Category: Uncategorized

Agent, your mission—code-named “Digital Lockpick”—is set within the cyber walls of Active Directory, the nexus of network security. Your mission, should you choose to accept it: to exploit the Server Message Block (SMB) protocol, a seemingly innocuous yet vital pathway through which information travels. This operation hinges on mastering the SMB Relay Attack, a tactic […]

Welcome back, my aspiring cyberwarriors! Bluetooth is a nearly ubiquitous protocol used to communicate between devices in close proximity or a piconet, such as speakers, headphones, and cellphones. If an attacker can exploit Bluetooth, it may be able to take control of or eavesdrop on any of these devices. There are numerous classes of Bluetooth […]

For more on the email scraping tool, the Harvester, click here. ​ As a pentester/hacker, gathering email addresses from potential victims can have a multiple of uses. When we have email addresses of key personnel, we can launch attacks by email to get people to click on a malicious link or direct them to our […]

Many who are new to hacking, tend to discount the need to do information gathering and want to rush right into attacking the target system. Those with more experience, like yourselves, understand that the more we know about the target, the better our chances of success. Furthermore, for every minute we spend gathering information about […]

Previously in my “Spy on Anyone” series, we used our hacking skills to turn a target’s computer system into a bug to record conversations and found and downloaded confidential documents on someone’s computer. In this tutorial, I will show you how to spy on anybody’s Internet traffic.​ For the sake of making things interesting, let’s assume we […]

Metasploit framework is an incredible hacking and pentesting tool that every hacker worth their salt should be conversant and capable of. In this post, I will try to provide you with the most complete list and description available anywhere on the web. You will want to bookmark this page too, as no one remembers all […]

How to Remotely Install an Auto-Reconnecting Persistent Back Door on Someone’s PC Most of my recent posts have addressed using Metasploit’s Meterpreter and what we can do once we have embedded it on the victim’s system. This includes remotely installing a keylogger, enabling the webcam, enabling the microphone and recording, and disabling the antivirus software, […]

Welcome back, my aspiring SCADA Hackers!  The recent ransomware attack against the Colonial Pipeline in the US reminds us that SCADA/ICS infrastructure is NOT immune from ransomware attacks. In fact, this attack should remind us just how vulnerable industrial systems are to cyber-attacks and the potential ramifications of such attacks. Remember, with SCADA/ICS systems you […]