WDTV Live SMP Remote Password Reset Exploit (for starters…)

WDTV Live Streaming Media Player release 2.03.20 (and likely earlier) contains a weakness that allows an unauthenticated attacker to change the web management password to a value of their choice. Nothing earth-shattering here, just a failure to validate that a POST request contains the correct validated headers that an authenticated user should have before processing the…

Offensive Security CTP/OSCE Tips

Not a Review… Firstly, this is not a full review of Offensive Security’s Cracking The Perimeter course and the Offensive Security Certified Expert exam/challenge. If that’s what you’re looking for, go nuts with the following list of reviews: OSCE Review OSCE and me My OSCE Review Offensive Security’s CTP and OSCE – My Experience CTP/OSCE:…

PowershellEmpire: 5 minute quick-start guide (featuring Kali Linux and/or Debian 8.0)

PowershellEmpire is basically a post-exploitation framework that utilises the widely-deployed PowerShell tool for all your system-smashing needs. It’s feels quite Metasploity with it text-driven menus, module management and execution functions, but it’s purely for generating PowerShell agents and post-exploitation evilness. Of course, Powershell being native to Windows means that AV is not a concern (for…