Linux, packets, puzzles, and late-night shell sessions.
Stood up the new box, hardened SSH, and wired in the mesh. Here's what broke and how I fixed it. First order of business was disabling password auth and setting up key-based login only.
sudo sed -i 's/#PasswordAuthentication yes/PasswordAuthentication no/' /etc/ssh/sshd_config
sudo systemctl restart sshdSpent the evening sifting through pcap files looking for suspicious traffic patterns. Found some interesting DNS exfiltration attempts that were trying to tunnel data out through TXT records...
read log →This weekend's CTF had a classic buffer overflow challenge. The binary had no ASLR and no stack canaries. Let me walk you through the exploit development process from crash to shell...
read log →Tired of running the same enumeration commands manually? I put together a modular recon script that chains together nmap, gobuster, and nikto with proper output formatting...
read log →After getting popped in a local CTF, I decided to actually secure my homelab properly. Here's my iptables ruleset and the thinking behind each rule. Defense in depth starts at home...
read log →