadmin Linux 5 Writeup
Gah I suck at encryption... but this one held my hand!
Admin
Ringzer0team Sysadmin Linux 3 Writeup
Architect is a piss poor web developer
Admin
Ringzer0team Sysadmin Linux 1 Writeup
Writeup for the first challenge in this series, which I assume will be a bunch of privledge escalation.
Admin
Getting this blog going
I'm starting a journey deeper into the ItSec world, and have decided to begin documenting that journey. In this writeup I go through how I got this blog up and running from the ground up!
Admin