(Un)official home of Team RunCMD – where the intarwebz come to weep!

11/21/201805/17/2019

Default password lists

I’ve decided to centralize the default password lists for multiple vendors. I’m making this a sticky post and will update this list when as I find these types of sites:

* http://bit.ly/2S6SToW – NETGEAR Default Password List
* http://bit.ly/2S37j9u – Linksys Default Password List
* http://bit.ly/2S3gPJV – D-Link Default Password List
* http://bit.ly/2S8KWzJ – Cisco Default Password List
* http://bit.ly/2S37FwQ – Default Router Usernames and Passwords (multiple vendors)
* http://bit.ly/2HrgT3O – Telnet, MySQL and other Linux and Windows service passwords courtesy of n0tazombie.

09/06/201805/02/2019

Always available CTF Labs

I have identified the following CTF labs which are 24/7 and most if not all are free:

* CTF101: https://ctf101.org/
* Shellter Hacking Express: https://shellterlabs.com/en/contests/
* Backdoor: https://backdoor.sdslabs.co/
* ShellWePlayAGame?: https://shellweplayagame.org/
* RootMe: https://www.root-me.org/?lang=en
* OverTheWire: https://overthewire.org/wargames/
* Virginia Cyber Range: https://portal.virginiacyberrange.net/
* Hack The Box: https://www.hackthebox.eu/
* FuzzyLand: https://fuzzy.land/
* Hacking Lab: https://www.hacking-lab.com/index.html
* 365 CSAW: https://365.csaw.io
* pwnable.xyz (good for people new to CTF): https://pwnable.xyz/

05/15/2019

Article: Linux Kernel Prior to 5.0.8 Vulnerable to Remote Code Execution

If you are using any major Linux distribution you should patch now. There’s a remotely exploitable condition in any Linux Kernel (such as Fedora, Debian, Ubuntu, and others) that is prior to 5.0.8. It’s got the potential for being exploitable, but thankfully it’s fairly difficult the gain code execution but not impossible.

https://www.bleepingcomputer.com/news/security/linux-kernel-prior-to-508-vulnerable-to-remote-code-execution/

05/15/201905/15/2019

Article: Microsoft warns wormable Windows bug could lead to another WannaCry

Microsoft has issued a warning regarding a pre-auth bug that could potentially be used for another worm, like WannaCry. It affects Windows XP-8.1 clients and Windows Server 2003-2008R2.

http://bit.ly/2HlOj3A

05/09/201905/09/2019

Article: How to Port Microsoft.Workflow.Compiler.exe Loader to Veil

Written by one of the contributors to the Veil Framework (http://bit.ly/2Hd8Zee) details how this technique works.

http://bit.ly/2Hcb3mH

05/02/201905/02/2019

Vodaphone denies any backdoors found in Huawei devices

Looks like Vodaphone considered having a telnet server running as a backdoor in the initial reporting by Bloomberg. All the same though, using Huawei devices as infrastructure of a 5G cellular network gives another nation state access to some potentially sensitive data and they would have the ability to remotely tamper with it. As more and more people rely on high speed cellular networks this is still a bad idea!

https://bbc.in/2Y0rd85

05/02/201905/02/2019

Awesome video on how quantum computer can break current encryption

Someone posted this video on one of the Slack workspaces that I’m on. It was really informative on the techniques used and where the current state of the art quantum computers currently are. The good news is current quantum computers don’t have enough quantum memory to break large primes, however I wonder if there’s such a thing as Moore’s Law for quantum computing in which case the Internet will be in big trouble in just a few years.

04/30/201905/02/2019

Vodafone Found Hidden Backdoors in Huawei Equipment

While Huawei has made promises that they have removed all the backdoors found by Vodafone, how about firmware updates and security updates that Vodaphone and other major carriers need to keep the network up to date. Are they going to have a manual review process? Blindly assume the updates don’t re-introduce a backdoor? Seems like risky business!

https://bloom.bg/2XZ7qWv

04/15/201904/30/2019

Microsoft released 70 patches on Patch Tuesday April 2019

Microsoft release 70 patches and updates this “Patch Tuesday” including two local privilege (LPE) escalations that affected all versions of Windows.

https://krebsonsecurity.com/2019/04/patch-tuesday-lowdown-april-2019-edition/

04/15/2019

Excellent tutorial on using recon-ng for OSINT

I found this tutorial on using recon-ng, which is a tool used for pentesters for gathing open source intelligence (OSINT) about an individual or a company. It features a Metasploit-like interface and has the ability to crawl social networks, Google, WHOIS databases, etc to collect information about a company, it’s employees, it’s domains, etc.

http://securenetworkmanagement.com/recon-ng-tutorial-part-1/

04/15/201905/02/2019

Vulnerabilities found in WPA3

Security researchers have already found a vulnerability in the way that WPA3 negotiates with the clients to set up the encryption, making the scheme more fragile than initially thought:

https://wpa3.mathyvanhoef.com/

04/09/201905/02/2019

Black Hills Infosec Article: An SMB Relay Race – How To Exploit LLMNR and SMB Message Signing for Fun and Profit

I found this on Twitter this week where Black Hills Infosec walks you through how to exploit Windows boxes using SMB and LLMNR man-in-the-middling to get a foothold.

https://www.blackhillsinfosec.com/an-smb-relay-race-how-to-exploit-llmnr-and-smb-message-signing-for-fun-and-profit/

<<	May 2019					>>
M	T	W	T	F	S	S
29	30	1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31	1	2