walkthrough

A 19-post collection

7MS #235: Pwning Billy Madison

Be sure to scroll down and view the whole post as there is both audio and video coverage of today's episode! Intro Today I'm going to walk you through pwning the Billy Madison VM hosted at VulnHub. To be blunt, there are way better write-ups and videos walking through the »

7MS #234: Pentesting OWASP Juice Shop - Part 5

Be sure to scroll down and view the whole post as there is both audio and video coverage of today's episode! Intro Today is part FIVE (insert menacing voice: "the final chapter!!!) of our series on attacking the OWASP Juice Shop which is "an intentionally insecure webapp for »

7MS #233: Pentesting OWASP Juice Shop - Part 4

Be sure to scroll down and view the whole post as there is both audio and video coverage of today's episode! Intro Today is part FOUR of our continuing series on attacking the OWASP Juice Shop which is "an intentionally insecure webapp for security trainings written entirely in Javascript »

7MS #232: Pentesting OWASP Juice Shop - Part 3

Be sure to scroll down and view the whole post as there is both audio and video coverage of today's episode! Intro Today is part three of our continuing series on attacking the OWASP Juice Shop which is "an intentionally insecure webapp for security trainings written entirely in Javascript »

7MS #231: Pentesting OWASP Juice Shop - Part 2

Be sure to scroll down and view the whole post as there is both audio and video coverage of today's episode! Intro Today we're continuing our series on hacking apart the OWASP Juice Shop which is "an intentionally insecure webapp for security trainings written entirely in Javascript which encompasses »

7MS #230: Pentesting OWASP Juice Shop - Part 1

Be sure to scroll down and view the whole post as there is both audio and video coverage of today's episode! Intro Today we're kicking of a multipart series all about hacking the OWASP Juice Shop which is "an intentionally insecure webapp for security trainings written entirely in Javascript »

7MS #223: Vulnhub Walkthrough - Tommy Boy

Intro: The following is a semi-spoilerish walkthrough of the Tommy Boy VM from Vulnhub by 7MinSec. Semi-spoilery write-up: A port scan will reveal port 80 and 8008 open. Explore them thoroughly, including /robots.txt, page source code, dirb results, etc. That recon will lead you to a content management system »

7MS #210: Vulnhub Walkthrough - Mr. Robot

Intro The following is a semi-spoilerish walkthrough of the Mr. Robot VM from Vulnhub by Jason (couldn't find a link for him! Hrmm....mysterious!). Write-up Flag 1: An NMAP scan will reveal port 80/443 open. Do the "usual suspects" scan of the Web environment - like nikto, »

7MS #207: Vulnhub Walkthrough - Sidney

Intro The following is a semi-spoilerish walkthrough of the Sidney VM from Vulnhub by Knightmare2600. Write-up Running NMAP on this rascal reveals port 80 to be open. I conducted a dirb scan and looked at the "usual suspects" (nikto results, /robots.txt, source code, etc.) to determine the »

7MS #206: Vulnhub Walkthrough - Stapler

Intro The following is a semi-spoilerish walkthrough of the Stapler VM from Vulnhub by g0tmi1k. Write-up An NMAP scan reveals all sorts of goodies on this little rascal, including TCP 666 (DOOM?!), FTP, Samba shares a few Web ports - and more! I cut Sparta loose on the host as »

7MS #203: Vulnhub Walkthrough - FristiLeaks

Update 6/15: Sorry, I know I said on today's episode I was going to do a video version of this VM, but I'm jumping ship on that idea. The reason is I'm already excited about making a podcast + video version of a different VM. And, selfishly, that also allows »