Learning Security

There are many free sites and utilities you can use to learn more about attack vectors. DO NOT RUN THESE IN PRODUCTION. https://www.owasp.org/index.php/Category:OWASP_WebGoat_Project  OWASP top 10 scenarios. https://www.hackthissite.org/  Lots of web hacking scenarios. http://www.dvwa.co.uk/  Vulnerable web app. https://github.com/Subterfuge-Framework/Subterfuge/blob/master/README.md  easy MITM.  Not even fair.  Try learning the old ways with Ettercap, Read more…

SMTP file extraction with bro ids

I needed to be able to extract attachments from SMTP in order to do a poor mans Fireeye type solution.  I can then hash the files and submit to virustotal and/or cuckoobox. Create the file “extract-smtp.bro” in your bro $PREFIX/policy/misc/ directory global mime_to_ext: table[string] of string = {        [“application/x-dosexec”] = Read more…

Secured By miniOrange