Wylie Bayes

Wylie Bayes

OpenBSD and Security, a breakdown.

OpenBSD and Security, a breakdown.

OpenBSD is a free and open-source operating system that is known for its robust security features. In fact, OpenBSD is often considered to be one of the most secure operating systems available. In this blog post, we will explore why OpenBSD is more secure than other operating systems. 1. Security

The Dangers of AI Technology

The Dangers of AI Technology

Artificial intelligence (AI) has the potential to revolutionize how humans interact and work with the environment. From automated driving cars to voice-controlled home devices, AI is slowly but surely transforming the way we move about our everyday lives. But with the enormous potential, AI also carries with it the potential

EDR Evasion, the ethical way!

EDR Evasion, the ethical way!

As technology continues to advance and cybersecurity becomes increasingly important, it is essential for security researchers to stay up to date with new techniques to bypass EDR (Endpoint Detection and Response). However, it is also crucial that this research is conducted in an ethical manner that prioritizes the security and

NIST 800-53 Rev. 5 - First Thoughts

NIST 800-53 Rev. 5 - First Thoughts

NIST 800-53 is a set of security controls and guidelines developed by the National Institute of Standards and Technology (NIST) to help federal agencies and contractors manage and secure their information systems. The latest version of NIST 800-53 is revision 5, which was released in September 2020. In this blog

Code Obfuscation - 10,000 Feet

Code Obfuscation - 10,000 Feet

In today's digital age, businesses and organizations are increasingly relying on software applications to carry out their day-to-day operations. However, as software becomes more complex, it also becomes more vulnerable to cyber attacks. Hackers are constantly looking for ways to bypass endpoint protection products that are designed to

Bypassing MFA with Gophish and Evilginx2

Bypassing MFA with Gophish and Evilginx2

Multi-factor authentication (MFA) is a widely used security measure that provides an additional layer of protection to user accounts. However, even with MFA in place, accounts can still be compromised through phishing attacks. Phishing attacks use social engineering techniques to trick users into revealing their login credentials, including the MFA

Bloodhound and Kerberoasting: An Overview

Bloodhound and Kerberoasting: An Overview

Bloodhound and Kerberoasting are two important concepts in the field of cybersecurity. Bloodhound is a tool used for mapping and analyzing Active Directory (AD) environments, while Kerberoasting is an attack technique that exploits weak Kerberos service account passwords to obtain encrypted Kerberos ticket-granting tickets (TGTs). In this blog post, we

Cloud Security In a Nutshell

Cloud Security In a Nutshell

Cloud computing has revolutionized the way organizations store, process, and manage their data. It has made computing resources more accessible, scalable, and cost-effective. However, the convenience and benefits of cloud computing come with security challenges that organizations must address to protect their data and systems. In this blog post, we

Powershell and Offensive Security

Powershell and Offensive Security

PowerShell is a powerful and versatile tool that can be used for both defensive and offensive security purposes. In the context of offensive security, PowerShell can be used to execute malicious code, steal data, and bypass security controls. In this blog post, we will explore some of the ways that

Securing Kubernetes Best Practices

Securing Kubernetes Best Practices

Kubernetes is a widely popular open-source platform for container orchestration, widely used for deploying and managing applications in a containerized environment. As the use of Kubernetes continues to grow, it's becoming increasingly important to ensure that Kubernetes clusters are secure. In this blog post, we'll discuss

Building A Detection Lab With Security Onion

Building A Detection Lab With Security Onion

Google Docs Slides - https://docs.google.com/presentation/d/1ojFY5Jvc6M9dKXs1qSuh6UoWc2zqL6xREbojRL921bU/edit?usp=sharing PDF Slides - https://wmfb.co/txt/SecOnion_DetectLab.pdf Above are the slides that were presented at the Security Onion + Bsides Augusta conference on October 4th 2019. Recorded talk on YouTube: https://youtu.be/JOvWCQ-PHHY

Alternate Data Streams, and Extended File Attributes.

