Charles "Chuck" A. Fair charlesfair

ROCK Sensor Parts List

Below is the hardware I use for development and home use of my ROCK sensor. It’s an extremely powerful system in a small form factor, under $1000. The most important aspects to me were that I wanted IPMI for baremetal remote management, dual Intel NICs, quiet, and relatively low-power. I sit by this thing and work everyday and don’t want to wear hearing protection while I write code.

The prices reflect what I paid for them in March 2016. No doubt the prices will have changed and newer, better stuff is probably available. Things like RAM and SSDs go on sale all the time, so look for that if you’re a bargain shopper.

Sensor Hardware

Case: Antec ISK 300-150 Black Mini-ITX Desktop Computer Case 150 Watt Power Supply - $70.70
RAM: https://www.amazon.com/gp/product/B015YPB1NK/ref=oh_aui_detailpage_o04_s00?ie=UTF8&psc=1[CRUCIAL TECHNOLOGY 16GBx2 32GB Kit, DDR4 2133 MT/s DIMM 288 (CT2K16G4D

BroCtl hook for NetworkManager

I'm going through Offensive Security's "Pentesting With Kali" (PWK) course, and I added this hook to my Kali VM so that Bro would record everything going over the wire. I wanted to do this so I could analyze what my traffic would show up like using various tools.

Of course, you could use this on other systems using NetworkManager. And if you're pentesting, but not going over a VPN, just change the interface name in the script and the instructions. To add this to Kali for the OpenVPN connection, you need to do the following:

apt-get install bro broctl
sed -i 's/eth0/tap0/' /etc/bro/node.cfg
curl 'https://gist.githubusercontent.com/dcode/214fe616b1c98cd5665c99ad34a78893/raw/8d116140bb567c5990e378ab01973399719bb62a/nm-broctl.sh' | tee /etc/NetworkManager/dispatcher.d/broctl.sh
chmod +x /etc/NetworkManager/dispatcher.d/broctl.sh

#petya #petrWrap #notPetya

Win32/Diskcoder.Petya.C Ransomware attack.

Got new info? Email at [email protected] or @isox_xx Some wrong info? Leave the comment, we will fix it!

Research list

BI.ZONE

	# ... more above ...

	# wsfl bash is not a login shell
	if [ -d "$HOME/bin" ] ; then
	PATH="$HOME/bin:$PATH"
	fi

	# ssh-agent configuration
	if [ -z "$(pgrep ssh-agent)" ]; then
	rm -rf /tmp/ssh-*

	#!/bin/bash

	# Original version is written by Chris Kloiber <[email protected]>
	# This fork version is modified by HONDA Hirofumi <[email protected]>

	# A quick hack that will create a bootable DVD iso or non-bootable
	# source DVD iso of a Red Hat Linux Distribution. Feed it either a
	# directory containing the downloaded iso files of a distribution,
	# or point it at a directory containing the "RedHat", "isolinux",
	# and "images" directories.

	from slacker import Slacker
	import json
	import argparse
	import os
	import shutil
	import copy
	from datetime import datetime

	# This script finds all channels, private channels and direct messages
	# that your user participates in, downloads the complete history for

	export CERT_URL='http://iasecontent.disa.mil/pki-pke/Certificates_PKCS7_v5.4_DoD.zip'

	# Download & Extract DoD root certificates
	cd ~/Downloads/
	curl -LOJ ${CERT_URL}

	unzip $(basename ${CERT_URL})

	cd $(basename ${CERT_URL} .zip)

	{
	"order": 10,
	"index_patterns": [
	"bro-diag-*"
	],
	"mappings": {
	"_doc": {
	"properties": {
	"acks": {
	"type": "long"

	// Use Gists to store code you would like to remember later on
	console.log(window); // log the "window" object to the console