Wylie Bayes

Title: Abuse of Tenable Nessus/Security Center with Audit Files and Powershell. Class: Exploit Delivery System/RBAC Bypass/Insider Abuse/Pivot Vector. Signed PDF with Keybase PGP key Wylie's PGPKey Date Published: 2017-07-27 Last Update: 2017-06-22 Vendors contacted: Tenable Network Security - https://www.tenable.com 2016-12-05 - First notification sent by Wylie Bayes to Tenable Consultant Jack Daniel. 2016-12-07 - Acknowledgement of first notification received from Tenable team. 2017-01-04 - Sent follow up email for progress update to Tenable…

Just a real quick way to do whois lookups on domains, and IP addresses, in Powershell. Forward lookup uses Webservicex.net, and reverse uses Arin.net. function whois($site) { #Syntax: whois google.com $web = New-WebServiceProxy ‘http://www.webservicex.net/whois.asmx?WSDL’ $web.GetWhoIs("$($site)") } function rwhois($ip){ #syntax: whois 8.8.8.8 $baseURL = 'http://whois.arin.net/rest' $url = "$baseUrl/ip/$ip" $r = Invoke-RestMethod $url $r.net } Cheers!…

So as everyone already knows there was a huge leak of data for months for websites who use Cloudflare services. To make my changing of passwords a bit easier, and more focused / targeted I put together a little setup to check all of my Lastpass saved sites for Cloudflare name servers. First I exported my Lastpass information to a .txt format from their website export feature. Then I used a quick and dirty parsing -replace feature of powershell to clean…

Recently I ran into an issue where a Powered Off VM was stuck in a vMotion host migration for over 3 days. I assume that the VM was powered off during the migration, which is what caused it to hang. Afterwards two backup job snapshot tasks were also in queue on top of the migration task. I spent about 10-15 minutes in the GUI trying to find how to kill or stop this task, unsuccessfully. The only option I could…