Alternate data streams (ADS) are an NTFS file system only capability to be able to add data onto an additional "Stream" of a file without altering the contents of the file itself, or modify it's hash value in anyway. First we are going to create a

AlienVault OTX(Online Threat Exchange) - Powershell IoC Collector

AlienVault OTX(Online Threat Exchange) - Powershell IoC Collector

So I wanted to automate IoC(Indicators of Compromise) collection and discovered AlienVault OTX product. I work in a primarily windows workstation environment and Powershell is my goto language for just about everything since since it is native on every system since Windows 7. Below is a script I developed

Abusing Tenable Nessus / Security Center with Audit Files and Powershell. #Nessus #Infosec #ExploitDelivery #RBACBypass #InsiderThreat

Title: Abuse of Tenable Nessus/Security Center with Audit Files and Powershell. Class: Exploit Delivery System/RBAC Bypass/Insider Abuse/Pivot Vector. Signed PDF with Keybase PGP key Wylie's PGPKey Date Published: 2017-07-27 Last Update: 2017-06-22 Vendors contacted: Tenable Network Security - https://www.tenable.com * 2016-12-05 -

OpenBSD -current IPv6 Router. Clients: #Windows, #Android, #Linux, #Openbsd. Xfinity/Comcast cable internet. Native #IPv6

OpenBSD -current IPv6 Router. Clients: #Windows, #Android, #Linux, #Openbsd. Xfinity/Comcast cable internet. Native #IPv6

So this is a follow up article revisiting using native Comcast(Xfinity) internet with your OpenBSD router provide IPv6 connectivity to all of your devices on your LAN. I first attempted this around OpenBSD 5.4, and had moderate success, but there were still some bugs to be worked out.

Quick and dirty #Powershell forward and reverse #whois.

Just a real quick way to do whois lookups on domains, and IP addresses, in Powershell. Forward lookup uses Webservicex.net, and reverse uses Arin.net. function whois($site) { #Syntax: whois google.com $web = New-WebServiceProxy ‘http://www.webservicex.net/whois.asmx?WSDL’ $web.GetWhoIs("$($site)") } function rwhois($ip)

Checking #Lastpass saved sites for #Cloudflare with #Powershell. #Cloudbleed #Infosec

So as everyone already knows there was a huge leak of data for months for websites who use Cloudflare services. To make my changing of passwords a bit easier, and more focused / targeted I put together a little setup to check all of my Lastpass saved sites for Cloudflare name

#VMWare Killing Stuck, or Hung tasks with #Powershell #PowerCLI

Recently I ran into an issue where a Powered Off VM was stuck in a vMotion host migration for over 3 days. I assume that the VM was powered off during the migration, which is what caused it to hang. Afterwards two backup job snapshot tasks were also in queue

Switched to Ghost blogging platform. #ghost #openbsd #nginx

Just throwing up a quick note to say I switched my site to Ghost blogging platform. Am running wordpress/httpd side by side for my other peeps. SSL cert is up and operational. All the encryptions.

Adventures with Hyper-V, Information Security, Route Hijack, Exfiltration, and Compromise. #HyperV #Microsoft #Compromise #Exfiltration

Microsoft has confirmed there is a mitigation already in place by going to settings for a VM go to Network Adapter -> Advanced Features -> DHCP Guard and enable it. "It is not disabled by default due to it being a performance impact"? I personally powershell

Fix windows unquoted service path enumeration vulnerabilities with #Powershell

Here is a function to fix windows unquoted service path enumeration vulnerabilities automatically with powershell! Cheers! function fix-servicepath { $hosts = get-content C:\Users\*****\Documents\WindowsPowershell\Servers.txt foreach ($box in $hosts) { $services = $null $services = get-wmiobject win32_service -computername $box foreach ($service in $services){ $Displayname = $service.DisplayName if (($service.PathName -like "

HP OA, Netapp, and Vmware environment monitoring with #Powershell

Here is a custom script I made to check HP Onboard Administrators, Netapp Controllers, and vCenter servers for health issues in Powershell. Cheers! This relies on a few things first: VMWare PowerCLI 5.5+ Netapp DataOnTap 4.0 modules HP OA Powershell Cmdlets to function properly. If you want to

Disable DHCP on Hyper-V created vSwitch Host NICS. #hyperV #dhcp #hosthijack

So playing with Hyper-V the past few weeks quite a bit and noticed that when creating a vSwitch, no matter if External and bridged to a real NIC on the host or not, it will create a NIC on the Windows host machine correlating to the vSwitch in Hyper-v. If

VPN Bonding: Pushing through the challenges!

New Foundations #1 – VPN Bonding – Pushing through the challenges. by Wylie Bayes VPN Bonding Hey everyone! Wylie is back in action and this topic is all about VPN bonding and the challenges you can face when coming up with a solution that is right for your organization. I know many

Network Wide Transparent Proxying with #OpenBSD #Proxy #webfiltering

Network Wide Transparent Proxying By: Wylie Bayes & Brandon Folchi The purpose of this article is to guide anyone who is interested in setting up their own transparent proxy capable of filtering outbound web-browsing of all devices on a network. While researching options to accomplish this we came across a