Basic Static Analysis PEiD Packer detection (goofy ahh string = packed) Contains a plugin to unpack UPX PE View Metadata of the binary Points of interest: IMAGE_NT_HEADERS...

Pt 1: Vulnerability Exploitation for Initial Access Microsoft Authentication Security Accounts Manager (SAM) Database Stores Windows passwords in a hashed format in SAM, the AD database in Do...

Vulnerability A weakness in an asset that can be exploited Common reasons of include hardware/software misconfigurations, insecure design, inherent technology weaknesses (E.g. HTTP, FTP) and ...

Enumeration Creating active connections with target to perform directed queries to garner information from responses Identify points for a system attack Generally conducted in an intranet e...

Overview of Network Scanning Set of procedures to identify hosts, ports, and services Component of intelligence gathering Network Flags TCP Communication Flags URG (Urgent): Packet to ...

Footprinting Footprinting The first step in the attack framework. Collecting information about the target network. Only OSINT, no scanning or probing. Information Obtained in Footprinting...

Introduction to Ethical Hacking Ethical Hacking Process of testing and validating security measures of an organisation’s information systems and provide remediation strategies. Includes usin...

Introduction Assembly language (ASM) is a low-level programming language, a representation of machine language. It is obtained from the disassembly of machine code. x86 Architecture Terminologies...

Introduction These EH notes are simply a summary of the tools and techniques learnt through the labs. Lab 1: Footprinting Through Search Engines Task 1: Google Hacking Ref: sundowndev’s Gist ...

These labs are based off the Week 2 Basic Dynamic Analysis - Practical. The labs can be found here. Note that these are my personal solutions and may not be 100% accurate. Lab 01 For this lab, th...