Guides – Hacking & Coffee

Red Team Laptop & Infrastructure (pt 1: Architecture)

28 February 2018

hon1nbo

No comments

Categories: Guides, Red Teaming, Security

I get a lot of questions about my laptop, ranging from “Windows or Mac?” to “do you have a preferred chipset for Ethernet NICs.”

Well, with the exception of “neither” to the first question, most things will vary. Rather than talk about specific hardware or version choices, I’m going to talk about Architecture; in future posts I’ll talk about specific ways of implementing my Infrastructure architecture for supporting penetration testing, but for now we will focus on the high level. This design is Reasonably secure in the right hands, fast, and extremely flexible.

Def Con 24 Caezar Challenges URl Solving

13 August 2016

hon1nbo

No comments

Categories: Conventions, Guides, Security, The Wolf-Dog

Part of the Caezar challenge involved URL forcing. There were four characters, three unique, that were unsolved in the domain name. Using a combination of scripting and nslookup, it was trivial to solve (though later determined not to be necessary, but was possible after solving via traditional substitution cipher. I wont spoil the preferred method here since it was brlliant and may be used again).

Here I explain this process.

Serving malware via physical legal documents

7 June 2016

hon1nbo

No comments

Categories: Guides, Red Teaming

I have decided to post about a personal trick I created and have used for quite a while. Given that most process servers are private entities, rather than actual members of the court, they are ready for hire without filing an actual legal process. Thus, it is possible for an official looking person to arrive at a target and present the payload in person without ever leaving a trace of your identity. This physical legal document has successfully gained my administrator credentials from targets that normally have a high level of security awareness, and usually catch phishing attempts.

Defcon for N00bs Git Repo!

25 May 2016

hon1nbo

No comments

Categories: Conventions, Guides

There is now a Git repo for people to submit tips, tricks, and advice to! Why a Git repo you ask rather than a wiki? It allows people to pull in an offline copy quickly and easily.

https://github.com/hacking-and-coffee/defcon-for-n00bs

DEFCON for N00bs (v0.1)

29 March 2016

hon1nbo

No comments

Categories: Conventions, Guides

The first revision of DEFCON for Noobs is up. Still very rough, early draft, and missing many things. However, I figured a living document is better and would do better with feedback.

Check it out

-H