HackTheBox-Resolute

Enumeration Full nmap scan nmap -A -p- -o nmap.all.tcp 10.10.10.169 A - enable OS, version and script detection (-sV, -sC, -O) p- - test all ports … PORT STATE SERVICE VERSION 53/tcp open tcpwrapped 88/tcp open kerberos-sec Microsoft Windows Kerberos (server time: 2020-05-18 12:10:06Z) 135/tcp open msrpc Microsoft Windows RPC 139/tcp open netbios-ssn Microsoft Windows netbios-ssn 389/tcp open ldap Microsoft Windows Active Directory LDAP (Domain: megabank.local, Site: Default-First-Site-Name) 445/tcp open microsoft-ds Windows Server 2016 Standard 14393 microsoft-ds (workgroup: MEGABANK) 464/tcp open kpasswd5?
Read more →

Elastic Stack - How you can use it to assist your Incident Response

The Elastic Stack (formerly the ELK Stack) is composed of 4 core open source tools that create the stack, these tools combined allow for data to be taken from any source securely and used to search, analyse and visualise in real time. The core components consist of: Elasticsearch is a distributed database that is easily searchable Logstash is a data ingestor that is used to filter and customise your data Kibana is the user interface that is used to analyse and visualise data in real time Beats are the simple, lightweight and quick data shipping programs What can Elastic Stack be used for?
Read more →

ProjectModular - Automate Tasks with PowerShell

What is ProjectModular? ProjectModular is a set of scripts written in PowerShell that was created to automate basic sysadmin/support jobs. It was designed to be a super user friendly experience for those who do not have a lot of PowerShell experience. To do that, most variables call back to a central file that can be edited after download. Who can use ProjectModular? ProjectModular has been written so that anyone (with or without PowerShell knowledge) could pick it up, change a few fields and use it in their organisation to begin automating some tasks.
Read more →