SMTP Hacking
Posted inScanning and Analysis

SMTP Hacking

The Simple Mail Transfer Protocol (SMTP) is a protocol for sending emails in an IP network. It can be used between an email client and an outgoing mail server or between two SMTP servers. SMTP is often combined with the IMAP or POP3 protocols, which can fetch emails and send emails.
New Mirai malware variant targeting DVR video devices.
Posted inCybersecurity News

New Mirai malware variant targeting DVR video devices.

A new variant of the Mirai malware botnet is exploiting a little-known command injection vulnerability in TBK digital video recording devices, specifically models DVR-4104 and DVR-4216, to take control of them. This vulnerability, identified as CVE-2024-3721, was disclosed by security researcher "netsecfish" in April 2024 but has just now been spotted in the wild.
SMB Hacking
Posted inScanning and Analysis

SMB Hacking

SMB (Server Message Block) is a widely used protocol on Windows systems that offers various paths for vertical and lateral movement within a network. Samba allows Linux and Unix distributions to utilize the SMB protocol.
Nginx Hacking
Posted inScanning and Analysis

Nginx Hacking

Nginx is regarded as a secure, high-performance web server and reverse proxy, but its real-world security depends heavily on how it is configured and maintained. By default, Nginx includes several security controls, such as rate limiting and access controls, which help mitigate common threats like DDoS attacks and unauthorized access. However, like any widely deployed software, Nginx is not immune to vulnerabilities and requires regular updates and security hardening to remain secure.
NFS Hacking
Posted inScanning and Analysis

NFS Hacking

Network File System (NFS), developed by Sun Microsystems, serves a similar purpose to SMB, enabling access to file systems over a network as if they were local. NFS is primarily used between Linux and Unix systems, preventing direct communication between NFS clients and SMB servers. While NFSv3, which has been widely adopted, authenticates client computers, NFSv4 introduces a change, similar to the Windows SMB protocol, requiring user authentication. A notable advantage of NFSv4 over its predecessors is its simplicity in utilizing only one UDP or TCP port (2049), which simplifies the protocol’s use across firewalls.
IMAP/POP3 Hacking
Posted inScanning and Analysis

IMAP/POP3 Hacking

Unlike POP3, IMAP allows for online management of emails directly on the server and supports folder structures. IMAP is a network protocol designed for the management of emails on a remote server. In contrast, POP3 has limited functionality; it only offers features for listing, retrieving, and deleting emails on the email server.
Example Pentest/Red Team Exercise Policy
Posted inCheat Sheets

Example Pentest/Red Team Exercise Policy

This policy framework document provides guidance for managing a penetration testing program and performing penetration testing activities with the goal of improving defensive IT security for {Company Name}'s infrastructure, systems, services, and applications. This document defines the roles and responsibilities of {Company Name}'s executives, managers, and IT security team personnel as well as external third-party security service providers. 
Trump Drops A Cybersecurity Bombshell With Biden-Era Policy Reversal
Posted inCybersecurity News

Trump Drops A Cybersecurity Bombshell With Biden-Era Policy Reversal

Less than 24 hours after President Trump’s public dispute with Elon Musk, a new cybersecurity executive order was issued on June 6, 2025. This order introduces major changes to the Biden administration’s final cybersecurity guidelines. It not only modifies key aspects of Biden’s January 2025 framework but also signals a broader shift in federal cybersecurity priorities. The focus has moved away from federal digital identity initiatives and has revised software security mandates that previously relied heavily on compliance.